Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0941 |
N/A
|
Kootenay Web KW Whois 1.0 CGI program allows remo… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.432Z |
| CVE-2000-0942 |
N/A
|
The CiWebHitsFile component in Microsoft Indexing… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.014Z |
| CVE-2000-0943 |
N/A
|
Buffer overflow in bftp daemon (bftpd) 1.0.11 all… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.959Z |
| CVE-2000-0944 |
N/A
|
CGI Script Center News Update 1.1 does not proper… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.488Z |
| CVE-2000-0946 |
N/A
|
Compaq Easy Access Keyboard software 1.3 does not… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.768Z |
| CVE-2000-0947 |
N/A
|
Format string vulnerability in cfd daemon in GNU … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.982Z |
| CVE-2000-0948 |
N/A
|
GnoRPM before 0.95 allows local users to modify a… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.035Z |
| CVE-2000-0949 |
N/A
|
Heap overflow in savestr function in LBNL tracero… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.238Z |
| CVE-2000-0951 |
N/A
|
A misconfiguration in IIS 5.0 with Index Server e… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.695Z |
| CVE-2000-0952 |
N/A
|
global.cgi CGI program in Global 3.55 and earlier… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.347Z |
| CVE-2000-0953 |
N/A
|
Shambala Server 4.5 allows remote attackers to ca… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.688Z |
| CVE-2000-0956 |
N/A
|
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 doe… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.992Z |
| CVE-2000-0957 |
N/A
|
The pluggable authentication module for mysql (pa… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.676Z |
| CVE-2000-0958 |
N/A
|
HotJava Browser 3.0 allows remote attackers to ac… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.984Z |
| CVE-2000-0959 |
N/A
|
glibc2 does not properly clear the LD_DEBUG_OUTPU… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.726Z |
| CVE-2000-0960 |
N/A
|
The POP3 server in Netscape Messaging Server 4.15… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.635Z |
| CVE-2000-0961 |
N/A
|
Buffer overflow in IMAP server in Netscape Messag… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.846Z |
| CVE-2000-0962 |
N/A
|
The IPSEC implementation in OpenBSD 2.7 does not … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.008Z |
| CVE-2000-0965 |
N/A
|
The NSAPI plugins for TGA and the Java Servlet pr… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.180Z |
| CVE-2000-0966 |
N/A
|
Buffer overflows in lpspooler in the fileset Prin… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.015Z |
| CVE-2000-0967 |
N/A
|
PHP 3 and 4 do not properly cleanse user-injected… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.006Z |
| CVE-2000-0968 |
N/A
|
Buffer overflow in Half Life dedicated server bef… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.755Z |
| CVE-2000-0969 |
N/A
|
Format string vulnerability in Half Life dedicate… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.216Z |
| CVE-2000-0970 |
N/A
|
IIS 4.0 and 5.0 .ASP pages send the same Session … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.207Z |
| CVE-2000-0972 |
N/A
|
HP-UX 11.00 crontab allows local users to read ar… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.834Z |
| CVE-2000-0973 |
N/A
|
Buffer overflow in curl earlier than 6.0-1.1, and… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.975Z |
| CVE-2000-0974 |
N/A
|
GnuPG (gpg) 1.0.3 does not properly check all sig… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.168Z |
| CVE-2000-0975 |
N/A
|
Directory traversal vulnerability in apexec.pl in… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.211Z |
| CVE-2000-0977 |
N/A
|
mailfile.cgi CGI program in MailFile 1.10 allows … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.144Z |
| CVE-2000-0978 |
N/A
|
bbd server in Big Brother System and Network Moni… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.027Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0941 |
N/A
|
Kootenay Web KW Whois 1.0 CGI program allows remo… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.432Z |
| CVE-2000-0942 |
N/A
|
The CiWebHitsFile component in Microsoft Indexing… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.014Z |
| CVE-2000-0943 |
N/A
|
Buffer overflow in bftp daemon (bftpd) 1.0.11 all… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.959Z |
| CVE-2000-0944 |
N/A
|
CGI Script Center News Update 1.1 does not proper… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.488Z |
| CVE-2000-0946 |
N/A
|
Compaq Easy Access Keyboard software 1.3 does not… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.768Z |
| CVE-2000-0947 |
N/A
|
Format string vulnerability in cfd daemon in GNU … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.982Z |
| CVE-2000-0948 |
N/A
|
GnoRPM before 0.95 allows local users to modify a… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.035Z |
| CVE-2000-0949 |
N/A
|
Heap overflow in savestr function in LBNL tracero… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.238Z |
| CVE-2000-0951 |
N/A
|
A misconfiguration in IIS 5.0 with Index Server e… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.695Z |
| CVE-2000-0952 |
N/A
|
global.cgi CGI program in Global 3.55 and earlier… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.347Z |
| CVE-2000-0953 |
N/A
|
Shambala Server 4.5 allows remote attackers to ca… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.688Z |
| CVE-2000-0956 |
N/A
|
cyrus-sasl before 1.5.24 in Red Hat Linux 7.0 doe… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.992Z |
| CVE-2000-0957 |
N/A
|
The pluggable authentication module for mysql (pa… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.676Z |
| CVE-2000-0958 |
N/A
|
HotJava Browser 3.0 allows remote attackers to ac… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.984Z |
| CVE-2000-0959 |
N/A
|
glibc2 does not properly clear the LD_DEBUG_OUTPU… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.726Z |
| CVE-2000-0960 |
N/A
|
The POP3 server in Netscape Messaging Server 4.15… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.635Z |
| CVE-2000-0961 |
N/A
|
Buffer overflow in IMAP server in Netscape Messag… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.846Z |
| CVE-2000-0962 |
N/A
|
The IPSEC implementation in OpenBSD 2.7 does not … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.008Z |
| CVE-2000-0965 |
N/A
|
The NSAPI plugins for TGA and the Java Servlet pr… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.180Z |
| CVE-2000-0966 |
N/A
|
Buffer overflows in lpspooler in the fileset Prin… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.015Z |
| CVE-2000-0967 |
N/A
|
PHP 3 and 4 do not properly cleanse user-injected… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.006Z |
| CVE-2000-0968 |
N/A
|
Buffer overflow in Half Life dedicated server bef… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.755Z |
| CVE-2000-0969 |
N/A
|
Format string vulnerability in Half Life dedicate… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.216Z |
| CVE-2000-0970 |
N/A
|
IIS 4.0 and 5.0 .ASP pages send the same Session … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.207Z |
| CVE-2000-0972 |
N/A
|
HP-UX 11.00 crontab allows local users to read ar… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.834Z |
| CVE-2000-0973 |
N/A
|
Buffer overflow in curl earlier than 6.0-1.1, and… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:31.975Z |
| CVE-2000-0974 |
N/A
|
GnuPG (gpg) 1.0.3 does not properly check all sig… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.168Z |
| CVE-2000-0975 |
N/A
|
Directory traversal vulnerability in apexec.pl in… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.211Z |
| CVE-2000-0977 |
N/A
|
mailfile.cgi CGI program in MailFile 1.10 allows … |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.144Z |
| CVE-2000-0978 |
N/A
|
bbd server in Big Brother System and Network Moni… |
n/a |
n/a |
2001-01-22T05:00:00 | 2024-08-08T05:37:32.027Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2000-0326 | Meeting Maker uses weak encryption (a polyalphabetic substitution cipher) for passwords, which allo… | 2000-04-25T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0249 | The AIX Fast Response Cache Accelerator (FRCA) allows local users to modify arbitrary files via the… | 2000-04-26T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0380 | The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote atta… | 2000-04-26T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0706 | Linux xmonisdn package allows local users to gain root privileges by modifying the IFS or PATH envi… | 2000-04-27T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0429 | A backdoor password in Cart32 3.0 and earlier allows remote attackers to execute arbitrary commands. | 2000-04-27T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0342 | Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .e… | 2000-04-28T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0340 | Buffer overflow in Gnomelib in SuSE Linux 6.3 allows local users to execute arbitrary commands via … | 2000-04-29T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0427 | Eudora 4.1 allows remote attackers to perform a denial of service by sending attachments with long … | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0341 | ATRIUM Cassandra NNTP Server 1.10 allows remote attackers to cause a denial of service via a long l… | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0344 | The knfsd NFS server in Linux kernel 2.2.x allows remote attackers to cause a denial of service via… | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0401 | Buffer overflows in redirect.exe and changepw.exe in PDGSoft shopping cart allow remote attackers t… | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0440 | NetBSD 1.4.2 and earlier allows remote attackers to cause a denial of service by sending a packet w… | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0447 | Buffer overflow in WebShield SMTP 4.5.44 allows remote attackers to execute arbitrary commands via … | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0448 | The WebShield SMTP Management Tool version 4.5.44 does not properly restrict access to the manageme… | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0449 | Omnis Studio 2.4 uses weak encryption (trivial encoding) for encrypting database fields. | 2000-05-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0138 | A system has a distributed denial of service (DDOS) attack master, agent, or zombie installed, such… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0293 | aaa_base in SuSE Linux 6.3, and cron.daily in earlier versions, allow local users to delete arbitra… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0343 | Buffer overflow in Sniffit 0.3.x with the -L logging option enabled allows remote attackers to exec… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0346 | AppleShare IP 6.1 and later allows a remote attacker to read potentially sensitive information via … | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0347 | Windows 95 and Windows 98 allow a remote attacker to cause a denial of service via a NetBIOS sessio… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0385 | FileMaker Pro 5 Web Companion allows remote attackers to bypass Field-Level database security restr… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0386 | FileMaker Pro 5 Web Companion allows remote attackers to send anonymous or forged email. | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0433 | The SuSE aaa_base package installs some system accounts with home directories set to /tmp, which al… | 2000-05-02T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0303 | Quake3 Arena allows malicious server operators to read or modify files on a client via a dot dot (.… | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0332 | UltraBoard.pl or UltraBoard.cgi CGI scripts in UltraBoard 1.6 allows remote attackers to read arbit… | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0335 | The resolver in glibc 2.1.3 uses predictable IDs, which allows a local attacker to spoof DNS query … | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0345 | The on-line help system options in Cisco routers allows non-privileged users without "enabled" acce… | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0378 | The pam_console PAM module in Linux systems performs a chown on various devices upon a user login, … | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0425 | Buffer overflow in the Web Archives component of L-Soft LISTSERV 1.8 allows remote attackers to exe… | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0430 | Cart32 allows remote attackers to access sensitive debugging information by appending /expdate to t… | 2000-05-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p5xh-vx83-mxcj |
9.8 (3.1)
9.3 (4.0)
|
HTTP Request Smuggling in Twisted | 2020-03-31T15:40:12Z | 2024-11-25T18:33:22Z |
| ghsa-h96w-mmrf-2h6v |
9.8 (3.1)
9.3 (4.0)
|
Improper Input Validation in Twisted | 2020-03-31T15:42:42Z | 2024-11-25T18:33:22Z |
| ghsa-6c8f-qphg-qjgp |
7.5 (3.1)
|
Validation Bypass in kind-of | 2020-03-31T15:59:54Z | 2021-08-23T15:03:55Z |
| ghsa-j27j-4w6m-8fc4 |
|
Path Traversal in statics-server | 2020-03-31T17:02:12Z | 2020-08-31T18:54:26Z |
| ghsa-754x-4jwp-cqp6 |
7.5 (3.1)
|
Cross-Site Scripting in http_server | 2020-03-31T17:02:26Z | 2023-09-11T21:38:46Z |
| ghsa-vcjj-xf2r-mwvc |
6.1 (3.1)
|
XSS in knockout | 2020-04-01T15:47:45Z | 2022-04-25T23:07:31Z |
| ghsa-9q64-mpxx-87fg |
|
Open Redirect in ecstatic | 2020-04-01T16:35:08Z | 2020-12-15T16:51:18Z |
| ghsa-8qxj-f9rh-9fg2 |
9.1 (3.1)
9.3 (4.0)
|
Improper Verification of Cryptographic Signature in Pure-Python ECDSA | 2020-04-01T16:35:26Z | 2024-09-20T16:52:23Z |
| ghsa-c2h6-7gm8-cv4w |
6.1 (3.1)
|
XSS in MITREid Connect | 2020-04-01T16:35:44Z | 2023-01-24T18:07:52Z |
| ghsa-hj69-c76v-86wr |
7.1 (3.1)
8.3 (4.0)
|
Out-of-bounds Read in Pillow | 2020-04-01T16:36:00Z | 2024-10-08T12:57:35Z |
| ghsa-gvr4-7xgc-gx3w |
|
Cross-Site Scripting in fileview | 2020-04-01T16:36:15Z | 2020-08-31T18:59:48Z |
| ghsa-4g46-5grc-wq49 |
|
Cross-Site Scripting in seeftl | 2020-04-01T16:36:31Z | 2020-08-31T18:59:46Z |
| ghsa-5gm3-px64-rw72 |
7.5 (3.1)
8.7 (4.0)
|
Uncontrolled Resource Consumption in Pillow | 2020-04-01T16:36:44Z | 2024-10-08T13:04:35Z |
| ghsa-gv3v-92v6-m48j |
9.8 (3.1)
|
Improper Neutralization of CRLF Sequences in HTTP Headers in Jooby ('HTTP Response Splitting) | 2020-04-03T15:23:30Z | 2021-07-29T15:47:43Z |
| ghsa-vh95-rmgr-6w4m |
5.6 (3.1)
|
Prototype Pollution in minimist | 2020-04-03T21:48:32Z | 2024-02-13T20:00:13Z |
| ghsa-6chw-6frg-f759 |
7.5 (3.1)
|
Regular Expression Denial of Service in Acorn | 2020-04-03T21:48:38Z | 2021-08-23T15:10:32Z |
| ghsa-6gp3-h3jj-prx4 |
5.3 (3.1)
|
Prototype pollution in class-transformer | 2020-04-07T15:47:40Z | 2022-04-28T17:58:13Z |
| ghsa-jgpq-g82g-6c39 |
5.3 (3.1)
|
confinit vulnerable to prototype pollution | 2020-04-07T15:52:05Z | 2021-07-28T23:16:44Z |
| ghsa-prfq-f66g-43mp |
5.5 (3.1)
|
Information disclosure through error object in auth0.js | 2020-04-10T18:19:10Z | 2021-01-08T20:23:16Z |
| ghsa-8jpx-m2wh-2v34 |
8.0 (3.1)
|
Remote Code Execution (RCE) vulnerability in dropwizard-validation | 2020-04-10T18:42:20Z | 2021-01-08T20:22:52Z |
| ghsa-g2f6-v5qh-h2mq |
8.8 (3.1)
|
Nexus Repository Manager 3 - Remote Code Execution | 2020-04-14T15:27:05Z | 2025-10-22T17:49:49Z |
| ghsa-8h56-v53h-5hhj |
8.8 (3.1)
|
Remote Code Execution - JavaEL Injection (low privileged accounts) in Nexus Repository Manager | 2020-04-14T15:27:14Z | 2021-07-28T21:49:46Z |
| ghsa-3944-787c-f852 |
4.8 (3.1)
|
Persistent Cross-Site scripting in Nexus Repository Manager | 2020-04-14T15:27:21Z | 2021-08-23T15:11:55Z |
| ghsa-4gp3-p7ph-x2jr |
9.8 (3.1)
|
OS Command Injection in devcert-sanscache | 2020-04-14T23:09:00Z | 2021-08-23T15:12:51Z |
| ghsa-wvpv-ffcv-r6cw |
5.1 (3.1)
|
Internal NCryptDecrypt method could be used externally from WindowsHello library. | 2020-04-14T23:09:13Z | 2021-01-08T20:22:38Z |
| ghsa-v2wc-pfq2-5cm6 |
5.8 (3.1)
4.6 (4.0)
|
Possible XSS attack in Wagtail | 2020-04-14T23:09:29Z | 2024-11-19T19:19:49Z |
| ghsa-rc5r-697f-28x6 |
4.8 (3.1)
|
XSS injection in the Grid component of Sylius | 2020-04-15T21:07:59Z | 2024-02-26T12:35:41Z |
| ghsa-xfqh-7356-vqjj |
4.3 (3.1)
|
Exposure of Sensitive Information to an Unauthorized Actor in Keycloak | 2020-04-15T21:08:21Z | 2021-11-01T14:08:16Z |
| ghsa-8vf3-4w62-m3pq |
5.4 (3.1)
|
XSS in Keycloak | 2020-04-15T21:09:09Z | 2021-08-23T15:16:25Z |
| ghsa-6pmv-7pr9-cgrj |
9.8 (3.1)
|
Predictable password in Keycloak | 2020-04-15T21:09:27Z | 2021-08-23T15:17:35Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-356 |
|
nltk is vulnerable to Inefficient Regular Expression Complexity | nltk | 2021-09-27T13:15:00Z | 2021-10-01T22:29:03.465380Z |
| pysec-2021-351 |
|
ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP… | esphome | 2021-09-28T16:15:00Z | 2021-09-30T23:26:26.067991Z |
| pysec-2021-355 |
|
“Shuup” application in versions 0.4.2 to 2.10.8 is affected by the “Formula Injection” vu… | shuup | 2021-09-29T14:15:00Z | 2021-09-30T23:26:29.598032Z |
| pysec-2021-350 |
|
In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting … | shuup | 2021-09-30T08:15:00Z | 2021-09-30T10:32:36.636402Z |
| pysec-2021-373 |
|
Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XM… | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.690816Z |
| pysec-2021-374 |
|
Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data. | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.730339Z |
| pysec-2021-375 |
|
Cobbler before 3.3.0 allows authorization bypass for modification of settings. | cobbler | 2021-10-04T06:15:00Z | 2021-10-19T21:47:31.769581Z |
| pysec-2021-429 |
|
SLO generator allows for loading of YAML files that if crafted in a specific format can a… | slo-generator | 2021-10-04T10:15:00Z | 2021-11-16T21:20:29.712720Z |
| pysec-2021-881 |
7.5 (3.1)
|
The FTL Server (tibftlserver) and Docker images containing tibftlserver components of TIB… | eftl | 2021-10-05T18:15:00Z | 2024-11-21T14:22:45.803448Z |
| pysec-2021-364 |
|
Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected … | scrapy-splash | 2021-10-05T21:15:00Z | 2021-10-11T01:16:42.816754Z |
| pysec-2021-366 |
|
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external fu… | vyper | 2021-10-05T23:15:00Z | 2021-10-11T01:16:43.215640Z |
| pysec-2021-423 |
|
An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by t… | gateone | 2021-10-06T13:15:00Z | 2021-11-16T03:58:44.124463Z |
| pysec-2021-363 |
|
Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAu… | scrapy | 2021-10-06T18:15:00Z | 2021-10-11T01:16:42.905582Z |
| pysec-2021-365 |
|
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when perfor… | vyper | 2021-10-06T18:15:00Z | 2021-10-11T01:16:43.176882Z |
| pysec-2021-357 |
|
The Unicorn framework through 0.35.3 for Django allows XSS via component.name. | django-unicorn | 2021-10-07T06:15:00Z | 2021-10-08T02:27:35.256995Z |
| pysec-2021-878 |
7.5 (3.1)
|
The mkdocs 1.2.2 built-in dev-server allows directory traversal using the port 8000, enab… | mkdocs | 2021-10-07T14:15:00Z | 2024-01-17T10:53:34.840029Z |
| pysec-2021-369 |
|
The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this iss… | django-unicorn | 2021-10-11T01:15:00Z | 2021-10-11T05:26:07.255634Z |
| pysec-2021-372 |
|
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… | omero-web | 2021-10-14T16:15:00Z | 2021-10-17T22:58:18.538383Z |
| pysec-2021-379 |
|
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… | omero-figure | 2021-10-14T16:15:00Z | 2021-10-24T23:24:38.547709Z |
| pysec-2021-380 |
|
Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization of Untrusted Data vu… | ops-cli | 2021-10-15T15:15:00Z | 2021-10-24T23:24:39.018050Z |
| pysec-2021-377 |
|
Apache Superset up to and including 1.1 does not sanitize titles correctly on the Explore… | apache-superset | 2021-10-18T15:15:00Z | 2021-10-24T23:24:36.503366Z |
| pysec-2021-378 |
|
Apache Superset up to and including 1.3.0 when configured with ENABLE_TEMPLATE_PROCESSING… | apache-superset | 2021-10-18T15:15:00Z | 2021-10-24T23:24:36.552552Z |
| pysec-2021-849 |
|
The bluemonday sanitizer before 1.0.16 for Go, and before 0.0.8 for Python (in pybluemond… | pybluemonday | 2021-10-18T15:15:00Z | 2021-12-14T08:18:23.339515Z |
| pysec-2021-376 |
|
python-tuf is a Python reference implementation of The Update Framework (TUF). In both cl… | tuf | 2021-10-19T18:15:00Z | 2021-10-22T22:29:45.339771Z |
| pysec-2021-421 |
|
Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (… | babel | 2021-10-20T21:15:00Z | 2021-11-16T03:58:43.401152Z |
| pysec-2021-382 |
|
qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with … | qutebrowser | 2021-10-21T18:15:00Z | 2021-10-28T05:27:07.120992Z |
| pysec-2021-381 |
|
Rasa is an open source machine learning framework to automate text-and voice-based conver… | rasa | 2021-10-21T21:15:00Z | 2021-10-24T23:24:39.410729Z |
| pysec-2021-387 |
|
An issue was discovered in Dask (aka python-dask) through 2021.09.1. Single machine Dask … | dask | 2021-10-26T11:15:00Z | 2021-11-11T13:06:47.756280Z |
| pysec-2021-871 |
|
An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Sing… | distributed | 2021-10-26T11:15:00Z | 2022-07-14T05:11:51.739830Z |
| pysec-2021-872 |
|
An issue was discovered in the Dask distributed package before 2021.10.0 for Python. Sing… | distributed | 2021-10-26T11:15:00Z | 2023-05-25T05:07:00Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2022-2916 | Malicious code in executables.handler (npm) | 2022-06-20T20:09:27Z | 2022-06-20T20:09:28Z |
| MAL-2022-4684 | Malicious code in mongo.rabbit.bridge (npm) | 2022-06-20T20:09:27Z | 2022-06-20T20:09:28Z |
| mal-2022-2916 | Malicious code in executables.handler (npm) | 2022-06-20T20:09:27Z | 2022-06-20T20:09:28Z |
| mal-2022-4684 | Malicious code in mongo.rabbit.bridge (npm) | 2022-06-20T20:09:27Z | 2022-06-20T20:09:28Z |
| MAL-2022-4181 | Malicious code in klook-node-framework-cache (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:28Z |
| MAL-2022-4184 | Malicious code in klook-node-framework-device (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| MAL-2022-4185 | Malicious code in klook-node-framework-experiment (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| MAL-2022-4187 | Malicious code in klook-node-framework-logger (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| MAL-2022-4188 | Malicious code in klook-node-framework-site (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:28Z |
| mal-2022-4181 | Malicious code in klook-node-framework-cache (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:28Z |
| mal-2022-4184 | Malicious code in klook-node-framework-device (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| mal-2022-4185 | Malicious code in klook-node-framework-experiment (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| mal-2022-4187 | Malicious code in klook-node-framework-logger (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:29Z |
| mal-2022-4188 | Malicious code in klook-node-framework-site (npm) | 2022-06-20T20:09:28Z | 2022-06-20T20:09:28Z |
| MAL-2022-4182 | Malicious code in klook-node-framework-country (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:30Z |
| MAL-2022-4183 | Malicious code in klook-node-framework-currency (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:29Z |
| MAL-2022-4186 | Malicious code in klook-node-framework-language (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:30Z |
| mal-2022-4182 | Malicious code in klook-node-framework-country (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:30Z |
| mal-2022-4183 | Malicious code in klook-node-framework-currency (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:29Z |
| mal-2022-4186 | Malicious code in klook-node-framework-language (npm) | 2022-06-20T20:09:29Z | 2022-06-20T20:09:30Z |
| MAL-2022-4190 | Malicious code in klook-ui (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| MAL-2022-4384 | Malicious code in logquery (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| MAL-2022-5964 | Malicious code in schema-render (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| MAL-2022-6535 | Malicious code in tetris-scripts (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:30Z |
| mal-2022-4190 | Malicious code in klook-ui (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| mal-2022-4384 | Malicious code in logquery (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| mal-2022-5964 | Malicious code in schema-render (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:31Z |
| mal-2022-6535 | Malicious code in tetris-scripts (npm) | 2022-06-20T20:09:30Z | 2022-06-20T20:09:30Z |
| MAL-2022-2680 | Malicious code in eg-distances (npm) | 2022-06-20T20:09:31Z | 2022-06-20T20:09:32Z |
| MAL-2022-383 | Malicious code in @klooks/klook-node-framework (npm) | 2022-06-20T20:09:31Z | 2022-06-20T20:09:32Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-2233 | Zyxel Firewall: Schwachstelle ermöglicht Cross-Site Scripting | 2022-12-05T23:00:00.000+00:00 | 2022-12-05T23:00:00.000+00:00 |
| wid-sec-w-2022-2234 | Android Patchday Dezember 2022 | 2022-12-05T23:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2022-2235 | Veeam Backup & Replication: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-05T23:00:00.000+00:00 | 2022-12-05T23:00:00.000+00:00 |
| wid-sec-w-2022-2236 | Zabbix: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-05T23:00:00.000+00:00 | 2024-10-03T22:00:00.000+00:00 |
| wid-sec-w-2022-2237 | Ivanti Endpoint Manager: Schwachstelle ermöglicht Privilegieneskalation | 2022-12-05T23:00:00.000+00:00 | 2022-12-05T23:00:00.000+00:00 |
| wid-sec-w-2022-2238 | vim: Schwachstelle ermöglicht Manipulation von Speicher | 2022-12-05T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2022-2239 | Microsoft Edge: Mehrere Schwachstellen | 2022-12-05T23:00:00.000+00:00 | 2022-12-05T23:00:00.000+00:00 |
| wid-sec-w-2022-2247 | Cacti: Schwachstelle ermöglicht Codeausführung | 2022-12-06T23:00:00.000+00:00 | 2025-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-2248 | vim: Schwachstelle ermöglicht Denial of Service | 2022-12-06T23:00:00.000+00:00 | 2023-10-08T22:00:00.000+00:00 |
| wid-sec-w-2022-2249 | IBM Spectrum Scale: Schwachstelle ermöglicht Codeausführung | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2250 | Xen: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-12-06T23:00:00.000+00:00 | 2023-11-28T23:00:00.000+00:00 |
| wid-sec-w-2022-2251 | Aruba ClearPass Policy Manager: Mehrere Schwachstellen | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2252 | Redmine.org Redmine: Mehrere Schwachstellen | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2253 | Fortinet FortiSandbox: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2254 | Fortinet FortiOS: Schwachstelle ermöglicht Cross-Site Scripting | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2255 | Fortinet FortiOS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-06T23:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-2260 | Wireshark: Mehrere Schwachstellen ermöglicht Denial of Service | 2022-12-07T23:00:00.000+00:00 | 2024-09-29T22:00:00.000+00:00 |
| wid-sec-w-2022-2261 | Avast Antivirus: Schwachstelle ermöglicht Denial of Service | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2262 | Jenkins: Mehrere Schwachstellen | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2263 | IBM Business Automation Workflow: Schwachstelle ermöglicht Cross-Site Scripting | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2264 | SOS GmbH JobScheduler: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2265 | Red Hat OpenStack: Mehrere Schwachstellen | 2022-12-07T23:00:00.000+00:00 | 2025-05-18T22:00:00.000+00:00 |
| wid-sec-w-2022-2266 | Ivanti Endpoint Manager: Schwachstelle ermöglicht Codeausführung | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2267 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2268 | Synology DiskStation Manager: Schwachstellen ermöglichen nicht spezifizierten Angriff | 2022-12-07T23:00:00.000+00:00 | 2022-12-07T23:00:00.000+00:00 |
| wid-sec-w-2022-2272 | Red Hat OpenStack: Mehrere Schwachstellen | 2022-12-08T23:00:00.000+00:00 | 2022-12-08T23:00:00.000+00:00 |
| wid-sec-w-2022-2274 | JetBrains IntelliJ IDEA: Mehrere Schwachstellen | 2022-12-08T23:00:00.000+00:00 | 2022-12-08T23:00:00.000+00:00 |
| wid-sec-w-2022-2275 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-08T23:00:00.000+00:00 | 2022-12-08T23:00:00.000+00:00 |
| wid-sec-w-2022-2285 | npm: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-12-11T23:00:00.000+00:00 | 2022-12-11T23:00:00.000+00:00 |
| wid-sec-w-2022-2286 | IBM Business Automation Workflow: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-12-11T23:00:00.000+00:00 | 2023-02-27T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2006:0669 | Red Hat Security Advisory: php security update | 2006-09-21T10:53:00+00:00 | 2026-01-13T22:36:38+00:00 |
| rhsa-2006_0669 | Red Hat Security Advisory: php security update | 2006-09-21T10:53:00+00:00 | 2024-11-22T00:31:28+00:00 |
| rhsa-2006:0668 | Red Hat Security Advisory: squirrelmail security update | 2006-09-26T12:26:00+00:00 | 2025-11-21T17:30:44+00:00 |
| rhsa-2006_0668 | Red Hat Security Advisory: squirrelmail security update | 2006-09-26T12:26:00+00:00 | 2024-11-22T00:29:41+00:00 |
| rhsa-2006:0695 | Red Hat Security Advisory: openssl security update | 2006-09-28T23:46:00+00:00 | 2026-01-13T22:14:44+00:00 |
| rhsa-2006_0695 | Red Hat Security Advisory: openssl security update | 2006-09-28T23:46:00+00:00 | 2024-11-22T00:33:35+00:00 |
| rhsa-2006:0697 | Red Hat Security Advisory: openssh security update | 2006-09-29T00:18:00+00:00 | 2025-12-05T11:58:44+00:00 |
| rhsa-2006_0697 | Red Hat Security Advisory: openssh security update | 2006-09-29T00:18:00+00:00 | 2024-11-22T00:34:01+00:00 |
| rhsa-2006:0698 | Red Hat Security Advisory: openssh security update | 2006-09-29T00:23:00+00:00 | 2025-11-21T17:30:51+00:00 |
| rhsa-2006_0698 | Red Hat Security Advisory: openssh security update | 2006-09-29T00:23:00+00:00 | 2024-11-22T00:34:06+00:00 |
| rhsa-2006:0692 | Red Hat Security Advisory: apache security update for Stronghold | 2006-09-29T15:47:00+00:00 | 2026-01-13T22:08:34+00:00 |
| rhsa-2006_0692 | Red Hat Security Advisory: apache security update for Stronghold | 2006-09-29T15:47:00+00:00 | 2024-11-14T10:04:47+00:00 |
| rhsa-2006:0688 | Red Hat Security Advisory: php security update | 2006-10-05T11:30:00+00:00 | 2025-11-21T17:30:49+00:00 |
| rhsa-2006_0688 | Red Hat Security Advisory: php security update | 2006-10-05T11:30:00+00:00 | 2024-11-22T00:34:20+00:00 |
| rhsa-2006:0708 | Red Hat Security Advisory: php security update | 2006-10-05T11:38:00+00:00 | 2025-11-21T17:30:51+00:00 |
| rhsa-2006_0708 | Red Hat Security Advisory: php security update | 2006-10-05T11:38:00+00:00 | 2024-11-22T00:34:25+00:00 |
| rhsa-2006:0689 | Red Hat Security Advisory: kernel security update | 2006-10-05T19:16:00+00:00 | 2025-11-21T17:30:50+00:00 |
| rhsa-2006_0689 | Red Hat Security Advisory: kernel security update | 2006-10-05T19:16:00+00:00 | 2024-11-22T00:39:11+00:00 |
| rhsa-2006:0713 | Red Hat Security Advisory: python security update | 2006-10-09T21:39:00+00:00 | 2025-11-21T17:30:52+00:00 |
| rhsa-2006_0713 | Red Hat Security Advisory: python security update | 2006-10-09T21:39:00+00:00 | 2024-11-22T00:34:53+00:00 |
| rhsa-2006:0720 | Red Hat Security Advisory: kdelibs security update | 2006-10-18T04:52:00+00:00 | 2025-11-21T17:30:53+00:00 |
| rhsa-2006_0720 | Red Hat Security Advisory: kdelibs security update | 2006-10-18T04:52:00+00:00 | 2024-11-22T00:35:41+00:00 |
| rhsa-2006:0710 | Red Hat Security Advisory: kernel security update | 2006-10-20T10:28:00+00:00 | 2025-11-21T17:30:52+00:00 |
| rhsa-2006_0710 | Red Hat Security Advisory: kernel security update | 2006-10-20T10:28:00+00:00 | 2024-11-22T00:41:01+00:00 |
| rhsa-2006:0725 | Red Hat Security Advisory: qt security update | 2006-11-01T14:37:00+00:00 | 2025-11-21T17:30:58+00:00 |
| rhsa-2006_0725 | Red Hat Security Advisory: qt security update | 2006-11-01T14:37:00+00:00 | 2024-11-22T00:35:46+00:00 |
| rhsa-2006:0730 | Red Hat Security Advisory: php security update | 2006-11-06T22:28:00+00:00 | 2025-11-21T17:30:55+00:00 |
| rhsa-2006_0730 | Red Hat Security Advisory: php security update | 2006-11-06T22:28:00+00:00 | 2024-11-14T10:04:51+00:00 |
| rhsa-2006:0733 | Red Hat Security Advisory: firefox security update | 2006-11-08T08:30:00+00:00 | 2025-11-21T17:30:56+00:00 |
| rhsa-2006_0733 | Red Hat Security Advisory: firefox security update | 2006-11-08T08:30:00+00:00 | 2024-11-22T00:37:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-069-03 | Siemens SINEC NMS | 2022-03-08T00:00:00.000000Z | 2023-10-10T00:00:00.000000Z |
| icsa-22-069-04 | Siemens SINEMA Mendix Forgot Password Appstore | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-05 | Siemens Simcenter STAR-CCM+ Viewer | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-06 | Siemens COMOS | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-07 | Siemens Climatix POL909 | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-08 | Siemens Polarion ALM | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-09 | Siemens SINEC INS | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-11 | Siemens SINUMERIK MC | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-069-12 | Siemens RUGGEDCOM ROS | 2022-03-08T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-22-069-13 | Siemens Mendix | 2022-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-074-01 | ABB OPC Server for AC 800M | 2022-03-15T00:00:00.000000Z | 2022-03-15T00:00:00.000000Z |
| icsa-22-081-01 | Delta Electronics DIAEnergie (Update C) | 2022-03-22T00:00:00.000000Z | 2022-04-28T00:00:00.000000Z |
| icsa-22-083-01 | Yokogawa CENTUM and Exaopc | 2022-03-24T00:00:00.000000Z | 2022-03-24T00:00:00.000000Z |
| icsa-22-083-02 | mySCADA myPRO | 2022-03-24T00:00:00.000000Z | 2022-03-24T00:00:00.000000Z |
| icsa-22-088-01 | Rockwell Automation ISaGRAF | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-02 | Omron CX-Position | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-03 | Hitachi Energy LinkOne WebView | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-088-04 | Modbus Tools Modbus Slave | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsma-22-088-01 | Philips e-Alert | 2022-03-29T00:00:00.000000Z | 2022-03-29T00:00:00.000000Z |
| icsa-22-090-01 | Schneider Electric SCADAPack Workbench | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-02 | Hitachi Energy e-mesh EMS | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-03 | Fuji Electric Alpha5 | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-04 | Mitsubishi Electric FA Products | 2022-03-31T00:00:00.000000Z | 2022-05-31T00:00:00.000000Z |
| icsa-22-090-05 | Rockwell Automation Logix Controllers | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-06 | General Electric Renewable Energy MDS Radios | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-07 | Rockwell Automation Studio 5000 Logix Designer | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-095-01 | Rockwell Automation ISaGRAF | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-095-02 | Johnson Controls Metasys | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsma-22-095-01 | LifePoint Informatics Patient Portal | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-097-01 | Pepperl+Fuchs WirelessHART-Gateway | 2022-04-07T00:00:00.000000Z | 2022-04-07T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-staros-cmdinj-759mnt4n | Cisco StarOS Command Injection Vulnerability | 2022-03-02T16:00:00+00:00 | 2022-03-02T16:00:00+00:00 |
| cisco-sa-uccsmi-prvesc-bqhge4cm | Cisco Ultra Cloud Core - Subscriber Microservices Infrastructure Privilege Escalation Vulnerability | 2022-03-02T16:00:00+00:00 | 2022-03-02T16:00:00+00:00 |
| cisco-sa-java-spring-rce-zx9guc67 | Vulnerability in Spring Framework Affecting Cisco Products: March 2022 | 2022-04-01T23:45:00+00:00 | 2023-02-09T15:14:14+00:00 |
| cisco-sa-java-spring-scf-rce-dqrhhjxh | Vulnerability in Spring Cloud Function Framework Affecting Cisco Products: March 2022 | 2022-04-01T23:45:00+00:00 | 2022-04-15T15:31:28+00:00 |
| cisco-sa-esa-snmp-jlajkswk | Multiple Cisco Security Products Simple Network Management Protocol Service Denial of Service Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-info-exp-yxawyp3s | Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-sna-xss-mca9tqnj | Cisco Secure Network Analytics Network Diagrams Application Cross-Site Scripting Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-swa-filter-bypass-xxxtu3x | Cisco Web Security Appliance Filter Bypass Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-voip-phone-csrf-k56vxvvx | Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Cross-Site Request Forgery Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-10-28T14:20:37+00:00 |
| cisco-sa-webex-java-mvx6crh9 | Cisco Webex Meetings Java Deserialization Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-wsa-stored-xss-xpsjghmy | Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability | 2022-04-06T16:00:00+00:00 | 2022-04-06T16:00:00+00:00 |
| cisco-sa-ap-ip-flood-dos-6hxxenvq | Cisco Embedded Wireless Controller with Catalyst Access Points IP Flood Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-appnav-xe-dos-j5mxtr4 | Cisco IOS XE Software AppNav-XE Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-bgpevpn-zwtrtpbb | Cisco IOS XR Software Border Gateway Protocol Ethernet VPN Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-19T14:12:27+00:00 |
| cisco-sa-c9800-capwap-mdns-6psn7gku | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-c9800-fnf-dos-bol5vlge | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers Application Visibility and Control Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-c9800-snmp-trap-dos-mjent3ey | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-cdb-cmicr-vulns-kjjftnb | Cisco Catalyst Digital Building Series Switches and Cisco Catalyst Micro Switches Vulnerabilities | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-cgr1k-ap-dos-mszr4qvh | Cisco 1000 Series Connected Grid Router Integrated Wireless Access Point Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-ewlc-priv-esc-ybvhko5 | Cisco IOS XE Software for Cisco Catalyst 9000 Family Switches and Catalyst 9000 Family Wireless Controllers Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-05-12T19:35:11+00:00 |
| cisco-sa-http-dos-svodkdbs | Cisco IOS and IOS XE Software Web Services Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iosxe-priv-esc-grbtubu | Cisco IOS XE Software Tool Command Language Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iosxe-rpki-dos-2egcneke | Cisco IOS XE Software Border Gateway Protocol Resource Public Key Infrastructure Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-iox-yuxq6hfj | Cisco IOx Application Hosting Environment Vulnerabilities | 2022-04-13T16:00:00+00:00 | 2022-05-12T15:50:29+00:00 |
| cisco-sa-lsplus-z6aqeojk | Cisco IOS XR Software for ASR 9000 Series Routers Lightspeed-Plus Line Cards Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-28T21:28:53+00:00 |
| cisco-sa-ncossh-dos-zakfodq8 | Cisco IOS XE Software NETCONF Over SSH Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-qfp-ipsec-gqmqvtqv | Cisco IOS XE Software IPSec Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sd-wan-file-access-vw36d28p | Cisco SD-WAN Solution Improper Access Control Vulnerability | 2022-04-13T16:00:00+00:00 | 2024-01-23T21:31:33+00:00 |
| cisco-sa-sdwan-privesc-vman-tejfpbsl | Cisco SD-WAN vManage Software Privilege Escalation Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| cisco-sa-sdwan-vedge-dos-jervm4bb | Cisco SD-WAN vEdge Routers Denial of Service Vulnerability | 2022-04-13T16:00:00+00:00 | 2022-04-13T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-1050 | A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated potentially leading to a use-after-free condition. | 2022-03-02T00:00:00.000Z | 2023-03-10T00:00:00.000Z |
| msrc_cve-2022-1055 | Use after Free in tc_new_tfilter allowing for privilege escalation in Linux Kernel | 2022-03-02T00:00:00.000Z | 2024-12-03T00:00:00.000Z |
| msrc_cve-2022-1056 | Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 46dc8fcd. | 2022-03-02T00:00:00.000Z | 2022-04-05T00:00:00.000Z |
| msrc_cve-2022-1154 | Use after free in utf_ptr2char in vim/vim | 2022-03-02T00:00:00.000Z | 2022-04-05T00:00:00.000Z |
| msrc_cve-2022-1160 | heap buffer overflow in get_one_sourceline in vim/vim | 2022-03-02T00:00:00.000Z | 2022-04-06T00:00:00.000Z |
| msrc_cve-2022-20001 | Injection in fish | 2022-03-02T00:00:00.000Z | 2025-10-01T23:11:14.000Z |
| msrc_cve-2022-22719 | mod_lua Use of uninitialized value of in r:parsebody | 2022-03-02T00:00:00.000Z | 2022-03-19T00:00:00.000Z |
| msrc_cve-2022-22720 | HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier | 2022-03-02T00:00:00.000Z | 2022-03-19T00:00:00.000Z |
| msrc_cve-2022-22721 | core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody | 2022-03-02T00:00:00.000Z | 2022-03-19T00:00:00.000Z |
| msrc_cve-2022-23648 | Insecure handling of image volumes in containerd CRI plugin | 2022-03-02T00:00:00.000Z | 2022-03-11T00:00:00.000Z |
| msrc_cve-2022-23901 | A stack overflow re2c 2.2 exists due to infinite recursion issues in src/dfa/dead_rules.cc. | 2022-03-02T00:00:00.000Z | 2025-02-11T00:00:00.000Z |
| msrc_cve-2022-23943 | mod_sed: Read/write beyond bounds | 2022-03-02T00:00:00.000Z | 2022-03-19T00:00:00.000Z |
| msrc_cve-2022-24713 | Regular expression denial of service in Rust's regex crate | 2022-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-24761 | HTTP Request Smuggling in waitress | 2022-03-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2022-24769 | Default inheritable capabilities for linux container should be empty | 2022-03-02T00:00:00.000Z | 2022-05-14T00:00:00.000Z |
| msrc_cve-2022-24791 | Use after free in Wasmtime | 2022-03-02T00:00:00.000Z | 2025-09-03T22:34:55.000Z |
| msrc_cve-2022-24921 | regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression. | 2022-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-25634 | Qt through 5.15.8 and 6.x through 6.2.3 can load system library files from an unintended working directory. | 2022-03-02T00:00:00.000Z | 2022-03-10T00:00:00.000Z |
| msrc_cve-2022-26280 | Libarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init. | 2022-03-02T00:00:00.000Z | 2022-04-06T00:00:00.000Z |
| msrc_cve-2022-26353 | A flaw was found in the virtio-net device of QEMU. This flaw was inadvertently introduced with the fix for CVE-2021-3748 which forgot to unmap the cached virtqueue elements on error leading to memory leakage and other unexpected results. Affected QEMU version: 6.2.0. | 2022-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-26354 | A flaw was found in the vhost-vsock device of QEMU. In case of error an invalid element was not detached from the virtqueue before freeing its memory leading to memory leakage and other unexpected results. Affected QEMU versions <= 6.2.0. | 2022-03-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-26490 | st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters. | 2022-03-02T00:00:00.000Z | 2022-03-12T00:00:00.000Z |
| msrc_cve-2022-26878 | drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers have memory allocated but not freed). | 2022-03-02T00:00:00.000Z | 2022-03-23T00:00:00.000Z |
| msrc_cve-2022-26966 | An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive information from heap memory via crafted frame lengths from a device. | 2022-03-02T00:00:00.000Z | 2022-03-19T00:00:00.000Z |
| msrc_cve-2022-27223 | In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12 the endpoint index is not validated and might be manipulated by the host for out-of-array access. | 2022-03-02T00:00:00.000Z | 2022-03-23T00:00:00.000Z |
| msrc_cve-2022-27666 | A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a local attacker with a normal user privilege to overwrite kernel heap objects and may cause a local privilege escalation threat. | 2022-03-02T00:00:00.000Z | 2023-02-07T00:00:00.000Z |
| msrc_cve-2022-27950 | In drivers/hid/hid-elo.c in the Linux kernel before 5.16.11 a memory leak exists for a certain hid_parse error condition. | 2022-03-02T00:00:00.000Z | 2022-04-06T00:00:00.000Z |
| msrc_cve-2015-20107 | In Python (aka CPython) up to 3.10.8 the mailcap module does not add escape characters into commands discovered in the system mailcap file. This may allow attackers to inject shell commands into applications that call mailcap.findmatch with untrusted input (if they lack validation of user-provided filenames or arguments). The fix is also back-ported to 3.7 3.8 3.9 | 2022-04-02T00:00:00.000Z | 2022-04-22T00:00:00.000Z |
| msrc_cve-2021-20295 | It was discovered that the update for the virt:rhel module in the RHSA-2020:4676 (https://access.redhat.com/errata/RHSA-2020:4676) erratum released as part of Red Hat Enterprise Linux 8.3 failed to include the fix for the qemu-kvm component issue CVE-2020-10756 which was previously corrected in virt:rhel/qemu-kvm via erratum RHSA-2020:4059 (https://access.redhat.com/errata/RHSA-2020:4059). CVE-2021-20295 was assigned to that Red Hat specific security regression. For more details about the original security issue CVE-2020-10756 refer to bug 1835986 or the CVE page: https://access.redhat.com/security/cve/CVE-2020-10756. | 2022-04-02T00:00:00.000Z | 2022-04-09T00:00:00.000Z |
| msrc_cve-2021-28544 | Apache Subversion SVN authz protected copyfrom paths regression | 2022-04-02T00:00:00.000Z | 2022-04-21T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202105-1693 | VT Designer is a screen editing software developed by Shenzhen INVT Electric Co., Ltd. fo… | 2022-05-04T09:55:13.186000Z |
| var-202103-1674 | Urve is a device used to reserve meeting rooms/guests. Urve has a command execution v… | 2022-05-04T09:55:17.992000Z |
| var-202103-1695 | Inhantong InRouter900 series industrial routers are 4G industrial routers. Inhantong … | 2022-05-04T09:55:17.981000Z |
| var-202103-1716 | BL-X22, BL-X16 and BL-X12 are all wireless routers of Shenzhen Bilian Electronics Co., Lt… | 2022-05-04T09:55:17.970000Z |
| var-202103-1737 | NARI Automation is a high-tech entity integrating software development, hardware developm… | 2022-05-04T09:55:17.959000Z |
| var-202103-1759 | OPTO22 SNAP-PAC-R2 is a new type of programmable automation controller from OPTO22, USA. … | 2022-05-04T09:55:17.947000Z |
| var-202103-1780 | Look at Xiaoxing. Smart cameras are important devices under the ZTE Smart Home Platform, … | 2022-05-04T09:55:17.936000Z |
| var-202103-1801 | SIEMENS-SCALANCE-W788-1 is a controller product of the SCALANCE series of German Siemens … | 2022-05-04T09:55:17.920000Z |
| var-202103-1653 | SCALANCE X208 is a Siemens switch. SIEMENS SCALANCE X208 has a denial of service vuln… | 2022-05-04T09:55:18.004000Z |
| var-202102-1533 | Tianyi broadband government-enterprise gateway A8-C is China Telecom's fiber optic modem.… | 2022-05-04T09:55:19.453000Z |
| var-202102-1554 | The business scope of Xi'an Jiaotong University Jabil Network Technology Co., Ltd. includ… | 2022-05-04T09:55:19.438000Z |
| var-202102-1575 | TL-WDR8690 is a wireless router. TP-Link TL-WDR8690 easy exhibition version has a den… | 2022-05-04T09:55:19.428000Z |
| var-202102-1596 | TPEditor is a programming software used by Delta Electronics for a programmable display s… | 2022-05-04T09:55:19.417000Z |
| var-202102-1617 | Tianxin Instrument Group Co., Ltd. is a professional service provider of domestic flow me… | 2022-05-04T09:55:19.406000Z |
| var-202101-1974 | ASUS RT-AX86U is a wireless router. ASUS RT-AX86U has a buffer overflow vulnerability… | 2022-05-04T09:55:20.830000Z |
| var-202101-1997 | Arrow Optoelectronics focuses on the R&D and manufacturing of infrared imaging technology… | 2022-05-04T09:55:20.819000Z |
| var-202101-2019 | Shanghai Buke Automation Co., Ltd. has been focusing on the R&D, production, sales and re… | 2022-05-04T09:55:20.807000Z |
| var-202102-0568 | Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV… | 2022-05-04T09:55:20.075000Z |
| var-202012-1591 | Nanjing Xindison Software Technology Co., Ltd. is a high-tech enterprise specializing in … | 2022-05-04T09:55:22.213000Z |
| var-202012-1612 | Forcecontrol is a monitoring configuration software, mainly used for data acquisition and… | 2022-05-04T09:55:22.201000Z |
| var-202011-1533 | Schneider-Electric M340 PLC is widely used in the field of industrial control. It is a hi… | 2022-05-04T09:55:26.531000Z |
| var-202011-1554 | Advantech WebAccess/HMI Designer is a man-machine interface integrated development tool. … | 2022-05-04T09:55:26.519000Z |
| var-202011-1575 | China United Network Communications Group Co., Ltd. ("China Unicom") is mainly engaged in… | 2022-05-04T09:55:26.507000Z |
| var-202011-1597 | RE6500 is a table/wall-mounted WiFi signal extender launched by Linksys, which specialize… | 2022-05-04T09:55:26.497000Z |
| var-202010-1437 | IBM Resilient OnPrem 38.2 could allow a privileged user to inject malicious commands thro… | 2022-05-04T09:55:28.247000Z |
| var-202010-1605 | H3C ERG2-450W is an enterprise-class Gigabit VPN router. H3C ERG2-450W has a weak pas… | 2022-05-04T09:55:28.152000Z |
| var-202010-1626 | Delta Electronics was established in 1971 to provide power management and cooling solutio… | 2022-05-04T09:55:28.141000Z |
| var-202009-1683 | Schneider Electric Modicon M580 PLC belongs to Schneider Company and is a programmable co… | 2022-05-04T09:55:29.364000Z |
| var-202009-1704 | Fuzhou Yihuyun Technology Co., Ltd. was established on December 17, 2018. The company's b… | 2022-05-04T09:55:29.352000Z |
| var-202008-1267 | DCS-2530L is a camera from DEXUN Electronic Equipment (Shanghai) Co., Ltd. D-Link DCS… | 2022-05-04T09:55:30.991000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2018-000038 | WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting | 2018-04-27T14:15+09:00 | 2018-08-30T12:00+09:00 |
| jvndb-2018-000039 | WordPress plugin "PixelYourSite" vulnerable to cross-site scripting | 2018-04-27T14:24+09:00 | 2018-08-30T11:55+09:00 |
| jvndb-2018-000040 | WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting | 2018-04-27T15:01+09:00 | 2018-08-30T13:54+09:00 |
| jvndb-2018-000041 | The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries | 2018-04-27T15:19+09:00 | 2018-08-30T14:12+09:00 |
| jvndb-2018-000042 | RT-AC87U vulnerable to cross-site scripting | 2018-05-09T15:37+09:00 | 2018-08-30T12:32+09:00 |
| jvndb-2018-000043 | RT-AC1200HP vulnerable to cross-site scripting | 2018-05-09T15:37+09:00 | 2018-08-30T12:15+09:00 |
| jvndb-2018-000044 | RT-AC68U vulnerable to cross-site scripting | 2018-05-09T15:38+09:00 | 2018-08-30T12:20+09:00 |
| jvndb-2018-000045 | Multiple vulnerabilities in WordPress plugin "Ultimate Member" | 2018-05-10T13:44+09:00 | 2018-08-30T18:11+09:00 |
| jvndb-2018-003030 | Access Control Vulnerability in Hitachi Infrastructure Analytics Advisor | 2018-05-10T15:30+09:00 | 2018-07-31T12:12+09:00 |
| jvndb-2018-000047 | IIJ SmartKey App for Android vulnerable to authentication bypass | 2018-05-11T14:34+09:00 | 2019-12-27T18:11+09:00 |
| jvndb-2018-000048 | KINEPASS App fails to verify SSL server certificates | 2018-05-11T14:34+09:00 | 2018-08-30T15:01+09:00 |
| jvndb-2018-000050 | Self-Extracting Archive files created by IExpress may insecurely load Dynamic Link Libraries | 2018-05-17T14:57+09:00 | 2018-08-21T16:40+09:00 |
| jvndb-2018-000051 | The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries | 2018-05-17T14:57+09:00 | 2019-07-05T16:41+09:00 |
| jvndb-2018-000049 | Multiple Microsoft Windows applications and installers may insecurely load Dynamic Link Libraries | 2018-05-17T15:18+09:00 | 2019-07-05T16:40+09:00 |
| jvndb-2018-000052 | Nessus vulnerable to cross-site scripting | 2018-05-21T13:39+09:00 | 2018-08-30T13:47+09:00 |
| jvndb-2018-000053 | Multiple vulnerabilities in Cybozu Office | 2018-05-22T14:30+09:00 | 2018-08-30T16:03+09:00 |
| jvndb-2018-000055 | Multiple vulnerabilities in baserCMS | 2018-05-22T14:53+09:00 | 2019-12-27T18:10+09:00 |
| jvndb-2018-000054 | Multiple cross-site scripting vulnerabilities in Cybozu Mailwise | 2018-05-22T15:26+09:00 | 2018-08-30T17:47+09:00 |
| jvndb-2018-000056 | Susie plug-in "axpdfium" may insecurely load Dynamic Link Libraries | 2018-05-24T15:15+09:00 | 2019-07-02T14:53+09:00 |
| jvndb-2018-000046 | The installer of PlayMemories Home for Windows may insecurely load Dynamic Link Libraries | 2018-05-24T15:25+09:00 | 2019-07-02T14:31+09:00 |
| jvndb-2018-003553 | Information Disclosure Vulnerability in Hitachi Automation Director | 2018-05-28T12:13+09:00 | 2018-07-31T12:16+09:00 |
| jvndb-2018-000058 | WordPress plugin "Email Subscribers & Newsletters" vulnerable to cross-site scripting | 2018-05-28T14:11+09:00 | 2019-07-02T14:50+09:00 |
| jvndb-2018-000059 | WordPress plugin "Site Reviews" vulnerable to cross-site scripting | 2018-05-28T14:11+09:00 | 2019-07-02T14:25+09:00 |
| jvndb-2018-000057 | The installer of "FLET'S VIRUS CLEAR Easy Setup & Application Tool" and "FLET'S VIRUS CLEAR v6 Easy Setup & Application Tool" may insecurely invoke an executable file | 2018-05-29T13:47+09:00 | 2019-12-27T18:09+09:00 |
| jvndb-2018-000060 | Multiple vulnerabilities in Pixelpost | 2018-05-31T14:07+09:00 | 2018-05-31T14:07+09:00 |
| jvndb-2018-000061 | H2O vulnerable to buffer overflow | 2018-06-04T14:10+09:00 | 2018-06-04T14:10+09:00 |
| jvndb-2018-000063 | LINE for Windows may insecurely load Dynamic Link Libraries | 2018-06-12T14:44+09:00 | 2018-06-12T14:44+09:00 |
| jvndb-2018-000062 | Local File Inclusion vulnerability in Zenphoto | 2018-06-13T15:11+09:00 | 2018-06-13T15:11+09:00 |
| jvndb-2018-000064 | Chrome Extension "5000 trillion yen converter" vulnerable to cross-site scripting | 2018-06-15T14:36+09:00 | 2018-06-15T14:36+09:00 |
| jvndb-2018-000065 | ANA App for iOS fails to verify SSL server certificates | 2018-06-15T14:40+09:00 | 2019-12-27T18:08+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-01889 | OpenSSL 'dtls1_listen'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01890 | OpenSSL 'ASN1_TYPE_cmp'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01891 | OpenSSL ASN.1 signature-verification拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01892 | OpenSSL 'ASN1_item_ex_d2i'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01893 | OpenSSL PKCS#7拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01894 | OpenSSL 'EVP_DecodeUpdate'拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01895 | OpenSSL SSLv2拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01896 | OpenSSL 'ssl3_get_client_key_exchange'函数拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01897 | OpenSSL 'ssl3_client_hello'拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01898 | OpenSSL 'd2i_ECPrivateKey'内存错误引用漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01899 | OpenSSL X509_to_X509_REQ拒绝服务漏洞 | 2015-03-20 | 2015-03-23 |
| cnvd-2015-01900 | LFTP中间人信息泄露漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01901 | GnuTLS证书验证安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01902 | Suricata空指针拒绝服务漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01903 | Python Restkit TLS证书验证安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01904 | FerretCMS存在多个跨站请求伪造漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01905 | IBM Rational Focal Point安全绕过漏洞 | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01906 | IBM Rational Focal Point跨站脚本漏洞(CNVD-2015-01906) | 2015-03-20 | 2015-03-24 |
| cnvd-2015-01907 | IBM Rational Focal Point HTML注入漏洞(CNVD-2015-01907) | 2015-03-20 | 2015-03-24 |
| cnvd-2016-00942 | Easy Paint Tool SAI绘图软件处理sai文件拒绝服务漏洞 | 2015-03-20 | 2015-05-05 |
| cnvd-2015-01908 | Mono中间人欺骗漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01909 | OpenDaylight l2switch安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01910 | OpenDaylight OpenFlow插件安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01911 | OpenDaylight OpenFlow插件安全绕过漏洞(CNVD-2015-01911) | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01912 | OpenDaylight Helium验证绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01913 | Nullsoft Scriptable Install System Inetc插件安全绕过漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01914 | Joomla! 'com_tpjobs'组件'id_c[]'参数SQL注入漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01915 | SuperWebMailer跨站脚本漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01916 | MyBB cache handler漏洞 | 2015-03-23 | 2015-03-24 |
| cnvd-2015-01917 | Fortinet Single Sign On collectoragent.exe栈缓冲区溢出漏洞 | 2015-03-23 | 2015-03-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTA-2004-AVI-183 | Mise à jour de sécurité MacOS X | 2004-06-08T00:00:00.000000 | 2004-06-08T00:00:00.000000 |
| CERTA-2004-AVI-184 | Vulnérabilité de Oracle E-Business Suite | 2004-06-08T00:00:00.000000 | 2004-06-14T00:00:00.000000 |
| certa-2004-avi-183 | Mise à jour de sécurité MacOS X | 2004-06-08T00:00:00.000000 | 2004-06-08T00:00:00.000000 |
| certa-2004-avi-184 | Vulnérabilité de Oracle E-Business Suite | 2004-06-08T00:00:00.000000 | 2004-06-14T00:00:00.000000 |
| CERTA-2004-AVI-185 | Vulnérabilité dans le pilote ODBC de PostgreSQL | 2004-06-09T00:00:00.000000 | 2004-07-28T00:00:00.000000 |
| CERTA-2004-AVI-186 | Vulnérabilité de Squid | 2004-06-09T00:00:00.000000 | 2004-06-17T00:00:00.000000 |
| CERTA-2004-AVI-187 | Vulnérabilité de DirectPlay | 2004-06-09T00:00:00.000000 | 2004-06-09T00:00:00.000000 |
| CERTA-2004-AVI-188 | Vulnérabilité dans Crystal Reports Web Viewer | 2004-06-09T00:00:00.000000 | 2004-06-09T00:00:00.000000 |
| CERTA-2004-AVI-189 | Vulnérabilité de Mailman | 2004-06-09T00:00:00.000000 | 2005-06-10T00:00:00.000000 |
| certa-2004-avi-185 | Vulnérabilité dans le pilote ODBC de PostgreSQL | 2004-06-09T00:00:00.000000 | 2004-07-28T00:00:00.000000 |
| certa-2004-avi-186 | Vulnérabilité de Squid | 2004-06-09T00:00:00.000000 | 2004-06-17T00:00:00.000000 |
| certa-2004-avi-187 | Vulnérabilité de DirectPlay | 2004-06-09T00:00:00.000000 | 2004-06-09T00:00:00.000000 |
| certa-2004-avi-188 | Vulnérabilité dans Crystal Reports Web Viewer | 2004-06-09T00:00:00.000000 | 2004-06-09T00:00:00.000000 |
| certa-2004-avi-189 | Vulnérabilité de Mailman | 2004-06-09T00:00:00.000000 | 2005-06-10T00:00:00.000000 |
| CERTA-2004-AVI-190 | Vulnérabilités de CVS | 2004-06-10T00:00:00.000000 | 2004-06-15T00:00:00.000000 |
| CERTA-2004-AVI-191 | Vulnérabilité de Cisco CatOS | 2004-06-10T00:00:00.000000 | 2004-06-10T00:00:00.000000 |
| certa-2004-avi-190 | Vulnérabilités de CVS | 2004-06-10T00:00:00.000000 | 2004-06-15T00:00:00.000000 |
| certa-2004-avi-191 | Vulnérabilité de Cisco CatOS | 2004-06-10T00:00:00.000000 | 2004-06-10T00:00:00.000000 |
| CERTA-2004-AVI-192 | Vulnérabilité du client FTP sous HP-UX | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| CERTA-2004-AVI-193 | Vulnérabilité du logiciel OfficeScan de Trend Micro | 2004-06-11T00:00:00.000000 | 2004-06-22T00:00:00.000000 |
| CERTA-2004-AVI-194 | Multiples vulnérabilités de RealPlayer | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| CERTA-2004-AVI-195 | Vulnérabilité du module mod_proxy du serveur HTTP Apache | 2004-06-11T00:00:00.000000 | 2004-09-01T00:00:00.000000 |
| CERTA-2004-AVI-196 | Déni de service pour isakmpd | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| certa-2004-avi-192 | Vulnérabilité du client FTP sous HP-UX | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| certa-2004-avi-193 | Vulnérabilité du logiciel OfficeScan de Trend Micro | 2004-06-11T00:00:00.000000 | 2004-06-22T00:00:00.000000 |
| certa-2004-avi-194 | Multiples vulnérabilités de RealPlayer | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| certa-2004-avi-195 | Vulnérabilité du module mod_proxy du serveur HTTP Apache | 2004-06-11T00:00:00.000000 | 2004-09-01T00:00:00.000000 |
| certa-2004-avi-196 | Déni de service pour isakmpd | 2004-06-11T00:00:00.000000 | 2004-06-11T00:00:00.000000 |
| CERTA-2004-AVI-197 | Vulnérabilité de subversion | 2004-06-14T00:00:00.000000 | 2004-06-17T00:00:00.000000 |
| certa-2004-avi-197 | Vulnérabilité de subversion | 2004-06-14T00:00:00.000000 | 2004-06-17T00:00:00.000000 |