Recent vulnerabilities

ID	Description	Published	Updated
ghsa-cx7j-rj4h-5pcp	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-9fm7-jphj-www8	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-99q6-rwrv-jmv2	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-94r7-9p3x-553x	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-938x-vjmp-c2cw	Missing Authorization vulnerability in icc0rz H5P h5p allows Exploiting Incorrectly Configured Acce…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-8rw5-5q8r-v7wp	Insertion of Sensitive Information Into Sent Data vulnerability in Essekia Tablesome tablesome allo…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-77hc-4gv2-jvc3	Authorization Bypass Through User-Controlled Key vulnerability in WP Swings Membership For WooComme…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-6j99-pxhq-32m7	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-69qh-rjw9-c5r7	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-5r6v-m938-j27m	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-5pwf-g66r-gj32	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-5hh2-4g6r-hrhh	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-489x-g8w5-gfwp	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-3xqp-rgw8-gm7m	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in 10up Ei…	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-3wm8-ph73-r7q9	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Jeff Starr User Submitted Post…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-3qvp-8fgf-93v3	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-2whw-f57x-r8vq	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-266w-r6vg-579f	Missing Authorization vulnerability in wpstream WpStream wpstream allows Exploiting Incorrectly Con…	2025-12-24T15:30:41Z	2025-12-24T21:30:28Z
ghsa-22vc-cp5h-m3m9	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 …	2025-12-24T15:30:40Z	2025-12-24T21:30:28Z
ghsa-x5xq-cwhv-jgjh	MyNET up to v26.08.316 was discovered to contain an Unauthenticated SQL Injection vulnerability via…	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-m9g9-rxjq-3p3h	MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability v…	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-hcr2-46j7-rjhp	A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. This …	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-gc5g-jhc5-xh8h	A reflected cross-site scripting (XSS) vulnerability in MyNET up to v26.08 allows attackers to exec…	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-frq8-587v-8qcr	Under certain circumstances a successful exploitation could result in access to the device.	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-fc8g-5x2c-p65r	An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to red…	2025-12-24T15:30:44Z	2025-12-24T18:30:22Z
ghsa-f7m4-f638-5p2j	The Gravity Forms WordPress plugin before 2.9.23.1 does not properly prevent users from uploading d…	2025-12-24T06:30:26Z	2025-12-24T18:30:22Z
ghsa-475m-mm7r-j479	In the Linux kernel, the following vulnerability has been resolved: usb: potential integer overflo…	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-3vrr-x6c8-rfm2	Under certain circumstances a successful exploitation could result in access to the device.	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-9g2h-fh68-3p2v	Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to i…	2025-12-15T21:30:32Z	2025-12-24T18:30:17Z
ghsa-47f7-v3jr-88mg	Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject…	2025-12-15T21:30:32Z	2025-12-24T18:30:17Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68576	N/A	WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Ex…	Virusdie	Virusdie	2025-12-24T13:10:38.690Z	2025-12-24T19:29:50.810Z
cve-2025-68577	N/A	WordPress Virusdie plugin <= 1.1.6 - Broken Access Con…	Virusdie	Virusdie	2025-12-24T13:10:38.980Z	2025-12-24T19:29:44.994Z
cve-2025-68578	N/A	WordPress Addonify plugin <= 2.0.4 - Broken Access Con…	Addonify	Addonify	2025-12-24T13:10:39.343Z	2025-12-24T19:29:38.853Z
cve-2025-68579	N/A	WordPress FV Simpler SEO plugin <= 1.9.6 - Broken Acce…	FolioVision	FV Simpler SEO	2025-12-24T13:10:39.669Z	2025-12-24T19:29:33.249Z
cve-2025-68580	N/A	WordPress Advanced Classifieds & Directory Pro plugin …	pluginsware	Advanced Classifieds & Directory Pro	2025-12-24T13:10:40.193Z	2025-12-24T19:29:27.270Z
cve-2025-68581	N/A	WordPress YITH Slider for page builders plugin <= 1.0.…	YITHEMES	YITH Slider for page builders	2025-12-24T13:10:40.513Z	2025-12-24T19:29:20.723Z
cve-2025-68582	N/A	WordPress Funnelforms Free plugin <= 3.8 - Broken Acce…	Funnelforms	Funnelforms Free	2025-12-24T13:10:40.817Z	2025-12-24T19:29:14.885Z
cve-2025-68583	N/A	WordPress Fast User Switching plugin <= 1.4.10 - Cross…	Tikweb Management	Fast User Switching	2025-12-24T13:10:41.121Z	2025-12-24T19:29:09.323Z
cve-2025-68584	N/A	WordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site R…	Constantin Boiangiu	Vimeotheque	2025-12-24T13:10:41.424Z	2025-12-24T19:29:04.076Z
cve-2025-68585	N/A	WordPress WP Document Revisions plugin <= 3.7.2 - Brok…	Ben Balter	WP Document Revisions	2025-12-24T13:10:41.715Z	2025-12-24T19:28:57.679Z
cve-2025-68586	N/A	WordPress Cooked plugin <= 1.11.2 - Broken Access Cont…	Gora Tech	Cooked	2025-12-24T13:10:42.037Z	2025-12-24T19:28:51.677Z
cve-2025-68587	N/A	WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co…	Bob	Watu Quiz	2025-12-24T13:10:42.440Z	2025-12-24T19:28:45.997Z
cve-2025-68588	N/A	WordPress TS Poll plugin <= 2.5.3 - Broken Access Cont…	totalsoft	TS Poll	2025-12-24T13:10:42.857Z	2025-12-24T19:28:40.371Z
cve-2025-68589	N/A	WordPress WP Telegram Widget and Join Link plugin <= 2…	WP Socio	WP Telegram Widget and Join Link	2025-12-24T13:10:43.150Z	2025-12-24T19:28:35.116Z
cve-2025-68590	N/A	WordPress Integration for Contact Form 7 HubSpot plugi…	CRM Perks	Integration for Contact Form 7 HubSpot	2025-12-24T13:10:43.422Z	2025-12-24T19:28:30.139Z
cve-2025-68591	N/A	WordPress Simple File List plugin <= 6.1.15 - Broken A…	Mitchell Bennis	Simple File List	2025-12-24T13:10:43.716Z	2025-12-24T19:28:25.578Z
cve-2025-68592	N/A	WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces…	Liton Arefin	WP Adminify	2025-12-24T13:10:43.992Z	2025-12-24T19:28:20.490Z
cve-2025-68593	N/A	WordPress WP Adminify plugin <= 4.0.6.1 - Broken Acces…	Liton Arefin	WP Adminify	2025-12-24T13:10:44.275Z	2025-12-24T19:28:13.749Z
cve-2025-68594	N/A	WordPress Poll, Survey & Quiz Maker Plugin by Opinion …	Assaf Parag	Poll, Survey & Quiz Maker Plugin by Opinion Stage	2025-12-24T13:10:44.556Z	2025-12-24T19:28:08.300Z
cve-2025-68595	N/A	WordPress Widgets for Social Photo Feed plugin <= 1.7.…	Trustindex	Widgets for Social Photo Feed	2025-12-24T13:10:44.856Z	2025-12-24T19:28:01.577Z
cve-2025-68596	N/A	WordPress Bit Assist plugin <= 1.5.11 - Broken Access …	Bit Apps	Bit Assist	2025-12-24T13:10:45.364Z	2025-12-24T19:27:55.686Z
cve-2025-68597	N/A	WordPress Jobs for WordPress plugin <= 2.7.17 - Cross …	BlueGlass Interactive AG	Jobs for WordPress	2025-12-24T13:10:45.718Z	2025-12-24T19:27:50.540Z
cve-2025-68598	N/A	WordPress Page Builder: Live Composer plugin <= 2.0.5 …	LiveComposer	Page Builder: Live Composer	2025-12-24T13:10:45.982Z	2025-12-24T19:27:44.859Z
cve-2025-68599	N/A	WordPress YouTube Embed plugin <= 5.4 - Cross Site Scr…	Embeds For YouTube Plugin Support	YouTube Embed	2025-12-24T13:10:46.247Z	2025-12-24T19:27:39.427Z
cve-2025-68600	N/A	WordPress Link Library plugin <= 7.8.4 - Server Side R…	Yannick Lefebvre	Link Library	2025-12-24T13:10:46.548Z	2025-12-24T19:27:33.977Z
cve-2025-68601	N/A	WordPress Five Star Restaurant Reservations plugin <= …	Rustaurius	Five Star Restaurant Reservations	2025-12-24T13:10:46.860Z	2025-12-24T19:27:28.517Z
cve-2025-68602	N/A	WordPress Accept Donations with PayPal plugin <= 1.5.1…	Scott Paterson	Accept Donations with PayPal	2025-12-24T13:10:47.134Z	2025-12-24T19:27:22.742Z
cve-2025-68603	N/A	WordPress Editorial Calendar plugin <= 3.8.8 - Broken …	Marketing Fire	Editorial Calendar	2025-12-24T13:10:47.744Z	2025-12-24T19:27:16.669Z
cve-2025-68605	N/A	WordPress Post Grid and Gutenberg Blocks plugin <= 2.3…	PickPlugins	Post Grid and Gutenberg Blocks	2025-12-24T13:10:48.261Z	2025-12-24T19:27:09.736Z
cve-2025-68606	N/A	WordPress PostX plugin <= 5.0.3 - Sensitive Data Expos…	WPXPO	PostX	2025-12-24T13:10:48.784Z	2025-12-24T19:27:01.170Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68505	N/A	WordPress H5P plugin <= 1.16.1 - Broken Access Control…	icc0rz	H5P	2025-12-24T12:31:20.714Z	2025-12-24T19:35:13.288Z
cve-2025-68500	N/A	WordPress Prime Slider – Addons For Elementor plugin <…	bdthemes	Prime Slider – Addons For Elementor	2025-12-24T12:31:20.426Z	2025-12-24T19:35:20.294Z
cve-2025-68497	N/A	WordPress Astra Widgets plugin <= 1.2.16 - Cross Site …	Brainstorm Force	Astra Widgets	2025-12-24T12:31:19.996Z	2025-12-24T19:35:27.005Z
cve-2025-68496	N/A	WordPress User Feedback plugin <= 1.10.1 - SQL Injecti…	Syed Balkhi	User Feedback	2025-12-24T12:31:19.688Z	2025-12-24T19:35:34.794Z
cve-2025-68494	N/A	WordPress Premium Addons for Elementor plugin <= 4.11.…	Leap13	Premium Addons for Elementor	2025-12-24T12:31:19.012Z	2025-12-24T19:35:42.557Z
cve-2025-68038	N/A	WordPress Icegram Express Pro plugin <= 5.9.11 - PHP O…	Icegram	Icegram Express Pro	2025-12-24T13:10:25.043Z	2025-12-24T19:31:09.858Z
cve-2025-67909	N/A	WordPress Membership For WooCommerce plugin <= 3.0.3 -…	WP Swings	Membership For WooCommerce	2025-12-24T13:10:24.788Z	2025-12-24T19:31:16.024Z
cve-2025-67633	N/A	WordPress Greenhouse Job Board plugin <= 2.7.3 - Cross…	brownbagmarketing	Greenhouse Job Board	2025-12-24T13:10:24.524Z	2025-12-24T19:31:21.916Z
cve-2025-67632	N/A	WordPress Google AdSense for Responsive Design – GARD …	The Plugin Factory	Google AdSense for Responsive Design – GARD	2025-12-24T13:10:24.256Z	2025-12-24T19:31:27.649Z
cve-2025-67631	N/A	WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip…	Ecommerce Platforms	Gift Hunt	2025-12-24T13:10:23.974Z	2025-12-24T19:31:33.338Z
cve-2025-67630	N/A	WordPress WH Tweaks plugin <= 1.0.2 - Cross Site Scrip…	webheadcoder	WH Tweaks	2025-12-24T13:10:23.685Z	2025-12-24T19:31:39.355Z
cve-2025-67629	N/A	WordPress Basticom Framework plugin <= 1.5.2 - Cross S…	Basticom	Basticom Framework	2025-12-24T13:10:23.380Z	2025-12-24T19:31:45.343Z
cve-2025-67628	N/A	WordPress Review Disclaimer plugin <= 2.0.3 - Cross Si…	AMP-MODE	Review Disclaimer	2025-12-24T13:10:23.116Z	2025-12-24T19:31:51.235Z
cve-2025-67627	N/A	WordPress Draft Notify plugin <= 1.5 - Cross Site Scri…	TouchOfTech	Draft Notify	2025-12-24T13:10:22.835Z	2025-12-24T19:31:57.185Z
cve-2025-67625	N/A	WordPress Trade Runner plugin <= 3.14 - Cross Site Req…	tmtraderunner	Trade Runner	2025-12-24T13:10:22.548Z	2025-12-24T19:32:03.934Z
cve-2025-67623	N/A	WordPress 6Storage Rentals plugin <= 2.19.9 - Server S…	6Storage	6Storage Rentals	2025-12-24T13:10:22.188Z	2025-12-24T19:32:10.048Z
cve-2025-67622	N/A	WordPress Evergreen Post Tweeter plugin <= 1.8.9 - Cro…	titopandub	Evergreen Post Tweeter	2025-12-24T13:10:21.161Z	2025-12-24T19:32:16.023Z
cve-2025-67621	N/A	WordPress Eight Day Week Print Workflow plugin <= 1.2.…	10up	Eight Day Week Print Workflow	2025-12-24T13:10:20.740Z	2025-12-24T19:32:21.672Z
cve-2025-3232	7.5 (v3.1) 8.7 (v4.0)	Mitsubishi Electric Europe smartRTU Missing Authentica…	Mitsubishi Electric Europe	smartRTU	2025-12-24T19:55:43.172Z	2025-12-24T20:01:27.393Z
cve-2025-34412	N/A	{'providerMetadata': {'orgId': '83251b91-4cc7-4094-a5c7-464a1b83ea10', 'shortName': 'VulnCheck', 'dateUpdated': '2025-12-24T19:58:17.386Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it identified a vulnerability in a SaaS product that does not require user action.'}], 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it identified a vulnerability in a SaaS product that does not require user action.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}}	N/A	N/A	2025-12-15T14:44:13.924Z	2025-12-24T19:58:17.386Z
cve-2025-34411	N/A	{'providerMetadata': {'orgId': '83251b91-4cc7-4094-a5c7-464a1b83ea10', 'shortName': 'VulnCheck', 'dateUpdated': '2025-12-24T19:58:04.485Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it identified a vulnerability in a SaaS product that does not require user action.'}], 'value': 'This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because it identified a vulnerability in a SaaS product that does not require user action.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}}	N/A	N/A	2025-12-15T14:43:37.839Z	2025-12-24T19:58:04.485Z
cve-2018-25154	8.5 (v4.0) 9.8 (v3.1)	GNU Barcode 0.99 Buffer Overflow in Code 93 Encoding M…	The GNU Project \| Free Software Foundation, Inc.	GNU Barcode	2025-12-24T19:27:53.486Z	2025-12-24T20:24:32.336Z
cve-2018-25153	6.9 (v4.0) 7.5 (v3.1)	GNU Barcode 0.99 Memory Leak Vulnerability in Command …	The GNU Project \| Free Software Foundation, Inc.	GNU Barcode	2025-12-24T19:27:53.062Z	2025-12-24T20:24:39.099Z
cve-2018-25152	5.1 (v4.0) 5.3 (v3.1)	Ecessa Edge EV150 10.7.4 Cross-Site Request Forgery vi…	Ecessa Corporation	Ecessa Edge EV150	2025-12-24T19:27:52.680Z	2025-12-24T20:24:45.919Z
cve-2018-25151	5.1 (v4.0) 4.3 (v3.1)	Ecessa WANWorx WVR-30 < 10.7.4 Cross-Site Request Forg…	Ecessa Corporation	WANWorx WVR-30	2025-12-24T19:27:52.222Z	2025-12-24T20:24:53.133Z
cve-2018-25150	5.1 (v4.0) 5.3 (v3.1)	Ecessa ShieldLink SL175EHQ 10.7.4 Cross-Site Request F…	Ecessa Corporation	Ecessa ShieldLink SL175EHQ	2025-12-24T19:27:51.814Z	2025-12-24T20:24:59.684Z
cve-2025-36154	6.2 (v3.1)	IBM Concert Software Cleartext Storage in a File or on Disk.	IBM	Concert	2025-12-24T19:01:48.161Z	2025-12-24T20:02:34.098Z
cve-2019-25228	5.1 (v4.0) 5.3 (v3.1)	Kentico Xperience <= 12.0.47 Virtual Context Informati…	Kentico	Xperience	2025-12-18T19:53:23.892Z	2025-12-18T21:48:40.408Z
cve-2019-25229	8.7 (v4.0) 8.8 (v3.1)	Kentico Xperience <= 12.0.29 MVC Forms Unrestricted Fi…	Kentico	Xperience	2025-12-18T19:53:24.336Z	2025-12-18T21:48:34.976Z
cve-2020-36889	5.1 (v4.0) 4.6 (v3.1)	Kentico Xperience <= 12.0.90 Administration Interface …	Kentico	Xperience	2025-12-18T19:53:25.212Z	2025-12-18T21:48:24.696Z

ID	Description	Published	Updated
fkie_cve-2025-68494	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Leap13 …	2025-12-24T13:16:19.927	2025-12-24T20:15:57.487
fkie_cve-2025-68038	Deserialization of Untrusted Data vulnerability in Icegram Icegram Express Pro email-subscribers-pr…	2025-12-24T13:16:19.807	2025-12-24T20:15:57.323
fkie_cve-2025-67909	Authorization Bypass Through User-Controlled Key vulnerability in WP Swings Membership For WooComme…	2025-12-24T13:16:19.677	2025-12-24T20:15:57.167
fkie_cve-2025-67633	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.557	2025-12-24T20:15:56.997
fkie_cve-2025-67632	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.430	2025-12-24T20:15:56.813
fkie_cve-2025-67631	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.310	2025-12-24T20:15:56.660
fkie_cve-2025-67630	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.190	2025-12-24T20:15:56.500
fkie_cve-2025-67629	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:19.070	2025-12-24T20:15:56.333
fkie_cve-2025-67628	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:18.943	2025-12-24T20:15:56.183
fkie_cve-2025-67627	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-24T13:16:18.823	2025-12-24T20:15:56.037
fkie_cve-2025-67625	Cross-Site Request Forgery (CSRF) vulnerability in tmtraderunner Trade Runner traderunner allows Cr…	2025-12-24T13:16:18.703	2025-12-24T20:15:55.880
fkie_cve-2025-67623	Server-Side Request Forgery (SSRF) vulnerability in 6Storage 6Storage Rentals 6storage-rentals allo…	2025-12-24T13:16:18.583	2025-12-24T20:15:55.727
fkie_cve-2025-67622	Cross-Site Request Forgery (CSRF) vulnerability in titopandub Evergreen Post Tweeter evergreen-post…	2025-12-24T13:16:18.453	2025-12-24T20:15:55.573
fkie_cve-2025-67621	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in 10up Ei…	2025-12-24T13:16:18.317	2025-12-24T20:15:55.420
fkie_cve-2025-3232	A remote unauthenticated attacker may be able to bypass authentication by utilizing a specific API…	2025-12-24T20:15:55.233	2025-12-24T20:15:55.233
fkie_cve-2025-34412	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because …	2025-12-15T15:15:50.147	2025-12-24T20:15:55.123
fkie_cve-2025-34411	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority because …	2025-12-15T15:15:49.997	2025-12-24T20:15:55.043
fkie_cve-2018-25154	GNU Barcode 0.99 contains a buffer overflow vulnerability in its code 93 encoding process that allo…	2025-12-24T20:15:50.280	2025-12-24T20:15:50.280
fkie_cve-2018-25153	GNU Barcode 0.99 contains a memory leak vulnerability in the command line processing function withi…	2025-12-24T20:15:50.123	2025-12-24T20:15:50.123
fkie_cve-2018-25152	Ecessa Edge EV150 10.7.4 contains a cross-site request forgery vulnerability that allows attackers …	2025-12-24T20:15:49.970	2025-12-24T20:15:49.970
fkie_cve-2018-25151	Ecessa WANWorx WVR-30 versions before 10.7.4 contain a cross-site request forgery vulnerability tha…	2025-12-24T20:15:49.820	2025-12-24T20:15:49.820
fkie_cve-2018-25150	Ecessa ShieldLink SL175EHQ 10.7.4 contains a cross-site request forgery vulnerability that allows a…	2025-12-24T20:15:49.663	2025-12-24T20:15:49.663
fkie_cve-2025-36154	IBM Concert 1.0.0 through 2.1.0 stores sensitive information in cleartext during recursive docker b…	2025-12-24T19:15:44.333	2025-12-24T19:15:44.333
fkie_cve-2019-25228	An information disclosure vulnerability in Kentico Xperience allows attackers to leak virtual conte…	2025-12-18T20:15:48.693	2025-12-24T18:17:28.110
fkie_cve-2019-25229	An unrestricted file upload vulnerability in Kentico Xperience allows authenticated users with 'Rea…	2025-12-18T20:15:48.883	2025-12-24T18:16:55.480
fkie_cve-2020-36889	A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicio…	2025-12-18T20:15:49.200	2025-12-24T18:16:50.107
fkie_cve-2019-25230	An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sen…	2025-12-18T20:15:49.040	2025-12-24T18:16:42.040
fkie_cve-2020-36890	An access control bypass vulnerability in Kentico Xperience allows administrators to modify global …	2025-12-18T20:15:49.347	2025-12-24T18:15:25.033
fkie_cve-2020-36891	A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to upload files w…	2025-12-18T20:15:49.490	2025-12-24T18:15:14.730
fkie_cve-2021-47711	A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject malicious…	2025-12-18T20:15:49.653	2025-12-24T18:15:02.687

ID	Description	Package	Published	Updated
pysec-2024-200	JupyterHub is software that allows one to create a multi-user server for Jupyter notebook…	jupyterhub	2024-08-08T15:15:17+00:00	2025-01-19T16:22:58.171761+00:00
pysec-2024-199	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:02+00:00	2025-01-19T16:22:57.938459+00:00
pysec-2024-198	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:11+00:00	2025-01-19T16:22:57.845317+00:00
pysec-2024-197	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T16:22:57.732726+00:00
pysec-2024-196	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T16:22:57.640183+00:00
pysec-2024-195	Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow…	apache-airflow	2024-06-14T09:15:09+00:00	2025-01-19T16:22:56.419822+00:00
pysec-2024-194	A clickjacking vulnerability exists in zenml-io/zenml versions up to and including 0.55.5…	zenml	2024-06-06T19:15:54+00:00	2025-01-19T13:22:31.835293+00:00
pysec-2024-193	An issue was discovered in zenml-io/zenml versions up to and including 0.55.4. Due to imp…	zenml	2024-06-06T19:15:53+00:00	2025-01-19T13:22:31.701775+00:00
pysec-2024-192	An issue was discovered in llama_index before 0.10.38. download/integration.py includes a…	llama-index	2024-08-22T20:15:10+00:00	2025-01-19T13:22:29.175614+00:00
pysec-2024-191	The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2024-10-24T22:15:04+00:00	2025-01-19T10:22:29.812605+00:00
pysec-2024-190	Apache Airflow 2.4.0, and versions before 2.9.3, has a vulnerability that allows authenti…	apache-airflow	2024-07-17T08:15:02+00:00	2025-01-19T07:21:16.859034+00:00
pysec-2024-189	Apache Airflow versions before 2.9.3 have a vulnerability that allows an authenticated at…	apache-airflow	2024-07-17T08:15:01+00:00	2025-01-19T07:21:16.796301+00:00
pysec-2024-188	WebOb provides objects for HTTP requests and responses. When WebOb normalizes the HTTP Lo…	webob	2024-08-14T21:15:17+00:00	2025-01-19T04:23:01.908824+00:00
pysec-2024-187	virtualenv before 20.26.6 allows command injection through the activation scripts for a v…	virtualenv	2024-11-24T16:15:06+00:00	2025-01-19T04:23:01.784352+00:00
pysec-2024-186	RestrictedPython is a restricted execution environment for Python to run untrusted code. …	restrictedpython	2024-09-30T16:15:09+00:00	2025-01-19T04:23:01.259448+00:00
pysec-2024-185	Nebari through 2024.4.1 prints the temporary Keycloak root password.	nebari	2024-05-06T00:15:10+00:00	2025-01-19T04:23:00.951638+00:00
pysec-2024-184	A local file inclusion vulnerability exists in the JSON component of gradio-app/gradio ve…	gradio	2024-06-06T18:15:18+00:00	2025-01-19T04:23:00.017053+00:00
pysec-2024-183	CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St…	codechecker	2024-11-06T15:15:11+00:00	2025-01-19T04:22:59.576907+00:00
pysec-2024-182	Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive…	apache-airflow	2024-11-15T09:15:14+00:00	2025-01-19T04:22:59.398988+00:00
pysec-2024-181	Apache Airflow, versions before 2.10.0, have a vulnerability that allows the developer of…	apache-airflow	2024-08-21T16:15:08+00:00	2025-01-19T04:22:59.351008+00:00
pysec-2024-180	Stored XSS in organizer and event settings of pretix up to 2024.7.0 allows malicious even…	pretix	2024-08-23T15:15:17+00:00	2025-01-19T01:52:24.493530+00:00
pysec-2024-179	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-03-18T22:15:07+00:00	2025-01-19T01:52:24.377662+00:00
pysec-2024-178	Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to version 2…	litestar	2024-11-20T21:15:08+00:00	2025-01-19T01:52:23.772726+00:00
pysec-2024-177	Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach…	langflow	2024-06-10T20:15:15+00:00	2025-01-19T01:52:23.722576+00:00
pysec-2024-176	A reflected Cross-Site Scripting (XSS) vulnerability was identified in zenml-io/zenml ver…	zenml	2024-06-30T16:15:03+00:00	2025-01-18T22:21:45.122426+00:00
pysec-2024-175	WordOps through 3.20.0 has a wo/cli/plugins/stack_pref.py TOCTOU race condition because t…	wordops	2024-05-06T00:15:10+00:00	2025-01-18T22:21:44.991242+00:00
pysec-2024-174	Server-Side Request Forgery (SSRF) vulnerability in Apache StreamPipes during installatio…	streampipes	2024-07-17T09:15:02+00:00	2025-01-18T22:21:43.678475+00:00
pysec-2024-173	Unrestricted Upload of File with dangerous type vulnerability in Apache StreamPipes. Such…	streampipes	2024-07-17T10:15:01+00:00	2025-01-18T22:21:43.618882+00:00
pysec-2024-172	Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache StreamPipes in …	streampipes	2024-07-17T09:15:02+00:00	2025-01-18T22:21:43.557516+00:00
pysec-2024-171	Strawberry GraphQL is a library for creating GraphQL APIs. Prior to version 0.243.0, mult…	strawberry-graphql	2024-09-25T18:15:05+00:00	2025-01-18T22:21:43.412172+00:00

ID	Description	Updated
gsd-2024-33683	Cross-Site Request Forgery (CSRF) vulnerability in WP Republic Hide Dashboard Notificatio…	2024-04-27T05:02:18.438205Z
gsd-2024-33755	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.436135Z
gsd-2024-33687	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.432624Z
gsd-2024-33753	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.430763Z
gsd-2024-33756	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.430035Z
gsd-2024-33717	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.429699Z
gsd-2024-33724	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.429383Z
gsd-2024-33706	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.427436Z
gsd-2024-33787	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.424661Z
gsd-2024-33799	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.424348Z
gsd-2024-33813	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.424031Z
gsd-2024-33735	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.410261Z
gsd-2024-33721	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.408369Z
gsd-2024-33695	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-27T05:02:18.407619Z
gsd-2024-33752	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.406190Z
gsd-2024-33692	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-27T05:02:18.404770Z
gsd-2024-33696	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-27T05:02:18.403548Z
gsd-2024-33761	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.399777Z
gsd-2024-33689	Cross-Site Request Forgery (CSRF) vulnerability in Tony Zeoli, Tony Hayes Radio Station.T…	2024-04-27T05:02:18.398121Z
gsd-2024-33730	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.396940Z
gsd-2024-33708	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.395735Z
gsd-2024-33830	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.395389Z
gsd-2024-33843	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.393431Z
gsd-2024-33841	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.393169Z
gsd-2024-33686	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.392053Z
gsd-2024-33816	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.388757Z
gsd-2024-33785	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.387543Z
gsd-2024-33703	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.386761Z
gsd-2024-33705	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.385891Z
gsd-2024-33824	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.385552Z

ID	Description	Published	Updated
mal-2025-49419	Malicious code in libxmljs2superbank (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:28Z
mal-2025-49340	Malicious code in loaders-fbo.gov (npm)	2025-11-03T18:59:00Z	2025-12-24T10:09:28Z
mal-2025-48554	Malicious code in js-repack (npm)	2025-10-22T06:53:48Z	2025-12-24T10:09:28Z
mal-2025-47927	Malicious code in graphflux (npm)	2025-10-07T00:28:13Z	2025-12-24T10:09:28Z
mal-2025-191969	Malicious code in kkkaremn (npm)	2025-12-03T00:55:45Z	2025-12-24T10:09:28Z
mal-2025-191961	Malicious code in karem5 (npm)	2025-12-03T01:23:28Z	2025-12-24T10:09:28Z
mal-2025-191948	Malicious code in kkkarem (npm)	2025-12-03T00:35:42Z	2025-12-24T10:09:28Z
mal-2025-191579	Malicious code in lbank-connector-nodejs (npm)	2025-12-01T13:15:08Z	2025-12-24T10:09:28Z
mal-2025-191577	Malicious code in kyjnzu (npm)	2025-12-01T13:15:02Z	2025-12-24T10:09:28Z
mal-2025-191498	Malicious code in kmf-cookieservice (npm)	2025-12-01T16:00:47Z	2025-12-24T10:09:28Z
mal-2025-190496	Malicious code in loger-parser (npm)	2025-11-14T03:48:20Z	2025-12-24T10:09:28Z
mal-2024-2595	Malicious code in launchdarkly-cpp-internal (npm)	2024-06-25T12:48:48Z	2025-12-24T10:09:28Z
mal-2025-48830	Malicious code in cross-sessions (npm)	2025-10-23T19:29:15Z	2025-12-24T10:09:27Z
mal-2025-48518	Malicious code in dist-decoder (npm)	2025-10-20T03:06:26Z	2025-12-24T10:09:27Z
mal-2025-47848	Malicious code in epc-booking-insights-core (npm)	2025-09-26T04:46:21Z	2025-12-24T10:09:27Z
mal-2025-2876	Malicious code in ethers-providerz (npm)	2025-03-28T12:45:51Z	2025-12-24T10:09:27Z
mal-2025-2731	Malicious code in ethers-provider2 (npm)	2025-03-26T17:27:08Z	2025-12-24T10:09:27Z
mal-2025-191572	Malicious code in cwanner (npm)	2025-12-01T13:06:26Z	2025-12-24T10:09:27Z
mal-2025-191569	Malicious code in cookie-validate (npm)	2025-12-01T13:05:53Z	2025-12-24T10:09:27Z
mal-2024-2370	Malicious code in financialtimes-classic (npm)	2024-06-25T12:43:03Z	2025-12-24T10:09:27Z
mal-2024-10974	Malicious code in etherscancontracthandler (npm)	2024-11-26T23:52:16Z	2025-12-24T10:09:27Z
mal-2025-5074	Malicious code in build-react-wrapper (npm)	2025-06-18T10:23:35Z	2025-12-24T10:09:26Z
mal-2025-49380	Malicious code in chai-await-test (npm)	2025-11-07T03:52:52Z	2025-12-24T10:09:26Z
mal-2025-41538	Malicious code in bsd-ui-stylekit (npm)	2025-08-28T07:23:31Z	2025-12-24T10:09:26Z
mal-2025-191567	Malicious code in chai-sync (npm)	2025-12-01T13:05:09Z	2025-12-24T10:09:26Z
mal-2025-191566	Malicious code in chai-promise-chain (npm)	2025-12-01T13:05:08Z	2025-12-24T10:09:26Z
mal-2025-190634	Malicious code in @validate-pubkey/hex (npm)	2025-11-24T05:47:56Z	2025-12-24T10:09:26Z
mal-2025-190624	Malicious code in base62-58x (npm)	2025-11-24T03:27:37Z	2025-12-24T10:09:26Z
mal-2025-190599	Malicious code in @vreden-team/baileys (npm)	2025-11-21T03:58:09Z	2025-12-24T10:09:26Z
mal-2025-1721	Malicious code in amazon-test (npm)	2025-03-03T13:15:56Z	2025-12-24T10:09:26Z

ID	Description	Published	Updated
wid-sec-w-2025-2060	VMware Tanzu Spring Framework und Spring Security: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-09-15T22:00:00.000+00:00	2025-12-07T23:00:00.000+00:00
wid-sec-w-2025-2738	Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung	2025-12-03T23:00:00.000+00:00	2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-1883	Apache Tika: Schwachstelle ermöglicht Infogewinn oder Manipulation	2025-08-20T22:00:00.000+00:00	2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2717	Django: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2703	Zabbix: Mehrere Schwachstellen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2701	xwiki (XJetty): Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2700	CODESYS Control und Development System: Mehrere Schwachstellen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2636	OpenVPN: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2533	RedHat Multicluster Engine for Kubernetes: Schwachstelle ermöglicht Privilegieneskalation	2025-11-09T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2508	Red Hat Enterprise Linux: Schwachstelle ermöglicht Denial of Service	2025-11-06T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2488	Red Hat Enterprise Linux (SSSD, libsoup): Mehrere Schwachstellen	2025-11-04T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2697	Devolutions Remote Desktop Manager und Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-30T23:00:00.000+00:00	2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-2495	Django: Mehrere Schwachstellen ermöglichen Denial of Service und SQL-Injection	2025-11-05T23:00:00.000+00:00	2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-2687	Apache CloudStack: Mehrere Schwachstellen	2025-11-26T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2638	Grub: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2441	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-29T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2386	Unbound: Schwachstelle ermöglicht Manipulation von Dateien	2025-10-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2350	Linux Kernel: Mehrere Schwachstellen	2025-10-20T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2322	Samba: Mehrere Schwachstellen	2025-10-15T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2269	WebKitGTK: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung	2025-10-13T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2212	OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung	2025-10-06T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2196	Redis: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2194	Linux Kernel: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2110	LibTiff: Schwachstelle ermöglicht Codeausführung	2025-09-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2107	Linux Kernel: Mehrere Schwachstellen	2025-09-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2023	cURL: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-09-09T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1863	libTIFF: Schwachstelle ermöglicht Denial of Service	2025-08-19T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1847	libTIFF: Schwachstelle ermöglicht Denial of Service	2025-08-14T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-047424	SSA-047424: Code Execution and SQL Injection Vulnerabilities in OZW Web Servers	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-443402	SSA-443402: Multiple SQL Injection Vulnerabilities in TeleControl Server Basic before V3.1.2.2	2025-04-16T00:00:00Z	2025-04-16T00:00:00Z
ssa-395348	SSA-395348: Improper Handling of Length Parameter Inconsistency Vulnerability in TeleControl Server Basic before V3.1.2.2	2025-04-16T00:00:00Z	2025-04-16T00:00:00Z
ssa-913875	SSA-913875: Frame Aggregation and Fragmentation Vulnerabilities in 802.11	2021-07-13T00:00:00Z	2025-04-08T00:00:00Z
ssa-817234	SSA-817234: Multiple Kubernetes Ingress NGINX Controller Vulnerabilities in Insights Hub Private Cloud	2025-04-08T00:00:00Z	2025-04-08T00:00:00Z
ssa-686975	SSA-686975: IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs	2023-02-14T00:00:00Z	2025-04-08T00:00:00Z
ssa-672923	SSA-672923: Out of Bounds Write Vulnerability in Solid Edge	2025-04-08T00:00:00Z	2025-04-08T00:00:00Z
ssa-525431	SSA-525431: Privilege Escalation Vulnerabilities in Siemens License Server Before V4.3	2025-04-08T00:00:00Z	2025-04-08T00:00:00Z
ssa-369369	SSA-369369: Weak Registry Permission Vulnerability in SIMATIC IPC DiagBase and SIMATIC IPC DiagMonitor	2025-02-11T00:00:00Z	2025-04-08T00:00:00Z
ssa-306654	SSA-306654: Insyde BIOS Vulnerabilities in Siemens Industrial Products	2022-02-22T00:00:00Z	2025-04-08T00:00:00Z
ssa-277137	SSA-277137: Multiple Vulnerabilities in SIDIS Prime Before V4.0.700	2025-04-08T00:00:00Z	2025-04-08T00:00:00Z
ssa-195895	SSA-195895: User Enumeration Vulnerability in the Webserver of SIMATIC Products	2025-02-11T00:00:00Z	2025-04-08T00:00:00Z
ssa-187636	SSA-187636: Multiple Vulnerabilities in SENTRON 7KT PAC1260 Data Manager	2025-04-08T00:00:00Z	2025-04-08T00:00:00Z
ssa-920092	SSA-920092: Memory Corruption Vulnerability in Simcenter Femap	2025-03-13T00:00:00Z	2025-03-13T00:00:00Z
ssa-787280	SSA-787280: Unlocked Bootloader Vulnerability in SINAMICS S200	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-620288	SSA-620288: Multiple Vulnerabilities (NUCLEUS:13) in Capital Embedded AR Classic	2021-12-14T00:00:00Z	2025-03-11T00:00:00Z
ssa-615740	SSA-615740: Multiple Vulnerabilities in SINEMA Remote Connect Client Before V3.2 SP3	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-515903	SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-507653	SSA-507653: Improper Access Control Vulnerabilities in Tecnomatix Plant Simulation	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-434032	SSA-434032: Input Validation Vulnerability in the DHCP Client of Nucleus RTOS	2019-11-12T00:00:00Z	2025-03-11T00:00:00Z
ssa-280834	SSA-280834: Improper OpenVPN Credential Validation Vulnerability in SCALANCE M-800 and SC-600 Families	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-248289	SSA-248289: Denial of Service Vulnerabilities in the IPv6 Stack of Nucleus RTOS	2021-04-13T00:00:00Z	2025-03-11T00:00:00Z
ssa-075201	SSA-075201: Multiple Vulnerabilities in SCALANCE LPE9403 Before V4.0	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-073066	SSA-073066: Multiple Vulnerabilities in SINEMA Remote Connect Server Before V3.2 SP3	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-050438	SSA-050438: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and Tecnomatix Plant Simulation	2025-03-11T00:00:00Z	2025-03-11T00:00:00Z
ssa-992434	SSA-992434: Directory Traversal Vulnerability in Third-Party Component in SiPass integrated	2025-02-17T00:00:00Z	2025-02-17T00:00:00Z
ssa-246355	SSA-246355: Multiple Vulnerabilities in Tableau Server Component of Opcenter Intelligence	2025-02-11T00:00:00Z	2025-02-14T00:00:00Z
ssa-769027	SSA-769027: Multiple Vulnerabilities fixed in SCALANCE W700 IEEE 802.11ax devices before V3.0.0	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-697140	SSA-697140: Denial of Service Vulnerability in the TCP Event Service of SCALANCE and RUGGEDCOM Products	2022-10-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-647005	SSA-647005: Memory Corruption Vulnerability in OpenV2G	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:1848	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:47:37+00:00	2025-11-29T06:53:22+00:00
rhsa-2025:1847	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:45:17+00:00	2025-11-29T06:53:21+00:00
rhsa-2025:1845	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:43:03+00:00	2025-11-29T06:53:20+00:00
rhsa-2025:1841	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:38:58+00:00	2025-11-29T06:53:20+00:00
rhsa-2025:1829	Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update	2025-02-25T09:15:15+00:00	2025-11-29T06:53:20+00:00
rhsa-2025:18242	Red Hat Security Advisory: OpenShift Container Platform 4.13.61 security and extras update	2025-10-23T02:52:48+00:00	2025-11-29T06:53:19+00:00
rhsa-2025:18241	Red Hat Security Advisory: OpenShift Container Platform 4.13.61 bug fix and security update	2025-10-23T03:23:41+00:00	2025-11-29T06:53:18+00:00
rhsa-2025:1824	Red Hat Security Advisory: RHODF-4.17-RHEL-9 security update	2025-02-25T07:50:02+00:00	2025-11-29T06:53:17+00:00
rhsa-2025:17690	Red Hat Security Advisory: OpenShift Container Platform 4.16.50 bug fix and security update	2025-10-15T07:45:25+00:00	2025-11-29T06:53:17+00:00
rhsa-2025:17671	Red Hat Security Advisory: OpenShift Container Platform 4.12.81 bug fix and security update	2025-10-16T10:07:40+00:00	2025-11-29T06:53:16+00:00
rhsa-2025:17657	Red Hat Security Advisory: OpenShift Container Platform 4.18.26 bug fix and security update	2025-10-15T14:07:50+00:00	2025-11-29T06:53:14+00:00
rhsa-2025:16160	Red Hat Security Advisory: OpenShift Container Platform 4.15.58 bug fix and security update	2025-09-25T08:35:24+00:00	2025-11-29T06:53:14+00:00
rhsa-2025:17232	Red Hat Security Advisory: OpenShift Container Platform 4.17.41 bug fix and security update	2025-10-08T15:52:57+00:00	2025-11-29T06:53:13+00:00
rhsa-2025:16165	Red Hat Security Advisory: OpenShift Container Platform 4.14.57 bug fix and security update	2025-09-25T04:42:04+00:00	2025-11-29T06:53:13+00:00
rhsa-2025:1710	Red Hat Security Advisory: OpenShift Container Platform 4.15.46 security and extras update	2025-02-27T00:58:32+00:00	2025-11-29T06:53:11+00:00
rhsa-2025:16595	Red Hat Security Advisory: VolSync v0.13 security fixes and container updates	2025-09-24T15:33:41+00:00	2025-11-29T06:53:11+00:00
rhsa-2025:15680	Red Hat Security Advisory: OpenShift Container Platform 4.16.48 bug fix and security update	2025-09-17T11:15:03+00:00	2025-11-29T06:53:08+00:00
rhsa-2025:15872	Red Hat Security Advisory: VolSync v0.12 security fixes and container updates	2025-09-15T21:56:29+00:00	2025-11-29T06:53:07+00:00
rhsa-2025:15673	Red Hat Security Advisory: OpenShift Container Platform 4.13.60 bug fix and security update	2025-09-18T04:52:06+00:00	2025-11-29T06:53:07+00:00
rhsa-2025:15332	Red Hat Security Advisory: OpenShift Container Platform 4.12.80 bug fix and security update	2025-09-11T10:37:17+00:00	2025-11-29T06:53:05+00:00
rhsa-2025:14859	Red Hat Security Advisory: OpenShift Container Platform 4.16.47 bug fix and security update	2025-09-04T13:50:12+00:00	2025-11-29T06:53:04+00:00
rhsa-2025:14855	Red Hat Security Advisory: OpenShift Container Platform 4.14.56 bug fix and security update	2025-09-04T04:22:43+00:00	2025-11-29T06:53:04+00:00
rhsa-2025:14820	Red Hat Security Advisory: OpenShift Container Platform 4.18.23 bug fix and security update	2025-09-04T14:47:49+00:00	2025-11-29T06:53:04+00:00
rhsa-2025:1468	Red Hat Security Advisory: ACS 4.4 enhancement and security update	2025-02-13T18:14:31+00:00	2025-11-29T06:53:03+00:00
rhsa-2025:1448	Red Hat Security Advisory: RHOAI 2.17.0 - Red Hat OpenShift AI	2025-02-13T15:51:37+00:00	2025-11-29T06:53:02+00:00
rhsa-2025:14060	Red Hat Security Advisory: OpenShift Container Platform 4.17.38 bug fix and security update	2025-08-27T17:58:19+00:00	2025-11-29T06:53:01+00:00
rhsa-2025:14048	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.19 product release	2025-08-18T21:34:48+00:00	2025-11-29T06:53:01+00:00
rhsa-2025:13848	Red Hat Security Advisory: OpenShift Container Platform 4.19.9 bug fix and security update	2025-08-19T18:53:28+00:00	2025-11-29T06:53:01+00:00
rhsa-2025:1334	Red Hat Security Advisory: ACS 4.5 enhancement and security update	2025-02-11T21:20:30+00:00	2025-11-29T06:53:00+00:00
rhsa-2025:1333	Red Hat Security Advisory: Gatekeeper v3.14.3	2025-02-12T17:36:57+00:00	2025-11-29T06:52:59+00:00

ID	Description	Published	Updated
msrc_cve-2025-38262	tty: serial: uartlite: register uart driver in init	2025-07-02T00:00:00.000Z	2025-12-20T01:02:54.000Z
msrc_cve-2025-38259	ASoC: codecs: wcd9335: Fix missing free of regulator supplies	2025-07-02T00:00:00.000Z	2025-12-20T01:02:49.000Z
msrc_cve-2025-38257	s390/pkey: Prevent overflow in size calculation for memdup_user()	2025-07-02T00:00:00.000Z	2025-12-20T01:02:44.000Z
msrc_cve-2025-38251	atm: clip: prevent NULL deref in clip_push()	2025-07-02T00:00:00.000Z	2025-12-20T01:02:39.000Z
msrc_cve-2025-38249	ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3()	2025-07-02T00:00:00.000Z	2025-12-20T01:02:34.000Z
msrc_cve-2025-38245	atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister().	2025-07-02T00:00:00.000Z	2025-12-20T01:02:30.000Z
msrc_cve-2025-38236	af_unix: Don't leave consecutive consumed OOB skbs.	2025-07-02T00:00:00.000Z	2025-12-20T01:02:25.000Z
msrc_cve-2025-38230	jfs: validate AG parameters in dbMount() to prevent crashes	2025-07-02T00:00:00.000Z	2025-12-20T01:02:20.000Z
msrc_cve-2025-38225	media: imx-jpeg: Cleanup after an allocation error	2025-07-02T00:00:00.000Z	2025-12-20T01:02:15.000Z
msrc_cve-2025-38215	fbdev: Fix do_register_framebuffer to prevent null-ptr-deref in fb_videomode_to_var	2025-07-02T00:00:00.000Z	2025-12-20T01:02:10.000Z
msrc_cve-2025-38198	fbcon: Make sure modelist not set on unregistered console	2025-07-02T00:00:00.000Z	2025-12-20T01:02:04.000Z
msrc_cve-2025-38191	ksmbd: fix null pointer dereference in destroy_previous_session	2025-07-02T00:00:00.000Z	2025-12-20T01:01:59.000Z
msrc_cve-2025-38177	sch_hfsc: make hfsc_qlen_notify() idempotent	2025-07-02T00:00:00.000Z	2025-12-20T01:01:55.000Z
msrc_cve-2025-38166	bpf: fix ktls panic with sockmap	2025-07-02T00:00:00.000Z	2025-12-20T01:01:49.000Z
msrc_cve-2025-38148	net: phy: mscc: Fix memory leak when using one step timestamping	2025-07-02T00:00:00.000Z	2025-12-20T01:01:44.000Z
msrc_cve-2025-38062	genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie	2025-06-02T00:00:00.000Z	2025-12-20T01:01:39.000Z
msrc_cve-2025-38040	serial: mctrl_gpio: split disable_ms into sync and no_sync APIs	2025-06-02T00:00:00.000Z	2025-12-20T01:01:34.000Z
msrc_cve-2025-68324	scsi: imm: Fix use-after-free bug caused by unfinished delayed work	2025-12-02T00:00:00.000Z	2025-12-20T01:01:19.000Z
msrc_cve-2024-6485	XSS in Bootstrap button component	2024-07-01T07:00:00.000Z	2025-12-19T01:36:20.000Z
msrc_cve-2025-68146	filelock has TOCTOU race condition that allows symlink attacks during lock file creation	2025-12-02T00:00:00.000Z	2025-12-19T01:02:14.000Z
msrc_cve-2025-68156	Expr has Denial of Service via Unbounded Recursion in Builtin Functions	2025-12-02T00:00:00.000Z	2025-12-19T01:02:08.000Z
msrc_cve-2025-38131	coresight: prevent deactivate active config while enabling the config	2025-07-02T00:00:00.000Z	2025-12-19T01:01:55.000Z
msrc_cve-2025-38126	net: stmmac: make sure that ptp_rate is not 0 before configuring timestamping	2025-07-02T00:00:00.000Z	2025-12-19T01:01:50.000Z
msrc_cve-2025-38118	Bluetooth: MGMT: Fix UAF on mgmt_remove_adv_monitor_complete	2025-07-02T00:00:00.000Z	2025-12-19T01:01:45.000Z
msrc_cve-2025-38074	vhost-scsi: protect vq->log_used with vq->mutex	2025-06-02T00:00:00.000Z	2025-12-19T01:01:40.000Z
msrc_cve-2025-38071	x86/mm: Check return value from memblock_phys_alloc_range()	2025-06-02T00:00:00.000Z	2025-12-19T01:01:35.000Z
msrc_cve-2025-38067	rseq: Fix segfault on registration when rseq_cs is non-zero	2025-06-02T00:00:00.000Z	2025-12-19T01:01:30.000Z
msrc_cve-2025-38063	dm: fix unconditional IO throttle caused by REQ_PREFLUSH	2025-06-02T00:00:00.000Z	2025-12-19T01:01:25.000Z
msrc_cve-2025-37951	drm/v3d: Add job to pending list if the reset was skipped	2025-05-02T00:00:00.000Z	2025-12-19T01:01:20.000Z
msrc_cve-2024-6531	Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.	2024-07-01T07:00:00.000Z	2025-12-18T14:35:13.000Z

ID	Description	Published	Updated
icsa-25-254-07	Siemens User Management Component (UMC)	2025-09-09T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-226-18	Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER	2025-08-12T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-226-09	Siemens RUGGEDCOM APE1808	2025-08-12T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-162-02	Siemens RUGGEDCOM APE1808	2025-06-10T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-148-01	Siemens SiPass	2025-05-23T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-135-09	Siemens User Management Component (UMC)	2025-05-13T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-24-284-10	Siemens SIMATIC S7-1500 CPUs	2024-10-08T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-24-284-01	Siemens SIMATIC S7-1500 and S7-1200 CPUs	2024-10-08T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-24-256-03	Siemens User Management Component (UMC)	2024-09-10T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-24-102-01	Siemens SIMATIC S7-1500	2024-04-09T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-252-08	Rockwell Automation Analytics LogixAI	2025-09-09T06:00:00.000000Z	2025-10-10T06:00:00.000000Z
va-25-282-01	Newforma Project Center multiple vulnerabilities	2025-10-09T19:50:00Z	2025-10-09T19:50:00Z
icsa-25-282-03	Rockwell Automation Stratix	2025-10-09T06:00:00.000000Z	2025-10-09T06:00:00.000000Z
icsa-25-282-02	Rockwell Automation Lifecycle Services with Cisco	2025-10-09T06:00:00.000000Z	2025-10-09T06:00:00.000000Z
icsa-25-128-03	Mitsubishi Electric Multiple FA Products (Update A)	2025-05-08T06:00:00.000000Z	2025-10-09T06:00:00.000000Z
va-25-280-01	OPEXUS FOIAXpress stored XSS	2025-10-07T22:50:29Z	2025-10-07T22:50:29Z
icsa-25-226-31	Rockwell Automation 1756-EN4TR, 1756-EN4TRXT (Update B)	2025-08-14T06:00:00.000000Z	2025-10-07T06:00:00.000000Z
icsa-25-275-01	Raise3D Pro2 Series 3D Printers**	2025-10-02T05:00:00.000000Z	2025-10-02T05:00:00.000000Z
icsa-25-343-02	Festo LX Appliance	2023-08-29T10:00:00.000000Z	2025-10-01T10:00:00.000000Z
icsa-25-324-04	Festo MSE6-C2M/D2M/E2M	2023-09-05T10:00:00.000000Z	2025-10-01T10:00:00.000000Z
icsa-25-324-05	Festo Didactic products	2023-10-17T06:00:00.000000Z	2025-10-01T06:00:00.000000Z
icsa-25-289-11	Hitachi Energy MACH GWS	2025-09-30T12:50:29.000000Z	2025-09-30T12:50:29.000000Z
icsa-24-116-02	Hitachi Energy MACH SCM (Update A)	2024-03-26T11:32:43.000000Z	2025-09-30T11:32:43.000000Z
icsa-25-275-02	Hitachi Energy MSM	2025-09-30T09:02:31.000000Z	2025-09-30T09:02:31.000000Z
icsa-25-273-06	National Instruments Circuit Design Suite	2025-09-30T06:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-25-273-05	OpenPLC_V3	2025-09-30T06:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-25-273-01	MegaSys Enterprises Telenium Online Web Application	2025-09-30T06:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-25-226-26	Rockwell Automation FLEX 5000 I/O (Update A)	2025-08-14T06:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-25-063-02	Keysight Ixia Vision Product Family (Update A)	2025-03-04T07:00:00.000000Z	2025-09-30T06:00:00.000000Z
icsa-22-298-02	HEIDENHAIN Controller TNC (Update A)	2022-10-25T06:00:00.000000Z	2025-09-30T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-nxos-image-sig-bypas-pqdrqvjl	Cisco NX-OS Software Image Verification Bypass Vulnerability	2024-12-04T16:00:00+00:00	2025-04-07T16:43:32+00:00
cisco-sa-cslu-7ghmzwmw	Cisco Smart Licensing Utility Vulnerabilities	2024-09-04T16:00:00+00:00	2025-04-04T17:44:00+00:00
cisco-sa-meraki-mx-vpn-dos-vnrpdvfb	Cisco Meraki MX and Z Series AnyConnect VPN Denial of Service Vulnerability	2025-04-02T16:00:00+00:00	2025-04-02T16:00:00+00:00
cisco-sa-epnmpi-sxss-gsscpgy4	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerabilities	2025-04-02T16:00:00+00:00	2025-04-02T16:00:00+00:00
cisco-sa-ece-dos-tc6m9gz8	Cisco Enterprise Chat and Email Denial of Service Vulnerability	2025-04-02T16:00:00+00:00	2025-04-02T16:00:00+00:00
cisco-sa-webex-credexp-xmn85y6	Cisco Webex for BroadWorks Credential Exposure Vulnerability	2025-03-04T16:00:00+00:00	2025-04-01T13:40:00+00:00
cisco-sa-sdwan-xss-zq4kpvyd	Cisco Catalyst SD-WAN Manager Cross-Site Scripting Vulnerability	2024-09-25T16:00:00+00:00	2025-03-28T18:38:53+00:00
cisco-sa-dnac-api-nbpzcjcm	Cisco Catalyst Center Unauthenticated API Access Vulnerability	2025-05-07T16:00:00+00:00	2025-03-26T16:00:00+00:00
cisco-sa-xrike-9wygprgq	Cisco IOS XR Software Internet Key Exchange Version 2 Denial of Service Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-xr792-bwfvdpy	Cisco IOS XR Software Release 7.9.2 Denial of Service Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-sb-lkm-znerzjbz	Cisco IOS XR Software Secure Boot Bypass Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-ncs-hybridacl-crmzffkq	Cisco IOS XR Software Hybrid Access Control List Bypass Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-multicast-ermrsvq7	Cisco IOS XR Software for ASR 9000 Series Routers Layer 3 Multicast Denial of Service Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-modular-acl-u5mepxmm	Cisco IOS XR Software Access Control List Bypass Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-ipv4uni-lfm3cfbu	Cisco IOS XR Software for ASR 9000 Series Routers IPv4 Unicast Packets Denial of Service Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-iosxr-priv-esc-gfqjxvof	Cisco IOS XR Software CLI Privilege Escalation Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-iosxr-bgp-dos-o7stephx	Cisco IOS XR Software Border Gateway Protocol Confederation Denial of Service Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-ios-xr-verii-bypass-hhpwqrvx	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-03-12T16:00:00+00:00	2025-03-12T16:00:00+00:00
cisco-sa-snmp-dos-sdxnsucw	Cisco IOS, IOS XE, and IOS XR Software SNMP Denial of Service Vulnerabilities	2025-02-05T16:00:00+00:00	2025-03-12T15:22:33+00:00
cisco-sa-sbr042-multi-vuln-ej76pke5	Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Vulnerabilities	2023-01-11T16:00:00+00:00	2025-03-07T17:33:55+00:00
cisco-sa-tms-xss-vuln-wbtcywxg	Cisco TelePresence Management Suite Cross-Site Scripting Vulnerability	2025-03-05T16:00:00+00:00	2025-03-05T16:44:57+00:00
cisco-sa-secure-dll-injection-aoyzeqsg	Cisco Secure Client for Windows with Secure Firewall Posture Engine DLL Hijacking Vulnerability	2025-03-05T16:00:00+00:00	2025-03-05T16:00:00+00:00
cisco-sa-nxos-ici-dpojbwxk	Cisco Nexus 3000 and 9000 Series Switches Command Injection Vulnerability	2025-02-26T16:00:00+00:00	2025-02-26T16:00:00+00:00
cisco-sa-n3kn9k-healthdos-eoqswk4g	Cisco Nexus 3000 and 9000 Series Switches Health Monitoring Diagnostics Denial of Service Vulnerability	2025-02-26T16:00:00+00:00	2025-02-26T16:00:00+00:00
cisco-sa-apic-multi-vulns-9ummtg5	Cisco Application Policy Infrastructure Controller Vulnerabilities	2025-02-26T16:00:00+00:00	2025-02-26T16:00:00+00:00
cisco-sa-phone-info-disc-yyxswstk	Cisco Video Phone 8875 and Desk Phone 9800 Series Information Disclosure Vulnerability	2025-02-19T16:00:00+00:00	2025-02-19T16:00:00+00:00
cisco-sa-esa-mailpol-bypass-5nvcjzmw	Cisco Secure Email Gateway Email Filter Bypass Vulnerability	2025-02-19T16:00:00+00:00	2025-02-19T16:00:00+00:00
cisco-sa-broadworks-xss-gdpgj58p	Cisco BroadWorks Application Delivery Platform Cross-Site Scripting Vulnerability	2025-02-19T16:00:00+00:00	2025-02-19T16:00:00+00:00
cisco-sa-ise-multivuls-ftw9aoxf	Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities	2025-02-05T16:00:00+00:00	2025-02-10T20:23:50+00:00
cisco-sa-esa-sma-wsa-multi-ykujhs34	Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Vulnerabilities	2025-02-05T16:00:00+00:00	2025-02-07T19:21:57+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201102-0095	Google Chrome before 9.0.597.94 does not properly perform event handling for animations, …	2024-11-29T22:30:21.471000Z
var-201912-0484	A memory corruption issue was addressed with improved memory handling. This issue is fixe…	2024-11-29T22:30:19.168000Z
var-201912-0562	A buffer overflow was addressed with improved bounds checking. This issue is fixed in mac…	2024-11-29T22:29:43.969000Z
var-201903-0420	A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, …	2024-11-29T22:29:43.774000Z
var-200803-0016	CFNetwork in Apple Mac OS X 10.4.11 allows remote HTTPS proxy servers to spoof secure web…	2024-11-29T22:28:36.444000Z
var-202105-1432	The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired…	2024-11-29T22:28:09.090000Z
var-201711-0446	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2024-11-29T22:28:08.620000Z
var-201108-0184	Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and …	2024-11-29T22:28:08.450000Z
var-201606-0478	OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary check…	2024-11-29T22:28:04.343000Z
var-201606-0135	The XML parser in Expat does not use sufficient entropy for hash initialization, which al…	2024-11-29T22:28:04.035000Z
var-201108-0236	The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF de…	2024-11-29T22:28:02.939000Z
var-201412-0519	The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j …	2024-11-29T22:27:49.961000Z
var-202207-0381	A OS Command Injection vulnerability exists in Node.js versions <14.20.0, <16.20.0, <18.5…	2024-11-29T22:27:49.386000Z
var-200704-0218	The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver …	2024-11-29T22:27:49.098000Z
var-201206-0058	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:27:48.847000Z
var-200811-0321	The plug-in interface in WebKit in Apple Safari before 3.2 does not prevent plug-ins from…	2024-11-29T22:27:14.660000Z
var-202109-1360	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:26:43.295000Z
var-201906-1174	Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. T…	2024-11-29T22:26:43.084000Z
var-201202-0137	Integer overflow in libpng, as used in Google Chrome before 17.0.963.56, allows remote at…	2024-11-29T22:26:31.980000Z
var-200703-0019	Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at…	2024-11-29T22:26:30.062000Z
var-200704-0229	Integer overflow in the FontFileInitTable function in X.Org libXfont before 20070403 allo…	2024-11-29T22:26:29.395000Z
var-201404-0008	Race condition in the ssl3_read_bytes function in s3_pkt.c in OpenSSL through 1.0.1g, whe…	2024-11-29T22:26:29.107000Z
var-202002-1458	eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_requ…	2024-11-29T22:26:28.708000Z
var-202012-1547	A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel thr…	2024-11-29T22:26:28.519000Z
var-200907-0748	Mozilla Network Security Services (NSS) before 3.12.3, Firefox before 3.0.13, Thunderbird…	2024-11-29T22:26:27.797000Z
var-201105-0121	Stack consumption vulnerability in the fnmatch implementation in apr_fnmatch.c in the Apa…	2024-11-29T22:25:51.782000Z
var-202008-0248	An elevation of privilege vulnerability exists when an attacker establishes a vulnerable …	2024-11-29T22:25:50.715000Z
var-202010-1295	An out-of-bounds read was addressed with improved input validation. This issue is fixed i…	2024-11-29T22:25:40.888000Z
var-201912-0817	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:25:40.788000Z
var-202002-1243	There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_re…	2024-11-29T22:25:35.647000Z

ID	Description	Published	Updated
jvndb-2025-002790	Out-of-bounds Write vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers	2025-04-02T15:05+09:00	2025-04-02T15:05+09:00
jvndb-2025-000023	WordPress plugin "Welcart e-Commerce" vulnerable to untrusted data deserialization	2025-04-01T14:20+09:00	2025-04-01T14:20+09:00
jvndb-2024-003016	Multiple vulnerabilities in home gateway HGW BL1500HM	2024-03-25T17:28+09:00	2025-03-28T12:01+09:00
jvndb-2025-000018	Multiple vulnerabilities in home gateway HGW-BL1500HM	2025-03-19T15:33+09:00	2025-03-28T11:48+09:00
jvndb-2025-000024	a-blog cms vulnerable to untrusted data deserialization	2025-03-28T10:46+09:00	2025-03-28T10:46+09:00
jvndb-2025-000021	Multiple vulnerabilities in PowerCMS	2025-03-26T18:13+09:00	2025-03-26T18:13+09:00
jvndb-2025-002592	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-03-26T13:25+09:00	2025-03-26T13:25+09:00
jvndb-2025-000019	Multiple vulnerabilities in AssetView	2025-03-25T17:10+09:00	2025-03-25T17:10+09:00
jvndb-2025-000020	+F FS010M vulnerable to OS command injection	2025-03-18T15:01+09:00	2025-03-18T15:01+09:00
jvndb-2025-000017	hostapd vulnerable to improper processing of RADIUS packets	2025-03-12T14:19+09:00	2025-03-12T14:19+09:00
jvndb-2025-000016	Multiple vulnerabilities in RemoteView Agent (for Windows)	2025-03-06T14:27+09:00	2025-03-10T15:22+09:00
jvndb-2025-001898	Multiple vulnerabilities in FutureNet AS series (Industrial Routers) and FA series (Protocol Conversion Machine)	2025-03-04T14:56+09:00	2025-03-04T14:56+09:00
jvndb-2025-001605	"RoboForm Password Manager" App for Android vulnerable to authentication bypass using an alternate path or channel	2025-02-20T20:15+09:00	2025-02-20T20:15+09:00
jvndb-2025-000004	Multiple vulnerabilities in I-O DATA router UD-LT2	2025-01-22T13:55+09:00	2025-02-20T15:55+09:00
jvndb-2025-000014	Multiple cross-site scripting vulnerabilities in Movable Type	2025-02-19T16:19+09:00	2025-02-19T16:19+09:00
jvndb-2025-000015	RevoWorks SCVX and RevoWorks Browser vulnerable to incorrect resource transfer between spheres	2025-02-19T14:51+09:00	2025-02-19T14:51+09:00
jvndb-2025-001563	Out-of-bounds write vulnerability in FUJIFILM Business Innovation Corp. MFPs	2025-02-18T16:33+09:00	2025-02-18T16:33+09:00
jvndb-2025-001562	Out-of-bounds read vulnerability in OMRON CX-Programmer	2025-02-18T16:24+09:00	2025-02-18T16:24+09:00
jvndb-2024-000114	Multiple vulnerabilities in baserCMS	2024-10-25T15:07+09:00	2025-02-18T15:35+09:00
jvndb-2025-001548	Out-of-bounds read vulnerability in Cente middleware	2025-02-17T18:22+09:00	2025-02-17T18:22+09:00
jvndb-2025-000012	Multiple vulnerabilities in The LuxCal Web Calendar	2025-02-17T13:43+09:00	2025-02-17T13:43+09:00
jvndb-2025-000013	acmailer CGI and acmailer DB vulnerable to OS command injection	2025-02-14T16:39+09:00	2025-02-14T16:39+09:00
jvndb-2025-000002	Multiple vulnerabilities in NEC Aterm series (NV25-003)	2025-02-14T15:48+09:00	2025-02-14T15:48+09:00
jvndb-2023-002797	Multiple vulnerabilities in ELECOM and LOGITEC network devices	2023-08-15T11:54+09:00	2025-02-13T15:21+09:00
jvndb-2024-001061	ELECOM wireless LAN routers vulnerable to OS command injection	2024-01-24T17:16+09:00	2025-02-13T14:31+09:00
jvndb-2025-000011	Multiple vulnerabilities in FileMegane	2025-02-13T13:39+09:00	2025-02-13T13:39+09:00
jvndb-2025-000010	acmailer vulnerable to cross-site scripting	2025-02-12T15:05+09:00	2025-02-12T15:05+09:00
jvndb-2024-000078	Multiple vulnerabilities in ELECOM wireless LAN routers	2024-07-30T15:34+09:00	2025-02-12T14:34+09:00
jvndb-2025-001017	Multiple vulnerabilities in STEALTHONE D220/D340/D440	2025-02-06T18:27+09:00	2025-02-06T18:27+09:00
jvndb-2025-001018	Improper restriction of XML external entity reference (XXE) vulnerability in OMRON NB-Designer	2025-02-06T18:26+09:00	2025-02-06T18:26+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated