Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-jwf4-j6c4-r563 | Cross-Site Request Forgery (CSRF) vulnerability in Tikweb Management Fast User Switching fast-user-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-j46w-p27m-x396 | Cross-Site Request Forgery (CSRF) vulnerability in wphocus My auctions allegro my-auctions-allegro-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-gc5r-vcqv-p3f2 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Virusdi… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-ch8g-wmch-h352 | Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-9f98-g8wg-4pcm | Missing Authorization vulnerability in Virusdie Virusdie virusdie allows Exploiting Incorrectly Con… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-95q9-4qh9-hr86 | Missing Authorization vulnerability in FolioVision FV Simpler SEO fv-all-in-one-seo-pack allows Exp… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-887g-3m9f-p55c | Missing Authorization vulnerability in YITHEMES YITH Slider for page builders yith-slider-for-page-… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-7pxg-x55c-fqhx | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-7jg2-vv9f-v97j | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-6r9j-fpr7-g9xg | Cross-Site Request Forgery (CSRF) vulnerability in Constantin Boiangiu Vimeotheque codeflavors-vime… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-48px-5fg3-2vf2 | Missing Authorization vulnerability in integrationclaspo Popup Builder: Exit-Intent pop-up, Spin th… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-3x28-fcx7-q34v | Missing Authorization vulnerability in totalsoft TS Poll poll-wp allows Exploiting Incorrectly Conf… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-3m2g-5mf9-rw3q | Missing Authorization vulnerability in Funnelforms Funnelforms Free funnelforms-free allows Exploit… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-2wpw-x29g-2vrh | Missing Authorization vulnerability in SALESmanago SALESmanago salesmanago allows Exploiting Incorr… | 2025-12-24T15:30:42Z | 2025-12-24T21:30:29Z |
| ghsa-xv82-mgrr-4j2f | Cross-Site Request Forgery (CSRF) vulnerability in Rhys Wynne WP Email Capture wp-email-capture all… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-vh4j-wc5r-44xh | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-rrq9-36f5-3j9c | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-r7hp-q77m-rh5r | Missing Authorization vulnerability in Essekia Tablesome tablesome allows Exploiting Incorrectly Co… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-qhrp-fccp-2wcx | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:29Z |
| ghsa-pcv5-fv37-7rhx | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-p7fv-95q4-w653 | Missing Authorization vulnerability in Brave Brave brave-popup-builder allows Exploiting Incorrectl… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-p34g-x786-cwgg | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-mv9g-w4mm-wg49 | Deserialization of Untrusted Data vulnerability in Icegram Icegram Express Pro email-subscribers-pr… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-m2qp-fr5w-c44v | Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart al… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-j5jw-33rr-98g2 | Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar spiffy-calendar allows Exploi… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-hgfr-qrg4-p84c | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-g32g-pf52-5jf2 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-fjwm-xwvf-3crm | Missing Authorization vulnerability in Jegstudio Gutenverse Form gutenverse-form allows Exploiting … | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-f49c-c866-mjcw | Server-Side Request Forgery (SSRF) vulnerability in bdthemes Prime Slider – Addons For Elementor bd… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ghsa-cx7j-rj4h-5pcp | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-24T15:30:41Z | 2025-12-24T21:30:28Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68567 | N/A | WordPress My auctions allegro plugin <= 3.6.32 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:36.094Z | 2025-12-24T19:30:46.741Z |
| cve-2025-68566 | N/A | WordPress My auctions allegro plugin <= 3.6.32 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:35.820Z | 2025-12-24T19:30:51.874Z |
| cve-2025-68565 | N/A | WordPress Twitch Player plugin <= 2.1.3 - Broken Acces… |
JayBee |
Twitch Player |
2025-12-24T13:10:35.534Z | 2025-12-24T19:30:57.378Z |
| cve-2025-68506 | N/A | WordPress Docket Cache plugin <= 24.07.03 - Local File… |
Nawawi Jamili |
Docket Cache |
2025-12-24T13:10:26.727Z | 2025-12-24T19:31:03.840Z |
| cve-2025-68038 | N/A | WordPress Icegram Express Pro plugin <= 5.9.11 - PHP O… |
Icegram |
Icegram Express Pro |
2025-12-24T13:10:25.043Z | 2025-12-24T19:31:09.858Z |
| cve-2025-67909 | N/A | WordPress Membership For WooCommerce plugin <= 3.0.3 -… |
WP Swings |
Membership For WooCommerce |
2025-12-24T13:10:24.788Z | 2025-12-24T19:31:16.024Z |
| cve-2025-67633 | N/A | WordPress Greenhouse Job Board plugin <= 2.7.3 - Cross… |
brownbagmarketing |
Greenhouse Job Board |
2025-12-24T13:10:24.524Z | 2025-12-24T19:31:21.916Z |
| cve-2025-67632 | N/A | WordPress Google AdSense for Responsive Design – GARD … |
The Plugin Factory |
Google AdSense for Responsive Design – GARD |
2025-12-24T13:10:24.256Z | 2025-12-24T19:31:27.649Z |
| cve-2025-67631 | N/A | WordPress Gift Hunt plugin <= 2.0.2 - Cross Site Scrip… |
Ecommerce Platforms |
Gift Hunt |
2025-12-24T13:10:23.974Z | 2025-12-24T19:31:33.338Z |
| cve-2025-67630 | N/A | WordPress WH Tweaks plugin <= 1.0.2 - Cross Site Scrip… |
webheadcoder |
WH Tweaks |
2025-12-24T13:10:23.685Z | 2025-12-24T19:31:39.355Z |
| cve-2025-67629 | N/A | WordPress Basticom Framework plugin <= 1.5.2 - Cross S… |
Basticom |
Basticom Framework |
2025-12-24T13:10:23.380Z | 2025-12-24T19:31:45.343Z |
| cve-2025-67628 | N/A | WordPress Review Disclaimer plugin <= 2.0.3 - Cross Si… |
AMP-MODE |
Review Disclaimer |
2025-12-24T13:10:23.116Z | 2025-12-24T19:31:51.235Z |
| cve-2025-67627 | N/A | WordPress Draft Notify plugin <= 1.5 - Cross Site Scri… |
TouchOfTech |
Draft Notify |
2025-12-24T13:10:22.835Z | 2025-12-24T19:31:57.185Z |
| cve-2025-67625 | N/A | WordPress Trade Runner plugin <= 3.14 - Cross Site Req… |
tmtraderunner |
Trade Runner |
2025-12-24T13:10:22.548Z | 2025-12-24T19:32:03.934Z |
| cve-2025-67623 | N/A | WordPress 6Storage Rentals plugin <= 2.19.9 - Server S… |
6Storage |
6Storage Rentals |
2025-12-24T13:10:22.188Z | 2025-12-24T19:32:10.048Z |
| cve-2025-67622 | N/A | WordPress Evergreen Post Tweeter plugin <= 1.8.9 - Cro… |
titopandub |
Evergreen Post Tweeter |
2025-12-24T13:10:21.161Z | 2025-12-24T19:32:16.023Z |
| cve-2025-67621 | N/A | WordPress Eight Day Week Print Workflow plugin <= 1.2.… |
10up |
Eight Day Week Print Workflow |
2025-12-24T13:10:20.740Z | 2025-12-24T19:32:21.672Z |
| cve-2023-54161 | N/A | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). |
Linux |
Linux |
2025-12-24T13:07:09.692Z | 2025-12-24T13:07:09.692Z |
| cve-2023-54160 | N/A | firmware: arm_sdei: Fix sleep from invalid context BUG |
Linux |
Linux |
2025-12-24T13:07:08.883Z | 2025-12-24T13:07:08.883Z |
| cve-2023-54159 | N/A | usb: mtu3: fix kernel panic at qmu transfer done irq handler |
Linux |
Linux |
2025-12-24T13:07:08.207Z | 2025-12-24T13:07:08.207Z |
| cve-2023-54158 | N/A | btrfs: don't free qgroup space unless specified |
Linux |
Linux |
2025-12-24T13:07:07.438Z | 2025-12-24T13:07:07.438Z |
| cve-2023-54157 | N/A | binder: fix UAF of alloc->vma in race with munmap() |
Linux |
Linux |
2025-12-24T13:07:06.764Z | 2025-12-24T13:07:06.764Z |
| cve-2023-54156 | N/A | sfc: fix crash when reading stats while NIC is resetting |
Linux |
Linux |
2025-12-24T13:07:06.043Z | 2025-12-24T13:07:06.043Z |
| cve-2023-54155 | N/A | net: core: remove unnecessary frame_sz check in bpf_xd… |
Linux |
Linux |
2025-12-24T13:07:05.385Z | 2025-12-24T13:07:05.385Z |
| cve-2023-54154 | N/A | scsi: target: core: Fix target_cmd_counter leak |
Linux |
Linux |
2025-12-24T13:07:04.721Z | 2025-12-24T13:07:04.721Z |
| cve-2023-54153 | N/A | ext4: turn quotas off if mount failed after enabling quotas |
Linux |
Linux |
2025-12-24T13:07:04.007Z | 2025-12-24T13:07:04.007Z |
| cve-2023-54152 | N/A | can: j1939: prevent deadlock by moving j1939_sk_errqueue() |
Linux |
Linux |
2025-12-24T13:07:03.310Z | 2025-12-24T13:07:03.310Z |
| cve-2023-54151 | N/A | f2fs: Fix system crash due to lack of free space in LFS |
Linux |
Linux |
2025-12-24T13:07:02.600Z | 2025-12-24T13:07:02.600Z |
| cve-2023-54150 | N/A | drm/amd: Fix an out of bounds error in BIOS parser |
Linux |
Linux |
2025-12-24T13:07:01.754Z | 2025-12-24T13:07:01.754Z |
| cve-2023-54149 | N/A | net: dsa: avoid suspicious RCU usage for synced VLAN-a… |
Linux |
Linux |
2025-12-24T13:07:00.977Z | 2025-12-24T13:07:00.977Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-68590 | N/A | WordPress Integration for Contact Form 7 HubSpot plugi… |
CRM Perks |
Integration for Contact Form 7 HubSpot |
2025-12-24T13:10:43.422Z | 2025-12-24T19:28:30.139Z |
| cve-2025-68589 | N/A | WordPress WP Telegram Widget and Join Link plugin <= 2… |
WP Socio |
WP Telegram Widget and Join Link |
2025-12-24T13:10:43.150Z | 2025-12-24T19:28:35.116Z |
| cve-2025-68588 | N/A | WordPress TS Poll plugin <= 2.5.3 - Broken Access Cont… |
totalsoft |
TS Poll |
2025-12-24T13:10:42.857Z | 2025-12-24T19:28:40.371Z |
| cve-2025-68587 | N/A | WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-24T13:10:42.440Z | 2025-12-24T19:28:45.997Z |
| cve-2025-68586 | N/A | WordPress Cooked plugin <= 1.11.2 - Broken Access Cont… |
Gora Tech |
Cooked |
2025-12-24T13:10:42.037Z | 2025-12-24T19:28:51.677Z |
| cve-2025-68585 | N/A | WordPress WP Document Revisions plugin <= 3.7.2 - Brok… |
Ben Balter |
WP Document Revisions |
2025-12-24T13:10:41.715Z | 2025-12-24T19:28:57.679Z |
| cve-2025-68584 | N/A | WordPress Vimeotheque plugin <= 2.3.5.2 - Cross Site R… |
Constantin Boiangiu |
Vimeotheque |
2025-12-24T13:10:41.424Z | 2025-12-24T19:29:04.076Z |
| cve-2025-68583 | N/A | WordPress Fast User Switching plugin <= 1.4.10 - Cross… |
Tikweb Management |
Fast User Switching |
2025-12-24T13:10:41.121Z | 2025-12-24T19:29:09.323Z |
| cve-2025-68582 | N/A | WordPress Funnelforms Free plugin <= 3.8 - Broken Acce… |
Funnelforms |
Funnelforms Free |
2025-12-24T13:10:40.817Z | 2025-12-24T19:29:14.885Z |
| cve-2025-68581 | N/A | WordPress YITH Slider for page builders plugin <= 1.0.… |
YITHEMES |
YITH Slider for page builders |
2025-12-24T13:10:40.513Z | 2025-12-24T19:29:20.723Z |
| cve-2025-68580 | N/A | WordPress Advanced Classifieds & Directory Pro plugin … |
pluginsware |
Advanced Classifieds & Directory Pro |
2025-12-24T13:10:40.193Z | 2025-12-24T19:29:27.270Z |
| cve-2025-68579 | N/A | WordPress FV Simpler SEO plugin <= 1.9.6 - Broken Acce… |
FolioVision |
FV Simpler SEO |
2025-12-24T13:10:39.669Z | 2025-12-24T19:29:33.249Z |
| cve-2025-68578 | N/A | WordPress Addonify plugin <= 2.0.4 - Broken Access Con… |
Addonify |
Addonify |
2025-12-24T13:10:39.343Z | 2025-12-24T19:29:38.853Z |
| cve-2025-68577 | N/A | WordPress Virusdie plugin <= 1.1.6 - Broken Access Con… |
Virusdie |
Virusdie |
2025-12-24T13:10:38.980Z | 2025-12-24T19:29:44.994Z |
| cve-2025-68576 | N/A | WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Ex… |
Virusdie |
Virusdie |
2025-12-24T13:10:38.690Z | 2025-12-24T19:29:50.810Z |
| cve-2025-68575 | N/A | WordPress Wappointment plugin <=2.7.2 - Broken Access … |
Wappointment team |
Wappointment |
2025-12-24T13:10:38.366Z | 2025-12-24T19:29:56.848Z |
| cve-2025-68574 | N/A | WordPress WPBakery Visual Composer WHMCS Elements plug… |
voidcoders |
WPBakery Visual Composer WHMCS Elements |
2025-12-24T13:10:38.100Z | 2025-12-24T19:30:04.744Z |
| cve-2025-68573 | N/A | WordPress Simple Keyword to Link plugin <= 1.5 - Cross… |
Alessandro Piconi |
Simple Keyword to Link |
2025-12-24T13:10:37.793Z | 2025-12-24T19:30:12.847Z |
| cve-2025-68572 | N/A | WordPress BBP Core plugin <= 1.4.1 - Broken Access Con… |
Spider Themes |
BBP Core |
2025-12-24T13:10:37.515Z | 2025-12-24T19:30:18.794Z |
| cve-2025-68571 | N/A | WordPress SALESmanago plugin <= 3.9.0 - Broken Access … |
SALESmanago |
SALESmanago |
2025-12-24T13:10:37.254Z | 2025-12-24T19:30:24.422Z |
| cve-2025-68570 | N/A | WordPress Captivate Sync plugin <= 3.2.2 - SQL Injecti… |
captivateaudio |
Captivate Sync |
2025-12-24T13:10:36.970Z | 2025-12-24T19:30:29.515Z |
| cve-2025-68569 | N/A | WordPress WP Time Slots Booking Form plugin <= 1.2.38 … |
codepeople |
WP Time Slots Booking Form |
2025-12-24T13:10:36.669Z | 2025-12-24T19:30:34.949Z |
| cve-2025-68568 | N/A | WordPress Popup Builder: Exit-Intent pop-up, Spin the … |
integrationclaspo |
Popup Builder: Exit-Intent pop-up, Spin the Wheel, Newsletter signup, Email Capture & Lead Generation forms maker |
2025-12-24T13:10:36.357Z | 2025-12-24T19:30:40.727Z |
| cve-2025-68567 | N/A | WordPress My auctions allegro plugin <= 3.6.32 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:36.094Z | 2025-12-24T19:30:46.741Z |
| cve-2025-68566 | N/A | WordPress My auctions allegro plugin <= 3.6.32 - Cross… |
wphocus |
My auctions allegro |
2025-12-24T13:10:35.820Z | 2025-12-24T19:30:51.874Z |
| cve-2025-68565 | N/A | WordPress Twitch Player plugin <= 2.1.3 - Broken Acces… |
JayBee |
Twitch Player |
2025-12-24T13:10:35.534Z | 2025-12-24T19:30:57.378Z |
| cve-2025-68563 | N/A | WordPress Subscribe to Unlock Lite plugin <= 1.3.0 - L… |
WP Shuffle |
Subscribe to Unlock Lite |
2025-12-24T12:31:30.996Z | 2025-12-24T19:32:56.561Z |
| cve-2025-68540 | N/A | WordPress Fana theme <= 1.1.35 - Local File Inclusion … |
thembay |
Fana |
2025-12-24T12:31:27.748Z | 2025-12-24T19:33:03.430Z |
| cve-2025-68537 | N/A | WordPress Zota theme <= 1.3.14 - Local File Inclusion … |
thembay |
Zota |
2025-12-24T12:31:27.277Z | 2025-12-24T19:33:09.770Z |
| cve-2025-68535 | N/A | WordPress Sunshine Photo Cart plugin <= 3.5.7.1 - Brok… |
sunshinephotocart |
Sunshine Photo Cart |
2025-12-24T12:31:27.019Z | 2025-12-24T19:33:16.139Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192784 | Malicious code in elf-stats-silvered-toolkit-914 (npm) | 2025-12-23T08:10:02Z | 2025-12-24T00:53:16Z |
| mal-2025-192783 | Malicious code in elf-stats-silvered-bow-679 (npm) | 2025-12-23T08:09:51Z | 2025-12-24T00:53:16Z |
| mal-2025-192782 | Malicious code in elf-stats-shimmering-fir-491 (npm) | 2025-12-23T08:09:49Z | 2025-12-24T00:53:16Z |
| mal-2025-192781 | Malicious code in elf-stats-rooftop-pinecone-887 (npm) | 2025-12-23T08:09:47Z | 2025-12-24T00:53:16Z |
| mal-2025-192780 | Malicious code in elf-stats-rooftop-mitten-324 (npm) | 2025-12-23T08:09:46Z | 2025-12-24T00:53:16Z |
| mal-2025-192779 | Malicious code in elf-stats-piney-train-884 (npm) | 2025-12-23T08:09:34Z | 2025-12-24T00:53:16Z |
| mal-2025-192778 | Malicious code in elf-stats-nutmeg-fir-716 (npm) | 2025-12-23T08:09:29Z | 2025-12-24T00:53:16Z |
| mal-2025-192777 | Malicious code in elf-stats-mistletoe-muffin-976 (npm) | 2025-12-23T08:09:15Z | 2025-12-24T00:53:16Z |
| mal-2025-192776 | Malicious code in elf-stats-mistletoe-cookie-256 (npm) | 2025-12-23T08:09:14Z | 2025-12-24T00:53:16Z |
| mal-2025-192775 | Malicious code in elf-stats-merry-sparkler-797 (npm) | 2025-12-23T08:09:02Z | 2025-12-24T00:53:16Z |
| mal-2025-192774 | Malicious code in elf-stats-joyous-saddlebag-967 (npm) | 2025-12-23T08:08:33Z | 2025-12-24T00:53:16Z |
| mal-2025-192773 | Malicious code in elf-stats-jolly-snowglobe-266 (npm) | 2025-12-23T08:08:32Z | 2025-12-24T00:53:16Z |
| mal-2025-192772 | Malicious code in elf-stats-holly-fir-593 (npm) | 2025-12-23T08:08:29Z | 2025-12-24T00:53:16Z |
| mal-2025-192771 | Malicious code in elf-stats-glittering-cookie-844 (npm) | 2025-12-23T08:08:17Z | 2025-12-24T00:53:16Z |
| mal-2025-192770 | Malicious code in elf-stats-ginger-bow-370 (npm) | 2025-12-23T08:08:02Z | 2025-12-24T00:53:16Z |
| mal-2025-192769 | Malicious code in elf-stats-fuzzy-ribbon-205 (npm) | 2025-12-23T08:08:00Z | 2025-12-24T00:53:16Z |
| mal-2025-192768 | Malicious code in elf-stats-flickering-satchel-815 (npm) | 2025-12-23T08:07:45Z | 2025-12-24T00:53:16Z |
| mal-2025-192767 | Malicious code in elf-stats-festive-marshmallow-962 (npm) | 2025-12-23T08:07:35Z | 2025-12-24T00:53:16Z |
| mal-2025-192766 | Malicious code in elf-stats-evergreen-lantern-387 (npm) | 2025-12-23T08:07:18Z | 2025-12-24T00:53:16Z |
| mal-2025-192765 | Malicious code in elf-stats-ember-workbench-742 (npm) | 2025-12-23T08:07:16Z | 2025-12-24T00:53:16Z |
| mal-2025-192751 | Malicious code in elf-stats-cosy-sled-455 (npm) | 2025-12-23T08:07:03Z | 2025-12-24T00:53:16Z |
| mal-2025-192750 | Malicious code in elf-stats-cosy-cocoa-331 (npm) | 2025-12-23T08:07:02Z | 2025-12-24T00:53:16Z |
| mal-2025-192741 | Malicious code in elf-stats-cocoa-mitten-558 (npm) | 2025-12-23T08:06:52Z | 2025-12-24T00:53:16Z |
| mal-2025-192740 | Malicious code in elf-stats-caroling-wreath-635 (npm) | 2025-12-23T08:06:45Z | 2025-12-24T00:53:16Z |
| mal-2025-192739 | Malicious code in elf-stats-caroling-train-677 (npm) | 2025-12-23T08:06:35Z | 2025-12-24T00:53:16Z |
| mal-2025-192738 | Malicious code in elf-stats-caroling-star-725 (npm) | 2025-12-23T08:06:34Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-bf221f005b0c8ad4 | 2025-12-23T08:06:32Z | 2025-12-23T08:06:32Z | |
| mal-0000-reversing-labs-955d88c88fcb2116 | 2025-12-23T08:06:31Z | 2025-12-23T08:06:31Z | |
| mal-0000-reversing-labs-70768a669b45a2e7 | 2025-12-23T08:06:31Z | 2025-12-23T08:06:31Z | |
| mal-0000-reversing-labs-ba4544ad73af7e17 | 2025-12-23T08:06:30Z | 2025-12-23T08:06:30Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2110 | LibTiff: Schwachstelle ermöglicht Codeausführung | 2025-09-22T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2109 | Autodesk Produkte: Schwachstelle ermöglicht Codeausführung | 2025-09-22T22:00:00.000+00:00 | 2025-11-09T23:00:00.000+00:00 |
| wid-sec-w-2025-2107 | Linux Kernel: Mehrere Schwachstellen | 2025-09-22T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2104 | WebKitGTK: Mehrere Schwachstellen | 2025-09-22T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2101 | Ghostscript: Schwachstellen ermöglichen Codeausführung | 2025-09-21T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2099 | Linux Kernel: Mehrere Schwachstellen | 2025-09-21T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2092 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-18T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2087 | Linux Kernel: Mehrere Schwachstellen | 2025-09-17T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2083 | Ruby: Schwachstelle ermöglicht Denial of Service | 2025-09-17T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2080 | Google Chrome / Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-09-17T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2078 | Red Hat Enterprise Linux (Developer Hub): Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2077 | Linux Kernel: Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2071 | WatchGuard Firebox: Schwachstelle ermöglicht Codeausführung | 2025-09-16T22:00:00.000+00:00 | 2025-11-12T23:00:00.000+00:00 |
| wid-sec-w-2025-2060 | VMware Tanzu Spring Framework und Spring Security: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-09-15T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2058 | Apple Safari: Mehrere Schwachstellen | 2025-09-15T22:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2053 | Linux Kernel: Mehrere Schwachstellen | 2025-09-15T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2051 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-14T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2045 | expat: Schwachstelle ermöglicht Denial of Service | 2025-09-14T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2040 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-11T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2039 | CUPS: Mehrere Schwachstellen | 2025-09-11T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2036 | IBM WebSphere Application Server: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-09-10T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2034 | Erlang/OTP: Mehrere Schwachstellen | 2025-09-10T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2028 | Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Codeausführung | 2025-09-10T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2026 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2025-09-10T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-2023 | cURL: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-09-09T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2002 | libssh: Schwachstelle ermöglicht Denial of Service | 2025-09-09T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-1999 | Adobe Magento SessionReaper: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen | 2025-09-08T22:00:00.000+00:00 | 2025-10-22T22:00:00.000+00:00 |
| wid-sec-w-2025-1998 | ffmpeg: Schwachstelle ermöglicht Codeausführung und potenziell Denial of Service | 2025-09-08T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-1988 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-07T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-1976 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-04T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-224632 | SSA-224632: Improper Access Control Vulnerability in Mendix Email Connector Module | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-223771 | SSA-223771: SISCO Stack Vulnerability in SIPROTEC 5 Devices | 2022-12-13T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-180579 | SSA-180579: Privilege Management Vulnerability and Multiple Nucleus RTOS Vulnerabilities in APOGEE/TALON Field Panels before V3.5.5/V2.8.20 | 2022-12-13T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-853037 | SSA-853037: File Parsing Vulnerabilities in Parasolid | 2022-11-08T00:00:00Z | 2022-11-08T00:00:00Z |
| ssa-587547 | SSA-587547: Unencrypted Storage of User Credentials in QMS Automotive | 2022-11-08T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-478960 | SSA-478960: Missing CSRF Protection in the Web Server Login Page of Industrial Controllers | 2022-11-08T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-371761 | SSA-371761: Arbitrary Code Execution Vulnerability in the Logback Component of SINEC NMS before V1.0.3 | 2022-11-08T00:00:00Z | 2022-11-08T00:00:00Z |
| ssa-120378 | SSA-120378: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2022-11-08T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-640732 | SSA-640732: Authentication Bypass Vulnerability in Siveillance Video Mobile Server | 2022-10-21T00:00:00Z | 2022-10-21T00:00:00Z |
| ssa-935500 | SSA-935500: Denial of Service Vulnerability in FTP Server of Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products | 2022-10-11T00:00:00Z | 2025-05-13T00:00:00Z |
| ssa-697140 | SSA-697140: Denial of Service Vulnerability in the TCP Event Service of SCALANCE and RUGGEDCOM Products | 2022-10-11T00:00:00Z | 2025-02-11T00:00:00Z |
| ssa-572005 | SSA-572005: Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices | 2022-10-11T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-568427 | SSA-568427: Weak Key Protection Vulnerability in SIMATIC S7-1200 and S7-1500 CPU Families | 2022-10-11T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-501891 | SSA-501891: Cross-Site Scripting Vulnerability in SCALANCE X-200 and X-200IRT Families | 2022-10-11T00:00:00Z | 2022-11-08T00:00:00Z |
| ssa-360783 | SSA-360783: Multiple Webserver Vulnerabilities in Desigo PXM Devices | 2022-10-11T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-258115 | SSA-258115: DWG File Parsing Vulnerability in Solid Edge before SE2022MP9 | 2022-10-11T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-638652 | SSA-638652: Authentication Bypass Vulnerability in Mendix SAML Module | 2022-09-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-759952 | SSA-759952: Command Injection and Denial of Service Vulnerability in Teamcenter | 2022-08-09T00:00:00Z | 2022-08-09T00:00:00Z |
| ssa-710008 | SSA-710008: Multiple Web Vulnerabilities in SCALANCE Products | 2022-08-09T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-944952 | SSA-944952: Authentication Bypass Vulnerability in Opcenter Quality | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-910883 | SSA-910883: DHCP Client Vulnerability in SINAMICS PERFECT HARMONY GH180 Drives | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-865333 | SSA-865333: Memory Corruption Vulnerability in EN100 Ethernet Module | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-610768 | SSA-610768: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-599506 | SSA-599506: Command Injection Vulnerability in RUGGEDCOM ROX | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-580125 | SSA-580125: Multiple Vulnerabilities in SIMATIC eaSie | 2022-07-12T00:00:00Z | 2022-08-09T00:00:00Z |
| ssa-492173 | SSA-492173: Expression Injection Vulnerability in Mendix Applications | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-491621 | SSA-491621: Denial of Service Vulnerability in CPC80 Firmware of SICAM A8000 Devices | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-474231 | SSA-474231: File Parsing Vulnerability in Simcenter Femap before V2022.2 | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-439148 | SSA-439148: File Parsing Vulnerabilities in PADS Standard/Plus Viewer | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ssa-433782 | SSA-433782: Improper Access Control Vulnerability in Mendix | 2022-07-12T00:00:00Z | 2022-07-12T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:21121 | Red Hat Security Advisory: firefox security update | 2025-11-12T12:49:38+00:00 | 2025-11-21T19:31:25+00:00 |
| rhsa-2025:21118 | Red Hat Security Advisory: kernel security update | 2025-11-12T12:41:03+00:00 | 2025-11-25T21:29:25+00:00 |
| rhsa-2025:21120 | Red Hat Security Advisory: firefox security update | 2025-11-12T12:31:49+00:00 | 2025-11-21T19:31:24+00:00 |
| rhsa-2025:21112 | Red Hat Security Advisory: kernel security update | 2025-11-12T11:50:59+00:00 | 2025-11-26T20:16:00+00:00 |
| rhsa-2025:21110 | Red Hat Security Advisory: bind security update | 2025-11-12T10:49:03+00:00 | 2025-11-27T03:24:25+00:00 |
| rhsa-2025:21111 | Red Hat Security Advisory: bind9.18 security update | 2025-11-12T10:44:58+00:00 | 2025-11-27T03:24:25+00:00 |
| rhsa-2025:21117 | Red Hat Security Advisory: RHOAI 3.0 - Red Hat OpenShift AI | 2025-11-12T10:03:26+00:00 | 2025-11-21T19:38:58+00:00 |
| rhsa-2025:21091 | Red Hat Security Advisory: kernel security update | 2025-11-12T08:15:53+00:00 | 2025-11-25T21:29:26+00:00 |
| rhsa-2025:21090 | Red Hat Security Advisory: squid:4 security update | 2025-11-12T08:03:19+00:00 | 2025-11-21T19:31:21+00:00 |
| rhsa-2025:21084 | Red Hat Security Advisory: kernel security update | 2025-11-12T05:26:07+00:00 | 2025-11-25T15:42:54+00:00 |
| rhsa-2025:21083 | Red Hat Security Advisory: kernel security update | 2025-11-12T05:21:13+00:00 | 2025-11-25T21:29:18+00:00 |
| rhsa-2025:21082 | Red Hat Security Advisory: kernel-rt security update | 2025-11-12T04:28:37+00:00 | 2025-11-21T19:31:18+00:00 |
| rhsa-2025:21067 | Red Hat Security Advisory: sssd security update | 2025-11-12T03:39:07+00:00 | 2025-11-27T17:37:04+00:00 |
| rhsa-2025:21066 | Red Hat Security Advisory: squid security update | 2025-11-12T02:47:02+00:00 | 2025-11-21T19:31:17+00:00 |
| rhsa-2025:21063 | Red Hat Security Advisory: kernel security update | 2025-11-12T02:44:58+00:00 | 2025-11-21T19:31:17+00:00 |
| rhsa-2025:21068 | Red Hat Security Advisory: Red Hat Ceph Storage 8.1 bug fix update | 2025-11-12T02:43:07+00:00 | 2025-11-28T14:33:55+00:00 |
| rhsa-2025:21062 | Red Hat Security Advisory: libtiff security update | 2025-11-12T02:41:56+00:00 | 2025-11-24T21:04:34+00:00 |
| rhsa-2025:21060 | Red Hat Security Advisory: libtiff security update | 2025-11-12T02:41:37+00:00 | 2025-11-24T21:04:33+00:00 |
| rhsa-2025:21059 | Red Hat Security Advisory: firefox security update | 2025-11-12T02:35:21+00:00 | 2025-11-21T19:31:15+00:00 |
| rhsa-2025:21064 | Red Hat Security Advisory: firefox security update | 2025-11-12T02:35:07+00:00 | 2025-11-21T19:31:16+00:00 |
| rhsa-2025:21065 | Red Hat Security Advisory: squid security update | 2025-11-12T02:34:12+00:00 | 2025-11-21T19:31:16+00:00 |
| rhsa-2025:21061 | Red Hat Security Advisory: libtiff security update | 2025-11-12T02:34:12+00:00 | 2025-11-24T21:04:33+00:00 |
| rhsa-2025:21057 | Red Hat Security Advisory: firefox security update | 2025-11-12T01:48:17+00:00 | 2025-11-21T19:31:14+00:00 |
| rhsa-2025:21056 | Red Hat Security Advisory: firefox security update | 2025-11-12T01:37:57+00:00 | 2025-11-21T19:31:13+00:00 |
| rhsa-2025:21058 | Red Hat Security Advisory: firefox security update | 2025-11-12T01:36:38+00:00 | 2025-11-21T19:31:14+00:00 |
| rhsa-2025:21055 | Red Hat Security Advisory: firefox security update | 2025-11-12T01:23:47+00:00 | 2025-11-21T19:31:13+00:00 |
| rhsa-2025:21054 | Red Hat Security Advisory: firefox security update | 2025-11-12T01:19:02+00:00 | 2025-11-21T19:31:13+00:00 |
| rhsa-2025:21051 | Red Hat Security Advisory: kernel security update | 2025-11-12T00:40:37+00:00 | 2025-11-25T15:42:57+00:00 |
| rhsa-2025:21038 | Red Hat Security Advisory: kea security update | 2025-11-11T20:00:06+00:00 | 2025-11-21T19:31:12+00:00 |
| rhsa-2025:21034 | Red Hat Security Advisory: bind security update | 2025-11-11T19:58:12+00:00 | 2025-11-27T03:24:41+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-68201 | drm/amdgpu: remove two invalid BUG_ON()s | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:20.000Z |
| msrc_cve-2025-68198 | crash: fix crashkernel resource shrink | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:36.000Z |
| msrc_cve-2025-68196 | drm/amd/display: Cache streams targeting link when performing LT automation | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:15.000Z |
| msrc_cve-2025-68193 | drm/xe/guc: Add devm release action to safely tear down CT | 2025-12-02T00:00:00.000Z | 2025-12-17T01:01:43.000Z |
| msrc_cve-2025-68190 | drm/amdgpu/atom: Check kcalloc() for WS buffer in amdgpu_atom_execute_table_locked() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:01:48.000Z |
| msrc_cve-2025-68188 | tcp: use dst_dev_rcu() in tcp_fastopen_active_disable_ofo_check() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:25.000Z |
| msrc_cve-2025-68175 | media: nxp: imx8-isi: Fix streaming cleanup on release | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:49.000Z |
| msrc_cve-2025-68174 | amd/amdkfd: enhance kfd process check in switch partition | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:38.000Z |
| msrc_cve-2025-68161 | Apache Log4j Core: Missing TLS hostname verification in Socket appender | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:29.000Z |
| msrc_cve-2025-68156 | Expr has Denial of Service via Unbounded Recursion in Builtin Functions | 2025-12-02T00:00:00.000Z | 2025-12-19T01:02:08.000Z |
| msrc_cve-2025-68146 | filelock has TOCTOU race condition that allows symlink attacks during lock file creation | 2025-12-02T00:00:00.000Z | 2025-12-19T01:02:14.000Z |
| msrc_cve-2025-68114 | Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:34.000Z |
| msrc_cve-2025-67897 | In Sequoia before 2.1.0, aes_key_unwrap panics if passed a ciphertext that is too short. A remote attacker can take advantage of this issue to crash an application by sending a victim an encrypted message with a crafted PKESK or SKESK packet. | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:50.000Z |
| msrc_cve-2025-66476 | Vim for Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability | 2025-12-02T00:00:00.000Z | 2025-12-09T01:37:47.000Z |
| msrc_cve-2025-66471 | urllib3 Streaming API improperly handles highly compressed data | 2025-12-02T00:00:00.000Z | 2025-12-23T01:38:16.000Z |
| msrc_cve-2025-66418 | urllib3 allows an unbounded number of links in the decompression chain | 2025-12-02T00:00:00.000Z | 2025-12-23T01:38:10.000Z |
| msrc_cve-2025-66293 | LIBPNG has an out-of-bounds read in png_image_read_composite | 2025-12-02T00:00:00.000Z | 2025-12-17T14:36:58.000Z |
| msrc_cve-2025-66200 | Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo | 2025-12-02T00:00:00.000Z | 2025-12-20T14:35:45.000Z |
| msrc_cve-2025-65637 | A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:58.000Z |
| msrc_cve-2025-65082 | Apache HTTP Server: CGI environment variable override | 2025-12-02T00:00:00.000Z | 2025-12-20T14:35:39.000Z |
| msrc_cve-2025-62408 | c-ares has a Use After Free vulnerability when connection is cleaned up after error | 2025-12-02T00:00:00.000Z | 2025-12-11T01:01:47.000Z |
| msrc_cve-2025-61729 | Excessive resource consumption when printing error string for host certificate validation in crypto/x509 | 2025-12-02T00:00:00.000Z | 2025-12-13T01:38:50.000Z |
| msrc_cve-2025-61727 | Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509 | 2025-12-02T00:00:00.000Z | 2025-12-13T01:39:00.000Z |
| msrc_cve-2025-59775 | Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF | 2025-12-02T00:00:00.000Z | 2025-12-08T14:37:51.000Z |
| msrc_cve-2025-59529 | simple protocol server ignores accepts unlimited connections and logs failures without limit | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:23.000Z |
| msrc_cve-2025-58098 | Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... | 2025-12-02T00:00:00.000Z | 2025-12-20T14:35:52.000Z |
| msrc_cve-2025-55753 | Apache HTTP Server: mod_md (ACME), unintended retry intervals | 2025-12-02T00:00:00.000Z | 2025-12-20T14:35:58.000Z |
| msrc_cve-2025-40362 | ceph: fix multifs mds auth caps issue | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:26.000Z |
| msrc_cve-2025-40355 | sysfs: check visibility before changing group attribute ownership | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:54.000Z |
| msrc_cve-2025-40354 | drm/amd/display: increase max link count and fix link->enc NULL pointer access | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:41.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-015393 | Multiple security updates for Trend Micro Apex One and Apex One as a Service (December 2024) | 2024-12-23T12:52+09:00 | 2024-12-23T12:52+09:00 |
| jvndb-2024-014918 | Authentication Bypass Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2024-12-17T15:23+09:00 | 2024-12-17T15:23+09:00 |
| jvndb-2024-000128 | Multiple vulnerabilities in SHARP routers | 2024-12-17T07:54+09:00 | 2024-12-17T07:54+09:00 |
| jvndb-2024-000127 | "Shonen Jump+" App for Android fails to restrict custom URL schemes properly | 2024-12-16T15:07+09:00 | 2024-12-16T15:07+09:00 |
| jvndb-2024-014825 | WordPress Plugin "My WP Customize Admin/Frontend" vulnerable to cross-site scripting | 2024-12-16T13:57+09:00 | 2024-12-16T13:57+09:00 |
| jvndb-2024-014793 | Multiple vulnerabilities in FXC AE1021 and AE1021PE | 2024-12-16T11:51+09:00 | 2024-12-16T11:51+09:00 |
| jvndb-2024-014079 | Trend Micro Deep Security Agent for Windows and Deep Security Notifier on DSVA vulnerable to OS command injection | 2024-12-06T12:11+09:00 | 2024-12-06T12:11+09:00 |
| jvndb-2024-000125 | Multiple vulnerabilities in I-O DATA routers UD-LT1 and UD-LT1/EX | 2024-12-04T15:22+09:00 | 2024-12-18T15:20+09:00 |
| jvndb-2024-000124 | Multiple vulnerabilities in UNIVERGE IX/IX-R/IX-V series routers | 2024-12-02T16:38+09:00 | 2024-12-02T16:38+09:00 |
| jvndb-2024-000123 | Multiple FCNT Android devices vulnerable to authentication bypass | 2024-11-29T15:30+09:00 | 2024-11-29T15:30+09:00 |
| jvndb-2024-013702 | Multiple vulnerabilities in FUJI ELECTRIC products | 2024-11-29T14:42+09:00 | 2024-11-29T14:42+09:00 |
| jvndb-2024-000122 | HAProxy vulnerable to HTTP request/response smuggling | 2024-11-27T14:36+09:00 | 2024-11-27T14:36+09:00 |
| jvndb-2024-000121 | WordPress Plugin "WP Admin UI Customize" vulnerable to cross-site scripting | 2024-11-26T13:57+09:00 | 2024-11-26T13:57+09:00 |
| jvndb-2024-013260 | Multiple vulnerabilities in Edgecross Basic Software for Windows | 2024-11-22T10:59+09:00 | 2025-11-04T16:41+09:00 |
| jvndb-2024-000120 | "Kura Sushi Official App Produced by EPARK" for Android uses a hard-coded cryptographic key | 2024-11-20T13:56+09:00 | 2024-11-20T13:56+09:00 |
| jvndb-2024-012941 | Multiple vulnerabilities in Rakuten Turbo 5G | 2024-11-19T10:41+09:00 | 2024-11-19T10:41+09:00 |
| jvndb-2024-000119 | Multiple vulnerabilities in FitNesse | 2024-11-15T13:37+09:00 | 2024-11-20T11:18+09:00 |
| jvndb-2024-012461 | Multiple vulnerabilities in SoftBank Mesh Wi-Fi router RP562B | 2024-11-13T14:26+09:00 | 2024-11-26T16:11+09:00 |
| jvndb-2024-000118 | WordPress Plugin "VK All in One Expansion Unit" vulnerable to cross-site scripting | 2024-11-13T13:50+09:00 | 2024-11-13T13:50+09:00 |
| jvndb-2024-012017 | Trend Micro Deep Security 20 Agent for Windows vulnerable to improper access control | 2024-11-06T11:00+09:00 | 2024-11-06T11:00+09:00 |
| jvndb-2024-011833 | Incorrect authorization vulnerability in OMRON Sysmac Studio | 2024-11-05T15:29+09:00 | 2024-11-05T15:29+09:00 |
| jvndb-2024-011747 | Command injection vulnerability in Trend Micro Cloud Edge | 2024-11-01T14:28+09:00 | 2024-11-01T14:28+09:00 |
| jvndb-2024-011744 | REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers | 2024-11-01T13:49+09:00 | 2024-11-01T13:49+09:00 |
| jvndb-2024-000117 | Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor | 2024-10-31T16:44+09:00 | 2025-05-19T17:59+09:00 |
| jvndb-2024-000116 | Hikvision network camera security enhancement to prevent cleartext transmission of Dynamic DNS credentials | 2024-10-30T15:07+09:00 | 2024-10-30T15:07+09:00 |
| jvndb-2024-011256 | Multiple vulnerabilities in Sharp and Toshiba Tec MFPs | 2024-10-28T17:33+09:00 | 2024-10-28T17:33+09:00 |
| jvndb-2024-000115 | Chatwork Desktop Application (Windows) uses a potentially dangerous function | 2024-10-28T14:29+09:00 | 2024-10-28T14:29+09:00 |
| jvndb-2024-000114 | Multiple vulnerabilities in baserCMS | 2024-10-25T15:07+09:00 | 2025-02-18T15:35+09:00 |
| jvndb-2024-010802 | Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector | 2024-10-22T13:02+09:00 | 2024-10-22T13:02+09:00 |
| jvndb-2024-000106 | Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software | 2024-10-21T11:58+09:00 | 2024-11-21T11:37+09:00 |
| ID | Description | Updated |
|---|