Recent vulnerabilities

ID	Description	Published	Updated
ghsa-fc8g-5x2c-p65r	An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to red…	2025-12-24T15:30:44Z	2025-12-24T18:30:22Z
ghsa-f7m4-f638-5p2j	The Gravity Forms WordPress plugin before 2.9.23.1 does not properly prevent users from uploading d…	2025-12-24T06:30:26Z	2025-12-24T18:30:22Z
ghsa-475m-mm7r-j479	In the Linux kernel, the following vulnerability has been resolved: usb: potential integer overflo…	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-3vrr-x6c8-rfm2	Under certain circumstances a successful exploitation could result in access to the device.	2025-12-24T18:30:22Z	2025-12-24T18:30:22Z
ghsa-9g2h-fh68-3p2v	Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to i…	2025-12-15T21:30:32Z	2025-12-24T18:30:17Z
ghsa-47f7-v3jr-88mg	Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject…	2025-12-15T21:30:32Z	2025-12-24T18:30:17Z
ghsa-2488-c4gj-6g77	Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe …	2025-12-17T00:31:18Z	2025-12-24T18:30:17Z
ghsa-wp6p-8vq9-pc32	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF race betw…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-vc2w-h9rc-mpxx	In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Clear cmds afte…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-rp3g-8hwh-4xwq	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-pgph-4c45-hj8g	Unrestricted Upload of File with Dangerous Type vulnerability in Echo Call Center Services Trade an…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-j5f2-m9hq-3w98	Rejected reason: This CVE id was assigned but later discarded.	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-ghj7-pch2-m5m6	In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Fix timeou…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-99pp-v74j-jmgv	In the Linux kernel, the following vulnerability has been resolved: bpf: Free special fields when …	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-98rv-gpf2-fj42	In the Linux kernel, the following vulnerability has been resolved: mshv: Fix create memory region…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-8phj-p75x-7gv8	In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix race condition…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-348v-47hf-22wr	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF on kernel…	2025-12-24T15:30:44Z	2025-12-24T15:30:44Z
ghsa-ww8h-qfvw-pj5m	In the Linux kernel, the following vulnerability has been resolved: arm64/pageattr: Propagate retu…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-pxr4-9wxh-g3jr	In the Linux kernel, the following vulnerability has been resolved: landlock: Fix handling of disc…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-mjw3-rr6r-w9h2	In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix improper fr…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-jvhg-r77c-vccf	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix invalid prog->stats a…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-cqpf-ph48-g563	In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Prevent potential…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-c6v5-xpx3-j3vp	In the Linux kernel, the following vulnerability has been resolved: ima: Handle error code returne…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-826h-4v2p-vwp5	In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix null p…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-4mp2-rpmv-4xrr	In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: hisi: Fix potent…	2025-12-24T15:30:43Z	2025-12-24T15:30:43Z
ghsa-xh2f-j4vc-q8qj	In the Linux kernel, the following vulnerability has been resolved: media: platform: mtk-mdp3: Add…	2025-12-24T15:30:40Z	2025-12-24T15:30:40Z
ghsa-mgqh-xx5m-2h5f	In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix kernel panic at…	2025-12-24T15:30:40Z	2025-12-24T15:30:40Z
ghsa-jqh6-r2gj-x2xp	In the Linux kernel, the following vulnerability has been resolved: f2fs: Fix system crash due to …	2025-12-24T15:30:40Z	2025-12-24T15:30:40Z
ghsa-jfm8-wf93-6c4c	In the Linux kernel, the following vulnerability has been resolved: firmware: arm_sdei: Fix sleep …	2025-12-24T15:30:40Z	2025-12-24T15:30:40Z
ghsa-hxpg-6jhj-qw4q	In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock b…	2025-12-24T15:30:40Z	2025-12-24T15:30:40Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68602	N/A	WordPress Accept Donations with PayPal plugin <= 1.5.1…	Scott Paterson	Accept Donations with PayPal	2025-12-24T13:10:47.134Z	2025-12-24T19:27:22.742Z
cve-2025-68603	N/A	WordPress Editorial Calendar plugin <= 3.8.8 - Broken …	Marketing Fire	Editorial Calendar	2025-12-24T13:10:47.744Z	2025-12-24T19:27:16.669Z
cve-2025-68605	N/A	WordPress Post Grid and Gutenberg Blocks plugin <= 2.3…	PickPlugins	Post Grid and Gutenberg Blocks	2025-12-24T13:10:48.261Z	2025-12-24T19:27:09.736Z
cve-2025-68606	N/A	WordPress PostX plugin <= 5.0.3 - Sensitive Data Expos…	WPXPO	PostX	2025-12-24T13:10:48.784Z	2025-12-24T19:27:01.170Z
cve-2025-7425	7.8 (v3.1)	Libxslt: heap use-after-free in libxslt caused by atyp…	GNOME	libxml2	2025-07-10T13:53:37.295Z	2025-12-24T17:47:31.672Z
cve-2025-7424	7.8 (v3.1)	Libxslt: type confusion in xmlnode.psvi between styles…	GNOME	libxslt	2025-07-10T14:05:41.808Z	2025-12-24T17:32:54.864Z
cve-2025-2515	7.2 (v3.1)	Bluechi: privilege escalation in bluechi via unrestric…	Eclipse Foundation	BlueChi	2025-12-24T16:21:54.365Z	2025-12-24T16:48:19.891Z
cve-2025-60935	N/A	An open redirect vulnerability in the login endpo…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T16:46:21.881Z
cve-2024-35322	N/A	MyNET up to v26.08 was discovered to contain a re…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T16:45:02.195Z
cve-2025-13407	N/A	GravityForms < 2.9.23.1 - Unauthenticated Arbitrary Fi…	Unknown	Gravity Forms	2025-12-24T06:00:04.578Z	2025-12-24T16:39:08.316Z
cve-2025-57840	2.2 (v3.1)	Privilege Bypass in ADB	Honor	Magic OS	2025-12-24T06:55:53.538Z	2025-12-24T16:38:01.522Z
cve-2025-13767	4.3 (v3.1)	Unauthorized Read Access to Private Channel Posts via …	Mattermost	Mattermost	2025-12-24T08:01:27.157Z	2025-12-24T16:36:22.999Z
cve-2025-64641	4.1 (v3.1)	Mattermost Jira plugin crafted action leaks Jira issue…	Mattermost	Mattermost	2025-12-24T08:02:55.476Z	2025-12-24T16:35:17.618Z
cve-2025-14498	7.8 (v3.0)	TradingView Desktop Electron Uncontrolled Search Path …	TradingView	Desktop	2025-12-23T21:18:10.145Z	2025-12-24T16:30:51.250Z
cve-2025-14494	7.8 (v3.0)	RealDefense SUPERAntiSpyware Exposed Dangerous Functio…	RealDefense	SUPERAntiSpyware	2025-12-23T21:17:17.387Z	2025-12-24T16:29:53.279Z
cve-2025-14920	7.8 (v3.0)	Hugging Face Transformers Perceiver Model Deserializat…	Hugging Face	Transformers	2025-12-23T21:04:36.809Z	2025-12-24T16:29:05.697Z
cve-2025-13709	7.8 (v3.0)	Tencent TFace restore_checkpoint Deserialization of Un…	Tencent	TFace	2025-12-23T21:34:10.530Z	2025-12-24T16:28:02.367Z
cve-2025-14926	7.8 (v3.0)	Hugging Face Transformers SEW convert_config Code Inje…	Hugging Face	Transformers	2025-12-23T21:04:32.162Z	2025-12-24T16:26:53.253Z
cve-2025-14927	7.8 (v3.0)	Hugging Face Transformers SEW-D convert_config Code In…	Hugging Face	Transformers	2025-12-23T21:04:28.008Z	2025-12-24T16:26:02.865Z
cve-2025-14921	7.8 (v3.0)	Hugging Face Transformers Transformer-XL Model Deseria…	Hugging Face	Transformers	2025-12-23T21:04:23.187Z	2025-12-24T16:25:13.340Z
cve-2025-14929	7.8 (v3.0)	Hugging Face Transformers X-CLIP Checkpoint Conversion…	Hugging Face	Transformers	2025-12-23T21:04:15.474Z	2025-12-24T16:24:34.136Z
cve-2025-2154	5.4 (v3.1)	Stored XSS in EchoCCS's Specto CM	Echo Call Center Services Trade and Industry Inc.	Specto CM	2025-12-24T14:26:47.561Z	2025-12-24T16:23:09.149Z
cve-2025-2155	8.8 (v3.1)	Arbitrary File Upload in EchoCCS's Specto CM	Echo Call Center Services Trade and Industry Inc.	Specto CM	2025-12-24T14:31:07.708Z	2025-12-24T16:22:27.231Z
cve-2025-43875	8.7 (v4.0)	iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed…	Johnson Controls	iSTAR Ultra, iSTAR Ultra SE	2025-12-24T15:19:19.145Z	2025-12-24T16:21:31.227Z
cve-2025-43876	8.7 (v4.0)	iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Ed…	Johnson Controls	iSTAR Ultra, iSTAR Ultra SE	2025-12-24T15:27:06.898Z	2025-12-24T16:20:55.776Z
cve-2025-13715	7.8 (v3.0)	Tencent FaceDetection-DSFD resnet Deserialization of U…	Tencent	FaceDetection-DSFD	2025-12-23T21:38:56.096Z	2025-12-24T16:12:54.598Z
cve-2025-13698	4.5 (v3.0)	Deciso OPNsense diag_backup.php filename Directory Tra…	Deciso	OPNsense	2025-12-23T21:40:13.580Z	2025-12-24T16:11:29.726Z
cve-2025-13699	7 (v3.0)	MariaDB mariadb-dump Utility Directory Traversal Remot…	MariaDB	MariaDB	2025-12-23T21:40:56.956Z	2025-12-24T16:10:43.525Z
cve-2025-61258	N/A	Outsystems Platform Server 11.18.1.37828 allows a…	n/a	n/a	2025-12-09T00:00:00.000Z	2025-12-24T16:06:47.086Z
cve-2025-12838	7.3 (v3.0)	MSP360 Free Backup Link Following Local Privilege Esca…	MSP360	Free Backup	2025-12-23T21:41:11.250Z	2025-12-24T16:06:22.818Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2019-25228	5.1 (v4.0) 5.3 (v3.1)	Kentico Xperience <= 12.0.47 Virtual Context Informati…	Kentico	Xperience	2025-12-18T19:53:23.892Z	2025-12-18T21:48:40.408Z
cve-2019-25229	8.7 (v4.0) 8.8 (v3.1)	Kentico Xperience <= 12.0.29 MVC Forms Unrestricted Fi…	Kentico	Xperience	2025-12-18T19:53:24.336Z	2025-12-18T21:48:34.976Z
cve-2020-36889	5.1 (v4.0) 4.6 (v3.1)	Kentico Xperience <= 12.0.90 Administration Interface …	Kentico	Xperience	2025-12-18T19:53:25.212Z	2025-12-18T21:48:24.696Z
cve-2019-25230	5.3 (v4.0) 4.3 (v3.1)	Kentico Xperience <= 12.0.0 User Widget Information Di…	Kentico	Xperience	2025-12-18T19:53:24.782Z	2025-12-18T21:48:29.671Z
cve-2020-36890	8.6 (v4.0) 7.2 (v3.1)	Kentico Xperience <= 10 Administrator Access Control Bypass	Kentico	Xperience	2025-12-18T19:53:25.672Z	2025-12-18T21:48:19.613Z
cve-2020-36891	5.1 (v4.0) 4.6 (v3.1)	Kentico Xperience <= 12.0.49 File Upload Stored XSS	Kentico	Xperience	2025-12-18T19:53:26.107Z	2025-12-18T21:48:14.482Z
cve-2021-47711	8.7 (v4.0) 8.8 (v3.1)	Kentico Xperience <= 13.0.52 Online Marketing Macros S…	Kentico	Xperience	2025-12-18T19:53:26.564Z	2025-12-18T21:48:09.105Z
cve-2021-47712	6.9 (v4.0) 7.5 (v3.1)	Kentico Xperience <= 12.0.102 URL Hashing Cryptography…	Kentico	Xperience	2025-12-18T19:53:26.971Z	2025-12-18T21:48:02.746Z
cve-2023-53887	5.1 (v4.0)	Zomplog 3.9 Cross-Site Scripting Vulnerability via Pag…	Zomplog	Zomplog	2025-12-15T20:28:22.198Z	2025-12-15T21:46:43.279Z
cve-2023-53888	7.2 (v4.0)	Zomplog 3.9 Remote Code Execution via Authenticated Fi…	Zomplog	Zomplog	2025-12-15T20:28:22.684Z	2025-12-15T21:46:37.310Z
cve-2023-53918	5.1 (v4.0) 5.4 (v3.1)	PodcastGenerator Stored Cross-Site Scripting via Episo…	Podcastgenerator	PodcastGenerator	2025-12-17T22:44:51.638Z	2025-12-18T15:03:27.411Z
cve-2023-53920	5.1 (v4.0) 4.6 (v3.1)	PodcastGenerator Stored Cross-Site Scripting via Podca…	Podcastgenerator	PodcastGenerator	2025-12-17T22:44:52.702Z	2025-12-18T15:03:10.601Z
cve-2023-53919	5.1 (v4.0) 4.6 (v3.1)	PodcastGenerator Stored Cross-Site Scripting via Freeb…	Podcastgenerator	PodcastGenerator	2025-12-17T22:44:52.167Z	2025-12-18T15:03:20.230Z
cve-2023-53910	5.1 (v4.0) 5.4 (v3.1)	WBCE CMS 1.6.1 Stored Cross-Site Scripting via Page Content	wbce-cms	WBCE CMS	2025-12-17T22:44:47.417Z	2025-12-18T15:04:35.359Z
cve-2023-53909	5.1 (v4.0) 5.4 (v3.1)	WBCE CMS 1.6.1 SVG File Content Cross-Site Scripting	wbce-cms	WBCE CMS	2025-12-17T22:44:46.920Z	2025-12-18T15:04:44.354Z
cve-2023-53915	5.1 (v4.0) 5.4 (v3.1)	Zenphoto 1.6 Stored Cross-Site Scripting via Album Des…	Zenphoto	Zenphoto	2025-12-17T22:44:50.087Z	2025-12-18T15:03:47.757Z
cve-2023-53916	5.1 (v4.0) 5.4 (v3.1)	Zenphoto 1.6 Stored Cross-Site Scripting via User Post…	Zenphoto	Zenphoto	2025-12-17T22:44:50.590Z	2025-12-18T15:03:37.772Z
cve-2023-53926	8.7 (v4.0) 9.8 (v3.1)	PHPJabbers Simple CMS 5.0 SQL Injection via Column Parameter	PHPJabbers	Simple CMS	2025-12-17T22:44:55.873Z	2025-12-18T15:02:39.849Z
cve-2023-53927	5.1 (v4.0) 8.8 (v3.1)	PHPJabbers Simple CMS 5.0 Stored Cross-Site Scripting …	PHPJabbers	Simple CMS	2025-12-17T22:44:56.392Z	2025-12-18T15:02:32.305Z
cve-2025-34288	8.6 (v4.0)	Nagios XI Privilege Escalation via Writable PHP Includ…	Nagios Enterprises	Nagios XI	2025-12-16T22:17:02.004Z	2025-12-18T04:55:16.774Z
cve-2023-53913	6.2 (v4.0) 8.8 (v3.1)	Rukovoditel 3.3.1 CSV Injection via User Account Export	Rukovoditel	Rukovoditel	2025-12-17T22:44:48.985Z	2025-12-18T15:04:08.565Z
cve-2023-53903	5.1 (v4.0) 5.4 (v3.1)	WebsiteBaker 2.13.3 Stored Cross-Site Scripting via SV…	websitebaker	WebsiteBaker	2025-12-16T17:03:48.887Z	2025-12-16T21:44:03.498Z
cve-2023-53981	8.6 (v4.0) 8.8 (v3.1)	PhotoShow 3.0 Remote Code Execution via Exiftran Path …	thibaud-rohmer	PhotoShow	2025-12-22T21:35:36.734Z	2025-12-22T22:03:56.782Z
cve-2025-60935	N/A	An open redirect vulnerability in the login endpo…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T16:46:21.881Z
cve-2025-2515	7.2 (v3.1)	Bluechi: privilege escalation in bluechi via unrestric…	Eclipse Foundation	BlueChi	2025-12-24T16:21:54.365Z	2025-12-24T16:48:19.891Z
cve-2025-13407	N/A	GravityForms < 2.9.23.1 - Unauthenticated Arbitrary Fi…	Unknown	Gravity Forms	2025-12-24T06:00:04.578Z	2025-12-24T16:39:08.316Z
cve-2024-35322	N/A	MyNET up to v26.08 was discovered to contain a re…	n/a	n/a	2025-12-24T00:00:00.000Z	2025-12-24T16:45:02.195Z
cve-2023-53896	8.7 (v4.0) 7.5 (v3.1)	D-Link DAP-1325 Hardware A1 Unauthenticated Configurat…	D-Link	DAP-1325	2025-12-16T17:06:19.762Z	2025-12-16T21:44:51.912Z
cve-2023-53914	9.3 (v4.0) 9.8 (v3.1)	UliCMS 2023.1 Authentication Bypass via Mass Assignmen…	ulicms	Ulicms	2025-12-17T22:44:49.556Z	2025-12-18T15:03:56.460Z
cve-2022-50680	5.1 (v4.0) 4.6 (v3.1)	Kentico Xperience <= 13.0.92 Email Marketing Stored XSS	Kentico	Xperience	2025-12-18T19:53:27.435Z	2025-12-18T21:47:54.940Z

ID	Description	Published	Updated
fkie_cve-2019-25230	An information disclosure vulnerability in Kentico Xperience allows authenticated users to view sen…	2025-12-18T20:15:49.040	2025-12-24T18:16:42.040
fkie_cve-2020-36890	An access control bypass vulnerability in Kentico Xperience allows administrators to modify global …	2025-12-18T20:15:49.347	2025-12-24T18:15:25.033
fkie_cve-2020-36891	A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to upload files w…	2025-12-18T20:15:49.490	2025-12-24T18:15:14.730
fkie_cve-2021-47711	A SQL injection vulnerability in Kentico Xperience allows authenticated editors to inject malicious…	2025-12-18T20:15:49.653	2025-12-24T18:15:02.687
fkie_cve-2021-47712	A cryptography vulnerability in Kentico Xperience allows attackers to potentially manipulate URL ha…	2025-12-18T20:15:49.810	2025-12-24T18:14:46.850
fkie_cve-2023-53887	Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject…	2025-12-15T21:15:51.833	2025-12-24T18:13:07.030
fkie_cve-2023-53888	Zomplog 3.9 contains a remote code execution vulnerability that allows authenticated attackers to i…	2025-12-15T21:15:51.973	2025-12-24T18:11:46.850
fkie_cve-2023-53918	PodcastGenerator 3.2.9 contains a stored cross-site scripting vulnerability in the episode title fi…	2025-12-17T23:15:50.610	2025-12-24T18:11:03.593
fkie_cve-2023-53920	PodcastGenerator 3.2.9 contains a stored cross-site scripting vulnerability in the podcast title fi…	2025-12-17T23:15:50.933	2025-12-24T18:10:52.043
fkie_cve-2023-53919	PodcastGenerator 3.2.9 contains a stored cross-site scripting vulnerability in the Freebox content …	2025-12-17T23:15:50.760	2025-12-24T18:08:33.050
fkie_cve-2023-53910	WBCE CMS 1.6.1 contains a stored cross-site scripting vulnerability that allows authenticated attac…	2025-12-17T23:15:49.347	2025-12-24T18:08:07.400
fkie_cve-2023-53909	WBCE CMS 1.6.1 contains a stored cross-site scripting vulnerability that allows authenticated attac…	2025-12-17T23:15:49.193	2025-12-24T18:07:50.490
fkie_cve-2023-53915	Zenphoto 1.6 contains a stored cross-site scripting vulnerability that allows authenticated attacke…	2025-12-17T23:15:50.137	2025-12-24T18:06:39.670
fkie_cve-2023-53916	Zenphoto 1.6 contains a stored cross-site scripting vulnerability in the user postal code field acc…	2025-12-17T23:15:50.297	2025-12-24T18:04:15.907
fkie_cve-2023-53926	PHPJabbers Simple CMS 5.0 contains a SQL injection vulnerability in the 'column' parameter that all…	2025-12-17T23:15:51.873	2025-12-24T18:03:04.240
fkie_cve-2023-53927	PHPJabbers Simple CMS 5.0 contains a stored cross-site scripting vulnerability that allows authenti…	2025-12-17T23:15:52.027	2025-12-24T18:02:56.877
fkie_cve-2025-34288	Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe …	2025-12-16T23:15:44.720	2025-12-24T17:57:41.600
fkie_cve-2023-53913	Rukovoditel 3.3.1 contains a CSV injection vulnerability that allows authenticated users to inject …	2025-12-17T23:15:49.830	2025-12-24T17:55:18.900
fkie_cve-2023-53903	WebsiteBaker 2.13.3 contains a stored cross-site scripting vulnerability that allows authenticated …	2025-12-16T17:16:02.700	2025-12-24T17:54:34.197
fkie_cve-2023-53981	PhotoShow 3.0 contains a remote code execution vulnerability that allows authenticated administrato…	2025-12-22T22:16:03.903	2025-12-24T17:54:11.960
fkie_cve-2025-60935	An open redirect vulnerability in the login endpoint of Blitz Panel v1.17.0 allows attackers to red…	2025-12-24T15:16:01.860	2025-12-24T17:15:47.620
fkie_cve-2025-2515	A vulnerability was found in BlueChi, a multi-node systemd service controller used in RHIVOS. This …	2025-12-24T17:15:47.293	2025-12-24T17:15:47.293
fkie_cve-2025-13407	The Gravity Forms WordPress plugin before 2.9.23.1 does not properly prevent users from uploading d…	2025-12-24T06:15:43.973	2025-12-24T17:15:46.577
fkie_cve-2024-35322	MyNET up to v26.08 was discovered to contain a reflected cross-site scripting (XSS) vulnerability v…	2025-12-24T16:15:46.653	2025-12-24T17:15:45.267
fkie_cve-2023-53896	D-Link DAP-1325 firmware version 1.01 contains a broken access control vulnerability that allows un…	2025-12-16T18:16:06.537	2025-12-24T17:15:32.207
fkie_cve-2023-53914	UliCMS 2023.1 contains an authentication bypass vulnerability that allows unauthenticated attackers…	2025-12-17T23:15:49.983	2025-12-24T17:04:53.853
fkie_cve-2022-50680	A stored cross-site scripting vulnerability in Kentico Xperience allows administration users to inj…	2025-12-18T20:15:49.980	2025-12-24T17:03:39.167
fkie_cve-2022-50681	A reflected cross-site scripting vulnerability in Kentico Xperience allows attackers to inject mali…	2025-12-18T20:15:50.133	2025-12-24T17:03:32.390
fkie_cve-2022-50682	A CRLF injection vulnerability in Kentico Xperience allows attackers to manipulate URL query string…	2025-12-18T20:15:50.287	2025-12-24T17:03:26.313
fkie_cve-2022-50683	A stored cross-site scripting vulnerability in Kentico Xperience allows attackers to inject malicio…	2025-12-18T20:15:50.437	2025-12-24T17:03:14.683

ID	Description	Package	Published	Updated
pysec-2024-170	A stored Cross-Site Scripting (XSS) vulnerability was identified in the zenml-io/zenml re…	zenml	2024-06-06T19:15:53+00:00	2025-01-18T19:19:08.253212+00:00
pysec-2024-169	An improper authorization vulnerability exists in the zenml-io/zenml repository, specific…	zenml	2024-06-06T19:15:53+00:00	2025-01-18T19:19:08.205431+00:00
pysec-2024-168	Taipy is an open-source Python library for easy, end-to-end application development for d…	taipy	2024-10-09T19:15:14+00:00	2025-01-18T19:19:07.718423+00:00
pysec-2024-167	NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python…	nltk	2024-06-27T22:15:10+00:00	2025-01-18T19:19:06.317325+00:00
pysec-2024-166	Nautobot is a Network Source of Truth and Network Automation Platform. A user with permis…	nautobot	2024-05-28T23:15:17+00:00	2025-01-18T19:19:06.277166+00:00
pysec-2024-165	The Jupyter Server provides the backend for Jupyter web applications. Jupyter Server on W…	jupyter-server	2024-06-06T16:15:11+00:00	2025-01-18T19:19:04.842426+00:00
pysec-2024-164	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. If an exces…	vyper	2024-02-26T20:19:05+00:00	2025-01-16T21:21:41.436934+00:00
pysec-2025-1	An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2…	django	2025-01-14T19:15:32+00:00	2025-01-14T21:22:18.665005+00:00
pysec-2024-163	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Prior to ve…	vyper	2024-04-25T18:15:09+00:00	2025-01-14T05:22:23.036505+00:00
pysec-2024-162	A Regular Expression Denial of Service (ReDoS) vulnerability exists in the XMLFeedSpider …	scrapy	2024-02-28T00:15:53+00:00	2025-01-14T05:22:21.870348+00:00
pysec-2024-161	Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R packag…	pyarrow	2024-11-28T17:15:48+00:00	2025-01-14T05:22:20.554292+00:00
pysec-2024-160	lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.cle…	lxml-html-clean	2024-11-19T22:15:21+00:00	2025-01-14T05:22:17.244267+00:00
pysec-2024-159	Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Arc…	luigi	2024-12-10T05:15:07+00:00	2025-01-14T05:22:17.204098+00:00
pysec-2024-158	Versions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when …	djoser	2024-12-13T05:15:07+00:00	2025-01-14T05:22:11.856636+00:00
pysec-2024-157	An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2…	django	2024-12-06T12:15:18+00:00	2025-01-14T05:22:11.817473+00:00
pysec-2024-156	An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2…	django	2024-12-06T12:15:17+00:00	2025-01-14T05:22:11.736011+00:00
pysec-2024-155	cbor2 provides encoding and decoding for the Concise Binary Object Representation (CBOR) …	cbor2	2024-02-19T23:15:07+00:00	2025-01-14T05:22:09.226388+00:00
pysec-2019-255	data/interfaces/default/history.html in Tautulli 2.1.26 has XSS via a crafted Plex userna…	tautulli	2019-02-19T16:29:00Z	2025-01-12T05:34:20.550037Z
pysec-2019-254	In Tautulli 2.1.9, CSRF in the /shutdown URI allows an attacker to shut down the remote m…	tautulli	2019-12-18T18:15:00Z	2025-01-12T05:34:20.505254Z
pysec-2022-43131	diplib v3.0.0 is vulnerable to Double Free.	diplib	2022-11-04T17:15:00Z	2024-12-27T22:48:17.996707Z
pysec-2022-43162	Redis v7.0 was discovered to contain a memory leak via the component streamGetEdgeID.	redis	2022-06-23T17:15:00Z	2024-12-23T11:33:23.546447Z
pysec-2019-253	Tahoe-LAFS 1.9.0 fails to ensure integrity which allows remote attackers to corrupt mutab…	tahoe-lafs	2019-11-07T18:15:00Z	2024-12-19T05:47:49.035329Z
pysec-2020-343	blosc2.c in Blosc C-Blosc2 through 2.0.0.beta.5 has a heap-based buffer overflow when the…	blosc2	2020-11-27T20:15:00Z	2024-12-12T14:22:45.450508Z
pysec-2024-154	Ultralytics has identified a supply chain attack affecting affecting multiple versions of…	ultralytics		2024-12-10T19:20:27.097505+00:00
pysec-2015-42	providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.…	ipsilon	2015-11-17T15:59:00Z	2024-12-05T09:35:27.751929Z
pysec-2015-41	providers/saml2/admin.py in the Identity Provider (IdP) server in Ipsilon 0.1.0 before 1.…	ipsilon	2015-11-17T15:59:00Z	2024-12-05T09:35:27.711043Z
pysec-2021-125	A flaw was found in Ansible where the secret information present in async_files are getti…	ansible	2021-06-09T12:15:00Z	2024-12-03T18:23:29.400148Z
pysec-2019-251	The modoboa-dmarc plugin 1.1.0 for Modoboa is vulnerable to an XML External Entity Inject…	modoboa	2019-12-10T20:15:00Z	2024-12-02T10:49:36.349040Z
pysec-2023-298	isInList in the safeurl-python package before 1.2 for Python has an insufficiently restri…	safeurl-python	2023-01-30T05:15:00Z	2024-11-25T22:26:07.130924Z
pysec-2011-25	Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as …	Plone	2011-07-19T20:55:00Z	2024-11-25T22:26:05.519360Z

ID	Description	Updated
gsd-2024-33844	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.384822Z
gsd-2024-33728	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.380564Z
gsd-2024-33754	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.379823Z
gsd-2024-33837	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.377806Z
gsd-2024-33746	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.376327Z
gsd-2024-33691	Cross-Site Request Forgery (CSRF) vulnerability in OptinMonster Popup Builder Team OptinM…	2024-04-27T05:02:18.375458Z
gsd-2024-33828	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.373189Z
gsd-2024-33826	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.371945Z
gsd-2024-33800	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.371673Z
gsd-2024-33716	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.371227Z
gsd-2024-33751	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.370177Z
gsd-2024-33803	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.369211Z
gsd-2024-33812	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.367474Z
gsd-2024-33771	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.366201Z
gsd-2024-33762	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.364877Z
gsd-2024-33723	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.361754Z
gsd-2024-33718	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.360853Z
gsd-2024-33821	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.360168Z
gsd-2024-33846	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.353086Z
gsd-2024-33819	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.351158Z
gsd-2024-33823	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.350433Z
gsd-2024-33764	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.348731Z
gsd-2024-33798	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.346901Z
gsd-2024-33736	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.346507Z
gsd-2024-33739	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.344696Z
gsd-2024-33719	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.344333Z
gsd-2024-33802	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.336079Z
gsd-2024-33763	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.335356Z
gsd-2024-33820	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.334156Z
gsd-2024-33834	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.333945Z

ID	Description	Published	Updated
mal-2025-1721	Malicious code in amazon-test (npm)	2025-03-03T13:15:56Z	2025-12-24T10:09:26Z
mal-2025-149905	Malicious code in aes-core-valid-ipherv (npm)	2025-11-12T06:10:33Z	2025-12-24T10:09:26Z
mal-2024-11326	Malicious code in ccs-react-lib (npm)	2024-12-08T23:12:10Z	2025-12-24T10:09:26Z
mal-2025-49331	Malicious code in 8jfiesaf83 (npm)	2025-11-03T18:59:00Z	2025-12-24T10:09:25Z
mal-2025-47916	Malicious code in @hash-validator/v2 (npm)	2025-10-07T00:21:42Z	2025-12-24T10:09:25Z
mal-2025-47913	Malicious code in @bs58-utils/wrapper (npm)	2025-10-07T00:21:42Z	2025-12-24T10:09:25Z
mal-2025-3958	Malicious code in @chat-components/common (npm)	2025-05-07T19:59:49Z	2025-12-24T10:09:25Z
mal-2025-192764	Malicious code in trial-guard (npm)	2025-12-23T18:30:06Z	2025-12-24T00:53:20Z
mal-2025-192763	Malicious code in supply_chain_dummy_test_4 (npm)	2025-12-23T19:07:56Z	2025-12-24T00:53:20Z
mal-2025-192762	Malicious code in supply_chain_dummy_test_3 (npm)	2025-12-23T19:07:56Z	2025-12-24T00:53:20Z
mal-2025-192761	Malicious code in supply_chain_dummy_test_2 (npm)	2025-12-23T19:07:56Z	2025-12-24T00:53:20Z
mal-2025-192760	Malicious code in supply_chain_dummy_test_1 (npm)	2025-12-23T19:07:55Z	2025-12-24T00:53:20Z
mal-2025-192759	Malicious code in start-log-plugin (npm)	2025-12-23T18:30:06Z	2025-12-24T00:53:20Z
mal-2025-192758	Malicious code in start-log-backend (npm)	2025-12-23T18:30:06Z	2025-12-24T00:53:20Z
mal-2025-192729	Malicious code in streamixer (npm)	2025-12-23T16:22:41Z	2025-12-24T00:53:20Z
mal-2025-192757	Malicious code in qxytest1 (npm)	2025-12-23T18:30:06Z	2025-12-24T00:53:19Z
mal-2025-192756	Malicious code in qxytest (npm)	2025-12-23T18:30:06Z	2025-12-24T00:53:19Z
mal-2025-192749	Malicious code in rpc-validate (npm)	2025-12-23T18:19:20Z	2025-12-24T00:53:19Z
mal-2025-192807	Malicious code in json-panels (npm)	2025-12-23T08:17:48Z	2025-12-24T00:53:18Z
mal-2025-192748	Malicious code in lotusbail (npm)	2025-12-23T17:40:05Z	2025-12-24T00:53:18Z
mal-2025-192806	Malicious code in jest-formatting (npm)	2025-12-23T08:17:34Z	2025-12-24T00:53:17Z
mal-2025-192805	Malicious code in intuit-test (npm)	2025-12-23T08:17:01Z	2025-12-24T00:53:17Z
mal-2025-192804	Malicious code in injectorpackage (npm)	2025-12-23T08:16:49Z	2025-12-24T00:53:17Z
mal-2025-192803	Malicious code in init-router (npm)	2025-12-23T08:16:47Z	2025-12-24T00:53:17Z
mal-2025-192802	Malicious code in ingka-test (npm)	2025-12-23T08:16:45Z	2025-12-24T00:53:17Z
mal-2025-192801	Malicious code in hiro-docs (npm)	2025-12-23T08:16:14Z	2025-12-24T00:53:17Z
mal-2025-192800	Malicious code in gibertserct8 (npm)	2025-12-23T08:15:14Z	2025-12-24T00:53:17Z
mal-2025-192799	Malicious code in gibertserct15 (npm)	2025-12-23T08:15:05Z	2025-12-24T00:53:17Z
mal-2025-192798	Malicious code in flagstealer (npm)	2025-12-23T08:14:04Z	2025-12-24T00:53:17Z
mal-2025-192797	Malicious code in fe-cdnpath-transform (npm)	2025-12-23T08:13:47Z	2025-12-24T00:53:17Z

ID	Description	Published	Updated
wid-sec-w-2025-1810	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-08-12T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1732	Red Hat Enterprise Linux (libxslt): Schwachstelle ermöglicht Codeausführung	2025-08-06T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1717	libTIFF (tiff2ps): Schwachstelle ermöglicht Denial of Service	2025-08-04T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1700	libTIFF: Schwachstelle ermöglicht einen Denial of Service	2025-08-03T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-1654	libTIFF (Tiffmedian, Thumbnail): Mehrere Schwachstellen	2025-07-27T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2670	Fluent Bit: Mehrere Schwachstellen	2025-11-24T23:00:00.000+00:00	2025-11-25T23:00:00.000+00:00
wid-sec-w-2025-1423	libssh: Mehrere Schwachstellen	2025-06-29T22:00:00.000+00:00	2025-11-25T23:00:00.000+00:00
wid-sec-w-2025-2667	Janitza UMG 96-PA und UMG 96-PA-MID+: Schwachstelle ermöglicht Denial of Service	2025-11-23T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2661	Google Cloud Platform (Looker): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode	2025-11-23T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2655	CUPS-Filters: Schwachstelle ermöglicht Codeausführung	2025-11-20T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2613	Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung oder DoS	2025-11-17T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2598	CUPS (Filters): Mehrere Schwachstellen	2025-11-13T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2579	Linux Kernel: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2548	Red Hat Enterprise Linux: Mehrere Schwachstellen	2020-03-31T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2491	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-11-05T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2436	Xwayland und X.Org X11: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2025-10-28T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2396	Hashicorp Vault: Mehrere Schwachstellen	2025-10-23T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2379	Dell BIOS: Schwachstelle ermöglicht Manipulation von Daten	2025-10-21T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2311	Red Hat Enterprise Linux (libsoup3): Schwachstelle ermöglicht Offenlegung von Informationen	2025-10-15T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2300	Google Chrome/Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-10-14T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2251	Red Hat OpenShift GitOps: Mehrere Schwachstellen	2025-10-09T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2231	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2205	QT: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2190	Google Chrome/Microsoft Edge: Mehrere Schwachstellen	2025-10-01T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2080	Google Chrome / Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung	2025-09-17T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2034	Erlang/OTP: Mehrere Schwachstellen	2025-09-10T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-1928	Linux UDisks Daemon: Schwachstelle ermöglicht Privilegieneskalation	2025-08-28T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-1913	Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-08-26T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-1864	Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2025-08-19T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-1812	Google Chrome und Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung	2025-08-12T22:00:00.000+00:00	2025-11-24T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-637914	SSA-637914: Local Code Execution Vulnerability in Questa and ModelSim Before V2025.1	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-615116	SSA-615116: Multiple Vulnerabilities in Apogee PXC and Talon TC Devices	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-349422	SSA-349422: Denial of Service Vulnerability in Industrial Real-Time (IRT) Devices	2019-10-08T00:00:00Z	2025-02-11T00:00:00Z
ssa-342348	SSA-342348: Insufficient Session Expiration Vulnerability in Siemens Products	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-224824	SSA-224824: Denial of Service Vulnerabilities in SIMATIC S7-1200 CPU Family Before V4.7	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-196737	SSA-196737: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V1.2	2024-06-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-111547	SSA-111547: Cleartext Storage of Sensitive Information Vulnerability in SIPROTEC 5	2025-02-11T00:00:00Z	2025-02-11T00:00:00Z
ssa-404759	SSA-404759: Information Disclosure Vulnerability in Siveillance Video Camera Drivers	2025-01-14T00:00:00Z	2025-01-15T00:00:00Z
ssa-999588	SSA-999588: Multiple Vulnerabilities in User Management Component (UMC) Before V2.11.2	2023-12-12T00:00:00Z	2025-01-14T00:00:00Z
ssa-871035	SSA-871035: Session-Memory Deserialization Vulnerability in Siemens Engineering Platforms Before V19	2024-11-12T00:00:00Z	2025-01-14T00:00:00Z
ssa-773256	SSA-773256: Impact of Socket.IO CVE-2024-38355 on Siemens Industrial Products	2024-09-10T00:00:00Z	2025-01-14T00:00:00Z
ssa-730482	SSA-730482: Denial of Service Vulnerability in SIMATIC WinCC	2024-04-09T00:00:00Z	2025-01-14T00:00:00Z
ssa-717113	SSA-717113: Cross-Site Request Forgery (CSRF) Vulnerability in SIMATIC S7-1200 CPUs before V4.7	2025-01-14T00:00:00Z	2025-01-14T00:00:00Z
ssa-690517	SSA-690517: Multiple Vulnerabilities in SCALANCE W-700 IEEE 802.11ax Family	2024-06-11T00:00:00Z	2025-01-14T00:00:00Z
ssa-629254	SSA-629254: Remote Code Execution Vulnerability in SIMATIC SCADA and PCS 7 systems	2024-09-10T00:00:00Z	2025-01-14T00:00:00Z
ssa-482757	SSA-482757: Missing Immutable Root of Trust in S7-1500 CPU devices	2023-01-10T00:00:00Z	2025-01-14T00:00:00Z
ssa-446448	SSA-446448: Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack	2022-04-12T00:00:00Z	2025-01-14T00:00:00Z
ssa-416411	SSA-416411: Cross-Site Scripting Vulnerability in Industrial Edge Management	2025-01-14T00:00:00Z	2025-01-14T00:00:00Z
ssa-413565	SSA-413565: Multiple Vulnerabilities in SCALANCE Products	2022-12-13T00:00:00Z	2025-01-14T00:00:00Z
ssa-314390	SSA-314390: LDAP Injection Vulnerability in Mendix LDAP Module	2025-01-14T00:00:00Z	2025-01-14T00:00:00Z
ssa-979056	SSA-979056: Out of Bounds Write Vulnerability in Parasolid	2024-12-10T00:00:00Z	2024-12-12T00:00:00Z
ssa-981975	SSA-981975: Information Disclosure Vulnerability in Intel-CPUs (CVE-2022-40982) Impacting SIMATIC IPCs	2023-09-12T00:00:00Z	2024-12-10T00:00:00Z
ssa-962515	SSA-962515: Out of Bounds Read Vulnerability in Industrial Products	2024-05-14T00:00:00Z	2024-12-10T00:00:00Z
ssa-881356	SSA-881356: Multiple Memory Corruption Vulnerabilities in Simcenter Femap	2024-12-10T00:00:00Z	2024-12-10T00:00:00Z
ssa-822518	SSA-822518: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW Before V11.0.1 on RUGGEDCOM APE1808 Devices	2024-04-09T00:00:00Z	2024-12-10T00:00:00Z
ssa-730188	SSA-730188: Multiple File Parsing Vulnerabilities in Solid Edge V2024	2024-12-10T00:00:00Z	2024-12-10T00:00:00Z
ssa-701627	SSA-701627: XXE Injection Vulnerabilities in COMOS	2024-12-10T00:00:00Z	2024-12-10T00:00:00Z
ssa-645131	SSA-645131: Multiple WRL File Parsing Vulnerabilities in Teamcenter Visualization	2024-12-10T00:00:00Z	2024-12-10T00:00:00Z
ssa-599968	SSA-599968: Denial of Service Vulnerability in Profinet Devices	2021-07-13T00:00:00Z	2024-12-10T00:00:00Z
ssa-583523	SSA-583523: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation	2024-10-08T00:00:00Z	2024-12-10T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:1332	Red Hat Security Advisory: Gatekeeper v3.15.3	2025-02-12T17:48:36+00:00	2025-11-29T06:52:58+00:00
rhsa-2025:1331	Red Hat Security Advisory: Gatekeeper v3.17.1	2025-02-12T17:47:51+00:00	2025-11-29T06:52:58+00:00
rhsa-2025:1327	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T15:44:02+00:00	2025-11-29T06:52:58+00:00
rhsa-2025:1326	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T15:41:51+00:00	2025-11-29T06:52:58+00:00
rhsa-2025:1325	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T15:41:41+00:00	2025-11-29T06:52:57+00:00
rhsa-2025:1324	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T15:39:16+00:00	2025-11-29T06:52:56+00:00
rhsa-2025:1322	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T15:37:40+00:00	2025-11-29T06:52:56+00:00
rhsa-2025:1289	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T10:53:10+00:00	2025-11-29T06:52:56+00:00
rhsa-2025:1287	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T10:52:52+00:00	2025-11-29T06:52:55+00:00
rhsa-2025:1285	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-11T10:50:52+00:00	2025-11-29T06:52:54+00:00
rhsa-2025:12323	Red Hat Security Advisory: OpenShift Container Platform 4.12.79 bug fix and security update	2025-08-07T18:02:35+00:00	2025-11-29T06:52:54+00:00
rhsa-2025:11889	Red Hat Security Advisory: 7.1 container image is now available in the Red Hat Ecosystem Catalog.	2025-07-28T10:55:23+00:00	2025-11-29T06:52:53+00:00
rhsa-2025:11830	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-07-28T05:56:59+00:00	2025-11-29T06:52:52+00:00
rhsa-2025:11749	Red Hat Security Advisory: Updated 8.1 container image is now available: security and bug fix update	2025-07-24T15:20:25+00:00	2025-11-29T06:52:52+00:00
rhsa-2025:11669	Red Hat Security Advisory: OpenShift Container Platform 4.14.54 bug fix and security update	2025-07-31T03:56:26+00:00	2025-11-29T06:52:51+00:00
rhsa-2025:11573	Red Hat Security Advisory: Multicluster engine for Kubernetes 2.7.5 security updates and bug fixes	2025-07-23T03:56:43+00:00	2025-11-29T06:52:50+00:00
rhsa-2025:11396	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.4.5 security and bug fix update	2025-07-18T15:51:18+00:00	2025-11-29T06:52:48+00:00
rhsa-2025:0892	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.18.0 release	2025-02-03T16:38:18+00:00	2025-11-29T06:52:48+00:00
rhsa-2025:10781	Red Hat Security Advisory: OpenShift Container Platform 4.16.44 bug fix and security update	2025-07-17T21:33:05+00:00	2025-11-29T06:52:47+00:00
rhsa-2025:10294	Red Hat Security Advisory: OpenShift Container Platform 4.17.35 bug fix and security update	2025-07-09T04:04:14+00:00	2025-11-29T06:52:46+00:00
rhsa-2025:0851	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.2 security and bug fix updates	2025-01-30T21:30:22+00:00	2025-11-29T06:52:44+00:00
rhsa-2025:0679	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.7 bug fixes and container updates	2025-01-23T23:30:43+00:00	2025-11-29T06:52:43+00:00
rhsa-2025:0839	Red Hat Security Advisory: OpenShift Container Platform 4.14.46 security update	2025-02-06T01:36:17+00:00	2025-11-29T06:52:42+00:00
rhsa-2025:0785	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.5 bug fixes and container updates	2025-01-28T23:59:02+00:00	2025-11-29T06:52:41+00:00
rhsa-2025:0778	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.6.5 security updates and bug fixes	2025-01-28T20:56:08+00:00	2025-11-29T06:52:40+00:00
rhsa-2025:0723	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.7.3 security updates and bug fixes	2025-01-27T21:50:16+00:00	2025-11-29T06:52:39+00:00
rhsa-2025:0676	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.5.8 security updates and bug fixes	2025-01-23T20:15:51+00:00	2025-11-29T06:52:37+00:00
rhsa-2025:0653	Red Hat Security Advisory: OpenShift Container Platform 4.17.14 security and extras update	2025-01-28T00:55:21+00:00	2025-11-29T06:52:37+00:00
rhsa-2025:0649	Red Hat Security Advisory: OpenShift Container Platform 4.16.32 security and extras update	2025-01-29T00:29:19+00:00	2025-11-29T06:52:36+00:00
rhsa-2025:0645	Red Hat Security Advisory: OpenShift Container Platform 4.15.44 security update	2025-01-29T16:41:46+00:00	2025-11-29T06:52:35+00:00

ID	Description	Published	Updated
msrc_cve-2025-65046	Microsoft Edge (Chromium-based) Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-65041	Microsoft Partner Center Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-65037	Azure Container Apps Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-64677	Office Out-of-Box Experience Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-64676	Microsoft Purview eDiscovery Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-64675	Azure Cosmos DB Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-64663	Custom Question Answering Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2025-54100	PowerShell Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-18T08:00:00.000Z
msrc_cve-2024-28863	node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation	2024-03-02T08:00:00.000Z	2025-12-18T01:04:40.000Z
msrc_cve-2025-54567	hw/pci/pcie_sriov.c in QEMU through 10.0.3 mishandles the VF Enable bit write mask, a related issue to CVE-2024-26327.	2025-07-02T00:00:00.000Z	2025-12-18T01:04:33.000Z
msrc_cve-2025-54566	hw/pci/pcie_sriov.c in QEMU through 10.0.3 has a migration state inconsistency, a related issue to CVE-2024-26327.	2025-07-02T00:00:00.000Z	2025-12-18T01:04:28.000Z
msrc_cve-2025-68302	net: sxgbe: fix potential NULL dereference in sxgbe_rx()	2025-12-02T00:00:00.000Z	2025-12-18T01:04:24.000Z
msrc_cve-2025-68289	usb: gadget: f_eem: Fix memory leak in eem_unwrap	2025-12-02T00:00:00.000Z	2025-12-18T01:04:18.000Z
msrc_cve-2025-68315	f2fs: fix to detect potential corrupted nid in free_nid_list	2025-12-02T00:00:00.000Z	2025-12-18T01:04:13.000Z
msrc_cve-2025-68296	drm, fbcon, vga_switcheroo: Avoid race condition in fbcon setup	2025-12-02T00:00:00.000Z	2025-12-18T01:04:08.000Z
msrc_cve-2025-68287	usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths	2025-12-02T00:00:00.000Z	2025-12-18T01:04:02.000Z
msrc_cve-2025-68308	can: kvaser_usb: leaf: Fix potential infinite loop in command parsers	2025-12-02T00:00:00.000Z	2025-12-18T01:03:57.000Z
msrc_cve-2025-68290	most: usb: fix double free on late probe failure	2025-12-02T00:00:00.000Z	2025-12-18T01:03:51.000Z
msrc_cve-2025-68318	clk: thead: th1520-ap: set all AXI clocks to CLK_IS_CRITICAL	2025-12-02T00:00:00.000Z	2025-12-18T01:03:46.000Z
msrc_cve-2025-68301	net: atlantic: fix fragment overflow handling in RX path	2025-12-02T00:00:00.000Z	2025-12-18T01:03:41.000Z
msrc_cve-2025-68304	Bluetooth: hci_core: lookup hci_conn on RX path on protocol side	2025-12-02T00:00:00.000Z	2025-12-18T01:03:36.000Z
msrc_cve-2025-68309	PCI/AER: Fix NULL pointer access by aer_info	2025-12-02T00:00:00.000Z	2025-12-18T01:03:30.000Z
msrc_cve-2025-68317	io_uring/zctx: check chained notif contexts	2025-12-02T00:00:00.000Z	2025-12-18T01:03:25.000Z
msrc_cve-2025-68311	tty: serial: ip22zilog: Use platform device for probing	2025-12-02T00:00:00.000Z	2025-12-18T01:03:19.000Z
msrc_cve-2025-68284	libceph: prevent potential out-of-bounds writes in handle_auth_session_key()	2025-12-02T00:00:00.000Z	2025-12-18T01:03:14.000Z
msrc_cve-2025-68303	platform/x86: intel: punit_ipc: fix memory corruption	2025-12-02T00:00:00.000Z	2025-12-18T01:03:09.000Z
msrc_cve-2025-68288	usb: storage: Fix memory leak in USB bulk transport	2025-12-02T00:00:00.000Z	2025-12-18T01:03:03.000Z
msrc_cve-2025-68313	x86/CPU/AMD: Add RDSEED fix for Zen5	2025-12-02T00:00:00.000Z	2025-12-18T01:02:58.000Z
msrc_cve-2025-68295	smb: client: fix memory leak in cifs_construct_tcon()	2025-12-02T00:00:00.000Z	2025-12-18T01:02:53.000Z
msrc_cve-2025-68286	drm/amd/display: Check NULL before accessing	2025-12-02T00:00:00.000Z	2025-12-18T01:02:48.000Z

ID	Description	Published	Updated
icsa-25-273-07	LG Innotek Camera Multiple Models	2025-09-30T05:00:00.000000Z	2025-09-30T05:00:00.000000Z
va-25-273-01	Microsoft Windows inconsistent driver blocking	2025-09-30T00:00:00Z	2025-09-30T00:00:00Z
va-25-272-01	Medical Informatics Engineering Enterprise Health multiple vulnerabilities	2025-09-29T00:00:00Z	2025-09-29T00:00:00Z
icsa-25-268-01	Dingtian DT-R002	2025-09-25T06:00:00.000000Z	2025-09-25T06:00:00.000000Z
icsa-25-140-07	Schneider Electric Galaxy VS, Galaxy VL, Galaxy VXL (Update A)	2025-05-13T04:00:00.000000Z	2025-09-24T04:00:00.000000Z
icsa-25-266-04	Viessmann Vitogate 300	2025-09-23T06:00:00.000000Z	2025-09-23T06:00:00.000000Z
icsa-25-266-02	Mitsubishi Electric MELSEC-Q Series CPU Module	2025-09-23T06:00:00.000000Z	2025-09-23T06:00:00.000000Z
icsa-25-266-01	AutomationDirect CLICK PLUS	2025-09-23T06:00:00.000000Z	2025-09-23T06:00:00.000000Z
va-25-265-01	Airship AI MFA bypass and default credentials vulnerabilities	2025-09-22T14:06:13Z	2025-09-22T14:06:13Z
icsa-25-261-07	Dover Fueling Solutions ProGauge MagLink LX4 Devices	2025-09-18T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-261-06	Cognex In-Sight Explorer and In-Sight Camera Firmware	2025-09-18T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-261-03	Schneider Electric Saitel DR & Saitel DP Remote Terminal Unit	2025-09-18T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-261-02	Westermo Network Technologies WeOS 5	2025-09-18T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-261-01	Westermo Network Technologies WeOS 5	2025-09-18T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-254-10	Daikin Europe N.V Security Gateway	2025-09-11T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-191-10	End-of-Train and Head-of-Train Remote Linking Protocol (Update C)	2025-07-10T06:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-24-030-02	Mitsubishi Electric FA Engineering Software Products (Update D)	2024-01-30T07:00:00.000000Z	2025-09-18T06:00:00.000000Z
icsa-25-259-07	Delta Electronics DIALink	2025-09-16T06:00:00.000000Z	2025-09-16T06:00:00.000000Z
icsa-25-259-05	Siemens OpenSSL Vulnerability in Industrial Products	2025-09-16T06:00:00.000000Z	2025-09-16T06:00:00.000000Z
icsa-25-259-03	Siemens SIMATIC NET CP, SINEMA and SCALANCE	2025-09-16T06:00:00.000000Z	2025-09-16T06:00:00.000000Z
icsa-25-259-02	Hitachi Energy RTU500 series	2025-09-16T06:00:00.000000Z	2025-09-16T06:00:00.000000Z
va-25-259-01	CISA Thorium multiple vulnerabilities	2025-09-16T00:00:00Z	2025-09-16T00:00:00Z
va-25-258-01	psPAS does not enforce TLS 1.2 within Get-PASSAMLResponse	2025-09-15T18:41:08Z	2025-09-15T18:41:08Z
va-25-174-01	OPEXUS FOIAXpress Public Access Link (PAL) multiple vulnerabilities	2025-07-31T17:01:09Z	2025-09-09T21:12:34Z
va-25-252-01	OPEXUS FOIAXpress Public Access Link (PAL) SQL injection	2025-09-09T20:48:26Z	2025-09-09T20:48:26Z
icsa-25-093-01	Hitachi Energy RTU500 Series (Update B)	2025-03-25T12:30:00.000000Z	2025-09-09T12:30:00.000000Z
icsa-25-023-02	Hitachi Energy RTU500 Series Product (Update A)	2024-04-30T12:30:00.000000Z	2025-09-09T10:00:00.000000Z
icsa-25-252-09	Rockwell Automation 1783-NATR	2025-09-09T06:00:00.000000Z	2025-09-09T06:00:00.000000Z
icsa-25-252-07	Rockwell Automation ControlLogix 5580	2025-09-09T06:00:00.000000Z	2025-09-09T06:00:00.000000Z
icsa-25-252-06	Rockwell Automation CompactLogix® 5480	2025-09-09T06:00:00.000000Z	2025-09-09T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-swa-range-bypass-2bsehysu	Cisco Secure Web Appliance Range Request Bypass Vulnerability	2025-02-05T16:00:00+00:00	2025-02-05T16:00:00+00:00
cisco-sa-ise-xss-42tgsdmg	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities	2025-02-05T16:00:00+00:00	2025-02-05T16:00:00+00:00
cisco-sa-expressway-xss-uexuzrew	Cisco Expressway Series Cross-Site Scripting Vulnerability	2025-02-05T16:00:00+00:00	2025-02-05T16:00:00+00:00
cisco-sa-esa-sma-xss-wck2wcug	Cisco Secure Email and Web Manager and Secure Email Gateway Cross-Site Scripting Vulnerability	2025-02-05T16:00:00+00:00	2025-02-05T16:00:00+00:00
cisco-sa-esa-sma-wsa-snmp-inf-fqpvl8sx	Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance SNMP Polling Information Disclosure Vulnerability	2025-02-05T16:00:00+00:00	2025-02-05T16:00:00+00:00
cisco-sa-cmm-privesc-uy2vf8pc	Cisco Meeting Management REST API Privilege Escalation Vulnerability	2025-01-22T16:00:00+00:00	2025-01-22T16:00:00+00:00
cisco-sa-clamav-ole2-h549rpha	ClamAV OLE2 File Format Decryption Denial of Service Vulnerability	2025-01-22T16:00:00+00:00	2025-01-22T16:00:00+00:00
cisco-sa-bw-sip-dos-msysbrmt	Cisco BroadWorks SIP Denial of Service Vulnerability	2025-01-22T16:00:00+00:00	2025-01-22T16:00:00+00:00
cisco-sa-thousandeyes-cert-pqtjuv9n	Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability	2025-01-08T16:00:00+00:00	2025-01-13T22:15:18+00:00
cisco-sa-snort-rf-bypass-oy8f3pnm	Multiple Cisco Products Snort Rate Filter Bypass Vulnerability	2024-10-23T16:00:00+00:00	2025-01-13T16:44:31+00:00
cisco-sa-thousandeyes-cert-pqtJUv9N	Cisco ThousandEyes Endpoint Agent for MacOS and RoomOS Certificate Validation Vulnerability	2025-01-08T16:00:00+00:00	2025-01-13T22:15:18+00:00
cisco-sa-xwork-xss-kccg7wwu	Cisco Crosswork Network Controller Stored Cross-Site Scripting Vulnerabilities	2025-01-08T16:00:00+00:00	2025-01-08T16:00:00+00:00
cisco-sa-cspc-xss-cdojzyh	Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities	2025-01-08T16:00:00+00:00	2025-01-08T16:00:00+00:00
cisco-sa-nxos-image-sig-bypas-pQDRQvjL	Cisco NX-OS Software Image Verification Bypass Vulnerability	2024-12-04T16:00:00+00:00	2025-04-07T16:43:32+00:00
cisco-sa-ap-dos-capwap-ddmczs4m	Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability	2023-09-27T16:00:00+00:00	2024-12-12T12:27:21+00:00
cisco-sa-ap-dos-capwap-DDMCZS4m	Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability	2023-09-27T16:00:00+00:00	2024-12-12T12:27:21+00:00
cisco-sa-swa-priv-esc-7uhpzscc	Cisco Secure Web Appliance Privilege Escalation Vulnerability	2024-07-17T16:00:00+00:00	2024-11-22T17:13:56+00:00
cisco-sa-swa-priv-esc-7uHpZsCC	Cisco Secure Web Appliance Privilege Escalation Vulnerability	2024-07-17T16:00:00+00:00	2024-11-22T17:13:56+00:00
cisco-sa-iosxr-load-infodisc-9rdor5fq	Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability	2023-03-08T16:00:00+00:00	2024-11-13T15:00:06+00:00
cisco-sa-iosxr-load-infodisc-9rdOr5Fq	Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability	2023-03-08T16:00:00+00:00	2024-11-13T15:00:06+00:00
cisco-sa-phone-infodisc-sbyqqvbg	Cisco 7800, 8800, and 9800 Series Phones Information Disclosure Vulnerability	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-phone-infodisc-sbyqQVbG	Cisco 7800, 8800, and 9800 Series Phones Information Disclosure Vulnerability	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ndfc-sqli-cyppaxrl	Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ndfc-sqli-CyPPAxrL	Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-mpp-xss-8tav2tvf	Cisco 6800, 7800, 8800, and 9800 Series Phones with Multiplatform Firmware Stored Cross-Site Scripting Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-mpp-xss-8tAV2TvF	Cisco 6800, 7800, 8800, and 9800 Series Phones with Multiplatform Firmware Stored Cross-Site Scripting Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ise-multi-vulns-af544ed5	Cisco Identity Services Engine Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ise-multi-vulns-AF544ED5	Cisco Identity Services Engine Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ise-multi-vuln-dbqdwry	Cisco Identity Services Engine Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00
cisco-sa-ise-multi-vuln-DBQdWRy	Cisco Identity Services Engine Vulnerabilities	2024-11-06T16:00:00+00:00	2024-11-06T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-202104-0334	curl 7.1.1 to and including 7.75.0 is vulnerable to an "Exposure of Private Personal Info…	2024-11-29T22:25:35.487000Z
var-200907-0717	WebKit in Apple Safari before 4.0.2, as used on iPhone OS before 3.1, iPhone OS before 3.…	2024-11-29T22:25:34.664000Z
var-200808-0011	Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when …	2024-11-29T22:25:20.272000Z
var-201906-1175	Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an…	2024-11-29T22:25:11.853000Z
var-200810-0141	Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for c…	2024-11-29T22:25:11.787000Z
var-201108-0210	Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and Solaris and before …	2024-11-29T22:25:11.029000Z
var-200603-0274	FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when cr…	2024-11-29T22:25:09.961000Z
var-201912-0619	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:25:09.571000Z
var-200609-1142	Heap-based buffer overflow in the Finder in Apple Mac OS X 10.4.8 and earlier allows user…	2024-11-29T22:25:04.004000Z
var-201306-0250	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:24:32.788000Z
var-201910-1646	By design, BIND is intended to limit the number of TCP clients that can be connected at a…	2024-11-29T22:24:30.483000Z
var-200909-0782	Samba 3.4 before 3.4.2, 3.3 before 3.3.8, 3.2 before 3.2.15, and 3.0.12 through 3.0.36, a…	2024-11-29T22:23:55.485000Z
var-202109-1368	A type confusion issue was addressed with improved state handling. This issue is fixed in…	2024-11-29T22:23:54.017000Z
var-200605-0497	RIPd in Quagga 0.98 and 0.99 before 20060503 does not properly enforce RIPv2 authenticati…	2024-11-29T22:22:50.879000Z
var-201707-0556	Apache HTTP Server, in all releases prior to 2.2.32 and 2.4.25, was liberal in the whites…	2024-11-29T22:22:49.590000Z
var-202108-2222	libcurl keeps previously used connections in a connection pool for subsequenttransfers to…	2024-11-29T22:22:49.365000Z
var-201310-0614	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J…	2024-11-29T22:22:48.046000Z
var-200603-0282	Unspecified vulnerability in Safari, LaunchServices, and/or CoreTypes in Apple Mac OS X 1…	2024-11-29T22:22:16.821000Z
var-201006-1188	Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in …	2024-11-29T22:22:13.193000Z
var-201201-0025	Use-after-free vulnerability in Google Chrome before 16.0.912.77 allows remote attackers …	2024-11-29T22:21:09.772000Z
var-201212-0238	Integer overflow in Adobe Flash Player before 10.3.183.48 and 11.x before 11.5.502.135 on…	2024-11-29T22:21:08.293000Z
var-202112-2255	In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has …	2024-11-29T22:20:52.912000Z
var-200807-0283	Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 a…	2024-11-29T22:20:51.415000Z
var-202210-1528	A type confusion issue was addressed with improved memory handling. This issue is fixed i…	2024-11-29T22:20:50.975000Z
var-200609-0314	Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to…	2024-11-29T22:20:49.843000Z
var-200608-0034	Integer overflow in ImageIO for Apple Mac OS X 10.4.7 allows user-assisted attackers to c…	2024-11-29T22:20:40.094000Z
var-201302-0137	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:20:39.765000Z
var-201008-0270	The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used o…	2024-11-29T22:20:33.990000Z
var-200609-0312	Buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to …	2024-11-29T22:20:33.742000Z
var-202207-0588	The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does no…	2024-11-29T22:19:57.824000Z

ID	Description	Published	Updated
jvndb-2025-000008	Multiple vulnerabilities in Defense Platform Home Edition	2025-02-05T14:06+09:00	2025-02-05T14:06+09:00
jvndb-2025-000009	WordPress Plugin "Activity Log WinterLock" vulnerable to cross-site request forgery	2025-02-04T13:58+09:00	2025-02-04T13:58+09:00
jvndb-2025-001244	Clickjacking Vulnerability in JP1/ServerConductor/Deployment Manager	2025-01-30T18:19+09:00	2025-01-30T18:19+09:00
jvndb-2025-000007	SXF Common Library vulnerable to improper input data handling	2025-01-29T14:57+09:00	2025-01-29T14:57+09:00
jvndb-2025-000006	WordPress Plugin "Simple Image Sizes" vulnerable to cross-site scripting	2025-01-28T13:44+09:00	2025-01-28T13:44+09:00
jvndb-2025-000005	EXIF Viewer Classic vulnerable to cross-site scripting	2025-01-27T14:25+09:00	2025-01-27T14:25+09:00
jvndb-2025-000003	FortiWeb vulnerable to SQL injection	2025-01-21T15:59+09:00	2025-01-21T15:59+09:00
jvndb-2025-001027	Linux Ratfor vulnerable to stack-based buffer overflow	2025-01-16T13:27+09:00	2025-01-16T13:27+09:00
jvndb-2025-000001	PLANEX COMMUNICATIONS MZK-DP300N vulnerable to cross-site scripting	2025-01-08T17:08+09:00	2025-01-08T17:08+09:00
jvndb-2024-015471	Trend Micro Deep Security 20.0 Agent (for Windows) vulnerable to uncontrolled search path element	2024-12-25T11:28+09:00	2024-12-25T11:28+09:00
jvndb-2024-015393	Multiple security updates for Trend Micro Apex One and Apex One as a Service (December 2024)	2024-12-23T12:52+09:00	2024-12-23T12:52+09:00
jvndb-2024-000125	Multiple vulnerabilities in I-O DATA routers UD-LT1 and UD-LT1/EX	2024-12-04T15:22+09:00	2024-12-18T15:20+09:00
jvndb-2024-014918	Authentication Bypass Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer	2024-12-17T15:23+09:00	2024-12-17T15:23+09:00
jvndb-2024-000128	Multiple vulnerabilities in SHARP routers	2024-12-17T07:54+09:00	2024-12-17T07:54+09:00
jvndb-2024-000127	"Shonen Jump+" App for Android fails to restrict custom URL schemes properly	2024-12-16T15:07+09:00	2024-12-16T15:07+09:00
jvndb-2024-014825	WordPress Plugin "My WP Customize Admin/Frontend" vulnerable to cross-site scripting	2024-12-16T13:57+09:00	2024-12-16T13:57+09:00
jvndb-2024-014793	Multiple vulnerabilities in FXC AE1021 and AE1021PE	2024-12-16T11:51+09:00	2024-12-16T11:51+09:00
jvndb-2024-014079	Trend Micro Deep Security Agent for Windows and Deep Security Notifier on DSVA vulnerable to OS command injection	2024-12-06T12:11+09:00	2024-12-06T12:11+09:00
jvndb-2023-000085	"Skylark" App fails to restrict custom URL schemes properly	2023-08-24T13:34+09:00	2024-12-03T15:51+09:00
jvndb-2024-000124	Multiple vulnerabilities in UNIVERGE IX/IX-R/IX-V series routers	2024-12-02T16:38+09:00	2024-12-02T16:38+09:00
jvndb-2024-000123	Multiple FCNT Android devices vulnerable to authentication bypass	2024-11-29T15:30+09:00	2024-11-29T15:30+09:00
jvndb-2024-013702	Multiple vulnerabilities in FUJI ELECTRIC products	2024-11-29T14:42+09:00	2024-11-29T14:42+09:00
jvndb-2024-002831	ELECOM wireless LAN routers vulnerable to OS command injection	2024-02-22T08:15+09:00	2024-11-27T14:45+09:00
jvndb-2024-000122	HAProxy vulnerable to HTTP request/response smuggling	2024-11-27T14:36+09:00	2024-11-27T14:36+09:00
jvndb-2024-003025	Multiple vulnerabilities in ELECOM wireless LAN routers	2024-03-27T14:26+09:00	2024-11-27T14:34+09:00
jvndb-2024-012461	Multiple vulnerabilities in SoftBank Mesh Wi-Fi router RP562B	2024-11-13T14:26+09:00	2024-11-26T16:11+09:00
jvndb-2024-000020	Multiple vulnerabilities in ELECOM wireless LAN routers and wireless LAN repeater	2024-02-20T14:14+09:00	2024-11-26T15:26+09:00
jvndb-2024-000088	Multiple vulnerabilities in ELECOM wireless LAN routers and access points	2024-08-27T14:40+09:00	2024-11-26T15:17+09:00
jvndb-2024-000121	WordPress Plugin "WP Admin UI Customize" vulnerable to cross-site scripting	2024-11-26T13:57+09:00	2024-11-26T13:57+09:00
jvndb-2024-000106	Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software	2024-10-21T11:58+09:00	2024-11-21T11:37+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated