Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-mg5v-h49p-v962 | IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 is vulnerable to stored cross-s… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-jwjg-xp7x-9rmf | A weakness has been identified in code-projects Nero Social Networking Site 1.0. This affects an un… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-jc8w-794f-cj7q | A vulnerability has been found in D-Link DI-7001 MINI 19.09.19A1/24.04.18B1. The affected element i… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-gh2f-cmxg-jgp4 | A vulnerability was identified in code-projects Courier Management System 1.0. This impacts an unkn… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:28Z |
| ghsa-ggjp-vjc6-ghph | Error Messages Wrapped In HTTP Header.This issue affects BLU-IC2: through 1.19.5; BLU-IC4: through … | 2025-10-27T21:30:27Z | 2025-11-10T15:31:03Z |
| ghsa-frg4-h3jm-c2wc | A vulnerability was found in code-projects Food Ordering System 1.0. The impacted element is an unk… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-f8q2-qp97-hhj2 | A vulnerability was detected in PHPGurukul Curfew e-Pass Management System 1.0. This issue affects … | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-92ph-2q6c-6955 | A vulnerability was determined in code-projects Nero Social Networking Site 1.0. Affected is an unk… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-8mgf-rgg5-w38q | Liferay Portal Vulnerable to Cross-Site Scripting | 2025-10-27T21:30:27Z | 2025-11-15T02:29:55Z |
| ghsa-7c63-x96c-8hpq | IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 is vulnerable to privilege esca… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-6xr9-vq37-4x64 | FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via th… | 2025-10-27T21:30:27Z | 2025-10-28T18:30:27Z |
| ghsa-64c4-g668-j3p2 | A vulnerability was identified in code-projects Nero Social Networking Site 1.0. Affected by this v… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-63qm-crxg-f8px | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via th… | 2025-10-27T21:30:27Z | 2025-10-28T18:30:28Z |
| ghsa-62rf-c379-23r7 | A vulnerability was found in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5. This… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-5mr2-rpgv-wwmx | A flaw has been found in Tenda CH22 1.0.0.1. Affected by this issue is the function fromNatStaticSe… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:28Z |
| ghsa-4hm4-qj94-jgq4 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via th… | 2025-10-27T21:30:27Z | 2025-10-28T18:30:28Z |
| ghsa-38hp-jh3g-fr6g | A vulnerability was determined in code-projects Food Ordering System 1.0. This affects an unknown f… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-3324-w6mq-62mc | A vulnerability was determined in shawon100 RUET OJ up to 18fa45b0a669fa1098a0b8fc629cf6856369d9a5.… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-2pwh-9q9q-5r9c | Liferay Portal Vulnerable to Open Redirect via the _com_liferay_layout_admin_web_portlet_GroupPages… | 2025-10-27T21:30:27Z | 2025-10-29T10:39:57Z |
| ghsa-2h2q-6mw2-pq7r | A flaw has been found in PHPGurukul Curfew e-Pass Management System 1.0. Impacted is an unknown fun… | 2025-10-27T21:30:27Z | 2025-10-27T21:30:27Z |
| ghsa-23gf-35qh-v8hp | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via th… | 2025-10-27T21:30:27Z | 2025-10-28T18:30:28Z |
| ghsa-rr87-h7hq-m7h7 | A vulnerability was found in quequnlong shiyi-blog up to 1.2.1. This impacts an unknown function of… | 2025-10-27T21:30:26Z | 2025-10-27T21:30:26Z |
| ghsa-9268-xrmf-pfrg | A vulnerability has been found in dulaiduwang003 TIME-SEA-PLUS up to fb299162f18498dd9cf17da906886d… | 2025-10-27T21:30:26Z | 2025-10-27T21:30:26Z |
| ghsa-q8hq-4h99-fj7x | Keycloak TLS Client-Initiated Renegotiation Denial of Service | 2025-10-27T20:46:54Z | 2025-10-27T20:46:54Z |
| ghsa-gv8h-7v7w-r22q | Docker Compose Vulnerable to Path Traversal via OCI Artifact Layer Annotations | 2025-10-27T20:19:34Z | 2025-10-27T22:32:12Z |
| ghsa-4h67-722j-5pmc | Wasmtime vulnerable to segfault when using component resources | 2025-10-27T20:18:01Z | 2025-10-27T20:18:01Z |
| ghsa-p3v4-c93g-cmhw | BBOT's gitlab.py exposes globally configured "gitlab" API key | 2025-10-27T20:15:12Z | 2025-10-27T20:15:12Z |
| ghsa-rgvh-4m82-fvjq | InventoryGui allows item duplication with experimental "Bundle" item in GUIs which use GuiStorageElement | 2025-10-27T20:12:50Z | 2025-10-27T22:32:04Z |
| ghsa-598q-jw82-5w66 | InventoryGui affected by item duplication in GUIs which use GuiStorageElement | 2025-10-27T20:12:31Z | 2025-10-27T22:31:55Z |
| ghsa-wq2g-r956-j8cc | pg8000 SQL injection vulnerability via a specially crafted Python list input | 2025-10-27T18:31:13Z | 2025-10-27T23:17:04Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-33126 | 6.5 (v3.1) | Fixes to common vulnerabilities found in IBM Db2 High … |
IBM |
DB2 High Performance Unload |
2025-10-27T23:56:06.271Z | 2025-10-28T14:02:57.632Z |
| cve-2025-12335 | code-projects E-Commerce Website supplier_update.php c… |
code-projects |
E-Commerce Website |
2025-10-27T23:32:05.507Z | 2025-10-28T14:28:38.927Z | |
| cve-2025-12332 | SourceCodester Student Grades Management System admin.… |
SourceCodester |
Student Grades Management System |
2025-10-27T23:22:09.778Z | 2025-10-28T14:42:24.924Z | |
| cve-2025-43024 | 5.1 (v4.0) | HP ThinPro 8.1 SP8 Security Updates |
HP Inc |
ThinPro 8.1 |
2025-10-27T23:11:35.638Z | 2025-10-28T14:57:56.715Z |
| cve-2025-62258 | 7 (v4.0) | CSRF vulnerability in Headless API in Liferay Por… |
Liferay |
Portal |
2025-10-27T22:56:21.041Z | 2025-10-28T14:59:58.126Z |
| cve-2025-12334 | code-projects E-Commerce Website product_add.php cross… |
code-projects |
E-Commerce Website |
2025-10-27T22:32:11.542Z | 2025-10-28T19:50:33.682Z | |
| cve-2025-12333 | code-projects E-Commerce Website supplier_add.php cros… |
code-projects |
E-Commerce Website |
2025-10-27T22:32:08.847Z | 2025-10-28T19:49:34.911Z | |
| cve-2025-62259 | 6.9 (v4.0) | Liferay Portal 7.4.0 through 7.4.3.109, and older… |
Liferay |
Portal |
2025-10-27T22:13:35.880Z | 2025-10-28T19:48:15.967Z |
| cve-2025-12331 | Willow CMS add unrestricted upload |
Willow |
CMS |
2025-10-27T22:02:08.240Z | 2025-10-28T19:47:11.849Z | |
| cve-2025-12330 | Willow CMS Add Post add cross site scripting |
Willow |
CMS |
2025-10-27T22:02:05.611Z | 2025-10-28T19:46:06.033Z | |
| cve-2025-62260 | 7.1 (v4.0) | Liferay Portal 7.4.0 through 7.4.3.99, and Lifera… |
Liferay |
Portal |
2025-10-27T21:44:08.185Z | 2025-10-28T15:01:26.622Z |
| cve-2025-12329 | shawon100 RUET OJ details.php sql injection |
shawon100 |
RUET OJ |
2025-10-27T21:32:07.288Z | 2025-10-28T15:02:27.795Z | |
| cve-2025-12328 | shawon100 RUET OJ contestproblem.php sql injection |
shawon100 |
RUET OJ |
2025-10-27T21:32:05.306Z | 2025-10-28T15:03:29.607Z | |
| cve-2025-62793 | eLabFTW HTML / CSS Injection via Malicious SVG Upload … |
elabftw |
elabftw |
2025-10-27T21:25:45.642Z | 2025-10-28T15:05:40.686Z | |
| cve-2025-62781 | PILOS is missing session regeneration after password change |
THM-Health |
PILOS |
2025-10-27T21:22:06.997Z | 2025-10-28T15:08:38.476Z | |
| cve-2025-62779 | Frappe Learning users were able to add HTML through in… |
frappe |
lms |
2025-10-27T21:19:03.978Z | 2025-10-28T15:17:15.768Z | |
| cve-2025-62778 | Frappe Learning allowed students to access the Quiz F… |
frappe |
lms |
2025-10-27T21:16:06.220Z | 2025-10-28T13:38:07.740Z | |
| cve-2025-62261 | 6.9 (v4.0) | Liferay Portal 7.4.0 through 7.4.3.99, and older … |
Liferay |
Portal |
2025-10-27T21:11:46.893Z | 2025-10-28T14:27:47.375Z |
| cve-2025-12327 | shawon100 RUET OJ description.php sql injection |
shawon100 |
RUET OJ |
2025-10-27T21:02:07.613Z | 2025-10-28T14:28:35.791Z | |
| cve-2025-12326 | shawon100 RUET OJ POST Request process.php sql injection |
shawon100 |
RUET OJ |
2025-10-27T21:02:05.555Z | 2025-10-28T14:28:59.114Z | |
| cve-2025-62784 | InventoryGui allows item duplication in GUIs which use… |
Phoenix616 |
InventoryGui |
2025-10-27T20:59:22.085Z | 2025-10-28T14:32:11.543Z | |
| cve-2025-62783 | InventoryGui affected by item duplication in GUIs whic… |
Phoenix616 |
InventoryGui |
2025-10-27T20:54:36.254Z | 2025-10-28T14:32:27.050Z | |
| cve-2025-62782 | InventoryGUI vulnerable to item duplication via Bundle… |
Phoenix616 |
InventoryGui |
2025-10-27T20:50:07.579Z | 2025-10-28T14:33:18.973Z | |
| cve-2025-62262 | 4.6 (v4.0) | Information exposure through log file vulnerabili… |
Liferay |
Portal |
2025-10-27T20:39:23.416Z | 2025-10-28T14:41:31.296Z |
| cve-2025-62725 | Docker Compose Vulnerable to Path Traversal via OCI Ar… |
docker |
compose |
2025-10-27T20:37:32.340Z | 2025-10-28T14:47:42.196Z | |
| cve-2025-12325 | SourceCodester Best Salon Management System forgot-pas… |
SourceCodester |
Best Salon Management System |
2025-10-27T20:32:12.484Z | 2025-10-28T14:49:25.142Z | |
| cve-2025-12322 | Tenda CH22 NatStaticSetting fromNatStaticSetting buffe… |
Tenda |
CH22 |
2025-10-27T20:32:09.364Z | 2025-10-28T14:50:06.689Z | |
| cve-2025-12316 | code-projects Courier Management System edit-courier.p… |
code-projects |
Courier Management System |
2025-10-27T20:32:05.320Z | 2025-10-28T14:50:43.387Z | |
| cve-2025-62524 | PILOS Exposes PHP version |
THM-Health |
PILOS |
2025-10-27T20:18:42.366Z | 2025-10-27T20:39:26.086Z | |
| cve-2025-62523 | PILOS Misconfigured the Access-Control-Allow-Origin Header |
THM-Health |
PILOS |
2025-10-27T20:10:51.351Z | 2025-10-27T20:38:52.301Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-40049 | N/A | Squashfs: fix uninit-value in squashfs_get_parent |
Linux |
Linux |
2025-10-28T11:48:25.862Z | 2025-10-29T13:19:50.179Z |
| cve-2025-40048 | N/A | uio_hv_generic: Let userspace take care of interrupt mask |
Linux |
Linux |
2025-10-28T11:48:25.220Z | 2025-10-29T13:19:47.795Z |
| cve-2025-40047 | N/A | io_uring/waitid: always prune wait queue entry in io_w… |
Linux |
Linux |
2025-10-28T11:48:24.625Z | 2025-10-28T11:48:24.625Z |
| cve-2025-40046 | N/A | io_uring/zcrx: fix overshooting recv limit |
Linux |
Linux |
2025-10-28T11:48:24.022Z | 2025-10-28T11:48:24.022Z |
| cve-2025-40045 | N/A | ASoC: codecs: wcd937x: set the comp soundwire port correctly |
Linux |
Linux |
2025-10-28T11:48:23.431Z | 2025-10-28T11:48:23.431Z |
| cve-2025-40044 | N/A | fs: udf: fix OOB read in lengthAllocDescs handling |
Linux |
Linux |
2025-10-28T11:48:22.827Z | 2025-10-29T13:19:45.879Z |
| cve-2025-40043 | N/A | net: nfc: nci: Add parameter validation for packet data |
Linux |
Linux |
2025-10-28T11:48:22.230Z | 2025-10-28T11:48:22.230Z |
| cve-2025-40042 | N/A | tracing: Fix race condition in kprobe initialization c… |
Linux |
Linux |
2025-10-28T11:48:21.638Z | 2025-10-29T13:19:43.590Z |
| cve-2025-40041 | N/A | LoongArch: BPF: Sign-extend struct ops return values p… |
Linux |
Linux |
2025-10-28T11:48:21.021Z | 2025-10-28T11:48:21.021Z |
| cve-2025-40040 | N/A | mm/ksm: fix flag-dropping behavior in ksm_madvise |
Linux |
Linux |
2025-10-28T11:48:20.395Z | 2025-10-29T13:19:40.112Z |
| cve-2025-40039 | N/A | ksmbd: Fix race condition in RPC handle list access |
Linux |
Linux |
2025-10-28T11:48:19.781Z | 2025-10-28T11:48:19.781Z |
| cve-2025-40038 | N/A | KVM: SVM: Skip fastpath emulation on VM-Exit if next R… |
Linux |
Linux |
2025-10-28T11:48:18.889Z | 2025-10-28T11:48:18.889Z |
| cve-2025-40037 | N/A | fbdev: simplefb: Fix use after free in simplefb_detach… |
Linux |
Linux |
2025-10-28T11:48:18.274Z | 2025-10-28T11:48:18.274Z |
| cve-2025-40036 | N/A | misc: fastrpc: fix possible map leak in fastrpc_put_args |
Linux |
Linux |
2025-10-28T11:48:17.630Z | 2025-10-28T11:48:17.630Z |
| cve-2025-40035 | N/A | Input: uinput - zero-initialize uinput_ff_upload_compa… |
Linux |
Linux |
2025-10-28T11:48:17.030Z | 2025-10-29T13:19:36.823Z |
| cve-2025-40034 | N/A | PCI/AER: Avoid NULL pointer dereference in aer_ratelimit() |
Linux |
Linux |
2025-10-28T11:48:16.335Z | 2025-10-28T11:48:16.335Z |
| cve-2025-40033 | N/A | remoteproc: pru: Fix potential NULL pointer dereferenc… |
Linux |
Linux |
2025-10-28T11:48:15.624Z | 2025-10-28T11:48:15.624Z |
| cve-2025-40032 | N/A | PCI: endpoint: pci-epf-test: Add NULL check for DMA ch… |
Linux |
Linux |
2025-10-28T11:48:14.876Z | 2025-10-28T11:48:14.876Z |
| cve-2025-40031 | N/A | tee: fix register_shm_helper() |
Linux |
Linux |
2025-10-28T11:48:13.644Z | 2025-10-28T11:48:13.644Z |
| cve-2025-40030 | N/A | pinctrl: check the return value of pinmux_ops::get_fun… |
Linux |
Linux |
2025-10-28T11:48:01.608Z | 2025-10-29T13:19:34.573Z |
| cve-2025-40029 | N/A | bus: fsl-mc: Check return value of platform_get_resource() |
Linux |
Linux |
2025-10-28T11:48:00.679Z | 2025-10-29T13:19:32.136Z |
| cve-2025-55758 | N/A | Extension - jdownloads.com - CSRF vectors in jDownload… |
jdownloads.com |
JDownloads component for Joomla |
2025-10-28T10:02:54.016Z | 2025-10-28T20:00:45.402Z |
| cve-2025-41090 | 7.6 (v4.0) | Improper Access Control in CCN-CERT microCLAUDIA |
CCN-CERT |
microCLAUDIA |
2025-10-28T09:17:08.128Z | 2025-10-28T15:35:02.579Z |
| cve-2025-40028 | N/A | binder: fix double-free in dbitmap |
Linux |
Linux |
2025-10-28T09:32:35.681Z | 2025-10-28T09:32:35.681Z |
| cve-2025-40027 | N/A | net/9p: fix double req put in p9_fd_cancelled |
Linux |
Linux |
2025-10-28T09:32:34.162Z | 2025-10-29T13:19:29.546Z |
| cve-2025-40026 | N/A | KVM: x86: Don't (re)check L1 intercepts when completin… |
Linux |
Linux |
2025-10-28T09:32:33.075Z | 2025-10-29T13:19:27.308Z |
| cve-2025-40025 | N/A | f2fs: fix to do sanity check on node footer for non in… |
Linux |
Linux |
2025-10-28T09:32:31.806Z | 2025-10-28T09:32:31.806Z |
| cve-2025-10151 | 7.2 (v4.0) | Malicious TCP/IP thread locking leads into diverse mal… |
Softing Industrial Automation GmbH |
smartLink HW-PN |
2025-10-28T07:25:39.639Z | 2025-10-28T13:27:14.343Z |
| cve-2025-10150 | 8.7 (v4.0) | Webserver crash caused by scanning on TCP port 80 |
Softing Industrial Automation GmbH |
smartLink HW-PN |
2025-10-28T07:24:38.296Z | 2025-10-28T13:28:01.850Z |
| cve-2025-12378 | code-projects Simple Food Ordering System addproduct.p… |
code-projects |
Simple Food Ordering System |
2025-10-28T05:32:05.752Z | 2025-10-28T13:30:09.013Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188072 | Malicious code in miranda-gacrux-stratigraphy-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188071 | Malicious code in miranda-fomalhaut-apollo-cz-conventional-changelog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188070 | Malicious code in miranda-exec-meissa-terser (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188069 | Malicious code in miranda-elektra-quark-ophiuchus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188068 | Malicious code in miranda-eigenstate-markdownlint-cosmogenic (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188067 | Malicious code in miranda-despina-sqlite-ultra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188066 | Malicious code in miranda-cosmos-resonance-loopback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188065 | Malicious code in miranda-borealis-nova-dotenv-safe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188064 | Malicious code in miranda-biotechnology-xanadu-halley (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188063 | Malicious code in mira-wolf-prompts-got (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188062 | Malicious code in mira-pipe-stratigraphy-semantic-release (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188061 | Malicious code in mira-pino-impulse-adonis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188060 | Malicious code in mira-pegasus-helios-command (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188059 | Malicious code in mira-halley-halley-publish (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188058 | Malicious code in mira-fusion-yildun-css-loader (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188057 | Malicious code in mira-flare-xanadu-pavo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188056 | Malicious code in mira-apex-lint-bellatrix (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188055 | Malicious code in minify-report-compress-compress-process (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188054 | Malicious code in minify-permission-xi-route-export (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188053 | Malicious code in minify-mu-catch-authenticate-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188052 | Malicious code in minify-kappa-proxy-kappa-tau (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188051 | Malicious code in mini-css-extract-plugin-sass-loader-rigel-koa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188050 | Malicious code in mini-css-extract-plugin-radiant-axios-sirius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188049 | Malicious code in mini-css-extract-plugin-paleoecology-redis-release-it (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188048 | Malicious code in mini-css-extract-plugin-nova-titan-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188047 | Malicious code in mini-css-extract-plugin-meissa-chai-ganymede (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188046 | Malicious code in mineralogy-oauth-eslint-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188045 | Malicious code in mineralogy-less-loader-dagda-global (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188044 | Malicious code in middleware-webpack-resolvers-capella (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188043 | Malicious code in middleware-nightwatch-virgo-subscription (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:2667 | Red Hat Security Advisory: .NET 9.0 security, bug fix, and enhancement update | 2025-03-11T19:45:19+00:00 | 2025-11-11T10:12:53+00:00 |
| rhsa-2025:2670 | Red Hat Security Advisory: .NET 8.0 security, bug fix, and enhancement update | 2025-03-11T19:43:49+00:00 | 2025-11-11T10:12:56+00:00 |
| rhsa-2025:2669 | Red Hat Security Advisory: .NET 8.0 security, bug fix, and enhancement update | 2025-03-11T19:40:09+00:00 | 2025-11-11T10:12:54+00:00 |
| rhsa-2025:2668 | Red Hat Security Advisory: .NET 9.0 security, bug fix, and enhancement update | 2025-03-11T19:39:09+00:00 | 2025-11-11T10:12:56+00:00 |
| rhsa-2025:2666 | Red Hat Security Advisory: .NET 8.0 security, bug fix, and enhancement update | 2025-03-11T19:34:51+00:00 | 2025-11-11T10:12:52+00:00 |
| rhsa-2025:2664 | Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update | 2025-03-11T15:12:47+00:00 | 2025-11-13T17:26:49+00:00 |
| rhsa-2025:2663 | Red Hat Security Advisory: Red Hat Data Grid 8.5.3 security update | 2025-03-11T14:10:03+00:00 | 2025-11-11T16:11:20+00:00 |
| rhsa-2025:2660 | Red Hat Security Advisory: libxml2 security update | 2025-03-11T13:24:23+00:00 | 2025-11-06T22:35:39+00:00 |
| rhsa-2025:2658 | Red Hat Security Advisory: OpenShift Virtualization 4.15.9 Images | 2025-03-11T11:41:12+00:00 | 2025-11-14T11:39:17+00:00 |
| rhsa-2025:2654 | Red Hat Security Advisory: libxml2 security update | 2025-03-11T10:13:12+00:00 | 2025-11-06T22:35:38+00:00 |
| rhsa-2025:2652 | Red Hat Security Advisory: RHODF-4.18-RHEL-9 enhancement, bug fix and security update | 2025-03-11T09:16:21+00:00 | 2025-11-15T08:45:06+00:00 |
| rhsa-2025:2646 | Red Hat Security Advisory: kernel security update | 2025-03-11T08:58:02+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2627 | Red Hat Security Advisory: kernel security update | 2025-03-11T06:44:32+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2449 | Red Hat Security Advisory: OpenShift Container Platform 4.18.4 security update | 2025-03-11T02:08:00+00:00 | 2025-11-15T00:16:30+00:00 |
| rhsa-2025:2612 | Red Hat Security Advisory: python-jinja2 security update | 2025-03-11T01:02:56+00:00 | 2025-11-06T22:35:37+00:00 |
| rhsa-2025:2600 | Red Hat Security Advisory: rsync security update | 2025-03-11T00:23:51+00:00 | 2025-11-06T22:02:30+00:00 |
| rhsa-2025:2615 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2025-03-11T00:12:51+00:00 | 2025-11-08T07:17:31+00:00 |
| rhsa-2025:2588 | Red Hat Security Advisory: RHOAI 2.18.0 - Red Hat OpenShift AI | 2025-03-10T23:41:31+00:00 | 2025-11-15T08:45:06+00:00 |
| rhsa-2025:2550 | Red Hat Security Advisory: pcs security update | 2025-03-10T18:47:20+00:00 | 2025-11-06T22:35:37+00:00 |
| rhsa-2025:2528 | Red Hat Security Advisory: kernel security update | 2025-03-10T16:04:35+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2526 | Red Hat Security Advisory: ACS 4.5 enhancement update | 2025-03-10T15:51:20+00:00 | 2025-11-15T20:34:43+00:00 |
| rhsa-2025:2525 | Red Hat Security Advisory: kernel security update | 2025-03-10T15:46:39+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2524 | Red Hat Security Advisory: kernel-rt security update | 2025-03-10T15:23:19+00:00 | 2025-11-08T07:13:32+00:00 |
| rhsa-2025:2488 | Red Hat Security Advisory: kernel security update | 2025-03-10T14:49:54+00:00 | 2025-11-08T07:13:29+00:00 |
| rhsa-2025:2518 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update | 2025-03-10T14:46:24+00:00 | 2025-11-11T16:11:01+00:00 |
| rhsa-2025:2517 | Red Hat Security Advisory: kernel security update | 2025-03-10T14:35:49+00:00 | 2025-11-08T07:13:31+00:00 |
| rhsa-2025:2513 | Red Hat Security Advisory: libxml2 security update | 2025-03-10T14:21:34+00:00 | 2025-11-06T22:35:35+00:00 |
| rhsa-2025:2514 | Red Hat Security Advisory: kernel security update | 2025-03-10T14:15:54+00:00 | 2025-11-08T07:13:31+00:00 |
| rhsa-2025:2512 | Red Hat Security Advisory: kernel-rt security update | 2025-03-10T14:00:33+00:00 | 2025-11-08T07:13:30+00:00 |
| rhsa-2025:2510 | Red Hat Security Advisory: kernel-rt security update | 2025-03-10T13:19:09+00:00 | 2025-11-08T07:13:30+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-50143 | udf: fix uninit-value use in udf_get_fileshortad | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50142 | xfrm: validate new SA's prefixlen using SA family when sel.family is unset | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50141 | ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50140 | sched/core: Disable page allocation in task_tick_mm_cid() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50139 | KVM: arm64: Fix shift-out-of-bounds bug | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50138 | bpf: Use raw_spinlock_t in ringbuf | 2024-11-02T00:00:00.000Z | 2025-09-03T20:04:42.000Z |
| msrc_cve-2024-50136 | net/mlx5: Unregister notifier on eswitch init failure | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50135 | nvme-pci: fix race condition between reset and nvme_dev_disable() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50134 | drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50133 | LoongArch: Don't crash in stack_top() for tasks without vDSO | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50131 | tracing: Consider the NULL character when validating the event length | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50130 | netfilter: bpf: must hold reference on net namespace | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50128 | net: wwan: fix global oob in wwan_rtnl_policy | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50127 | net: sched: fix use-after-free in taprio_change() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50126 | net: sched: use RCU read-side critical section in taprio_dump() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50125 | Bluetooth: SCO: Fix UAF on sco_sock_timeout | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50124 | Bluetooth: ISO: Fix UAF on iso_sock_timeout | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50121 | nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50120 | smb: client: Handle kstrdup failures for passwords | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50117 | drm/amd: Guard against bad data for ATIF ACPI method | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50116 | nilfs2: fix kernel bug due to missing clearing of buffer delay flag | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50115 | KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50112 | x86/lam: Disable ADDRESS_MASKING in most cases | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50111 | LoongArch: Enable IRQ if do_ale() triggered in irq-enabled context | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50110 | xfrm: fix one more kernel-infoleak in algo dumping | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50108 | drm/amd/display: Disable PSR-SU on Parade 08-01 TCON too | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50103 | ASoC: qcom: Fix NULL Dereference in asoc_qcom_lpass_cpu_platform_probe() | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50101 | iommu/vt-d: Fix incorrect pci_for_each_dma_alias() for non-PCI devices | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50099 | arm64: probes: Remove broken LDR (literal) uprobe support | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| msrc_cve-2024-50098 | scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down | 2024-11-02T00:00:00.000Z | 2025-01-29T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2011-000062 | Aipo vulnerable to cross-site request forgery | 2011-08-16T16:41+09:00 | 2011-08-16T16:41+09:00 |
| jvndb-2011-000061 | Internet Explorer window display vulnerability | 2011-08-12T14:06+09:00 | 2011-08-12T14:06+09:00 |
| jvndb-2011-000060 | Windows URL Protocol Handler may insecurely load executable files | 2011-08-10T17:17+09:00 | 2011-08-10T17:17+09:00 |
| jvndb-2011-001928 | JP1/Performance Management - Web Console Cross-Site Scripting Vulnerability | 2011-08-09T10:11+09:00 | 2011-08-09T10:11+09:00 |
| jvndb-2011-001927 | Arbitrary Code Execution Vulnerability in HiRDB Control Manager | 2011-08-09T10:10+09:00 | 2011-08-09T10:10+09:00 |
| jvndb-2011-000053 | Android vulnerability where an incorrect SSL certificate is displayed | 2011-07-29T14:26+09:00 | 2014-05-19T17:19+09:00 |
| jvndb-2011-000059 | Mozilla Firefox vulnerable to cross-site scripting | 2011-07-28T16:31+09:00 | 2011-07-28T16:31+09:00 |
| jvndb-2011-000058 | Mozilla Firefox vulnerable to cross-site scripting | 2011-07-28T16:29+09:00 | 2011-07-28T16:29+09:00 |
| jvndb-2011-000057 | Mozilla Firefox vulnerable to denial-of-service (DoS) | 2011-07-28T16:27+09:00 | 2011-07-28T16:27+09:00 |
| jvndb-2011-000055 | Mozilla Firefox vulnerability in processing content-length header | 2011-07-28T16:24+09:00 | 2011-07-28T16:24+09:00 |
| jvndb-2011-000056 | Plone vulnerable to cross-site scripting | 2011-07-27T16:17+09:00 | 2011-07-27T16:17+09:00 |
| jvndb-2009-002069 | Oracle iPlanet Web Server information disclosure vulnerability | 2011-07-25T18:06+09:00 | 2011-07-25T18:06+09:00 |
| jvndb-2011-000051 | ASP.NET vulnerable to cross-site scripting | 2011-07-15T16:32+09:00 | 2011-07-15T16:32+09:00 |
| jvndb-2011-000054 | Google Search Appliance vulnerable to cross-site scripting | 2011-07-15T16:27+09:00 | 2011-07-15T16:27+09:00 |
| jvndb-2011-000052 | Internet Explorer vulnerable to cross-site scripting | 2011-07-08T18:29+09:00 | 2011-07-08T18:29+09:00 |
| jvndb-2011-000050 | XnView may insecurely load executable files | 2011-07-05T16:56+09:00 | 2011-07-05T16:56+09:00 |
| jvndb-2011-000049 | Opera vulnerable to denial-of-service (DoS) | 2011-07-05T16:54+09:00 | 2011-07-05T16:54+09:00 |
| jvndb-2011-000048 | ALZip vulnerable to buffer overflow | 2011-06-29T18:20+09:00 | 2011-06-29T18:20+09:00 |
| jvndb-2010-002807 | Accela BizSearch Standard Search Page Cross-Site Scripting Vulnerability | 2011-06-29T17:57+09:00 | 2011-06-29T17:57+09:00 |
| jvndb-2011-001632 | Arbitrary Data Insertion Vulnerability in Hitachi Web Server SSL/TLS Protocol | 2011-06-29T17:55+09:00 | 2016-09-08T17:05+09:00 |
| jvndb-2010-002809 | Accela BizSearch Standard Search Page Cross-Site Scripting Vulnerability | 2011-06-29T17:55+09:00 | 2011-06-29T17:55+09:00 |
| jvndb-2010-002808 | Accela BizSearch Standard Search Page Cross-Site Scripting Vulnerability | 2011-06-29T17:55+09:00 | 2011-06-29T17:55+09:00 |
| jvndb-2011-001633 | Header Customization by Hitachi Web Server RequetHeader Directive Could Allow Attacker to Access Data Deleted from Memory | 2011-06-29T17:54+09:00 | 2014-05-21T18:21+09:00 |
| jvndb-2011-000047 | Cybozu Office vulnerable to cross-site scripting | 2011-06-24T19:23+09:00 | 2011-06-24T19:23+09:00 |
| jvndb-2011-000046 | Multiple Cybozu products vulnerable to cross-site scripting | 2011-06-24T19:21+09:00 | 2011-06-24T19:21+09:00 |
| jvndb-2011-000045 | Multiple Cybozu products vulnerable to cross-site scripting | 2011-06-24T19:18+09:00 | 2011-06-24T19:18+09:00 |
| jvndb-2011-000044 | Cybozu Garoon vulnerable to cross-site scripting | 2011-06-24T19:15+09:00 | 2011-06-24T19:15+09:00 |
| jvndb-2011-000042 | WeblyGo vulnerable to cross-site scripting | 2011-06-20T15:37+09:00 | 2011-06-20T15:37+09:00 |
| jvndb-2011-000043 | Ichitaro series vulnerable to arbitrary code execution | 2011-06-16T19:04+09:00 | 2011-06-16T19:04+09:00 |
| jvndb-2011-000041 | Microsoft MSXML vulnerability in HTTP request processing | 2011-06-16T12:28+09:00 | 2011-06-16T12:28+09:00 |
| ID | Description | Updated |
|---|