Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-5fq2-fqg2-j567 | A vulnerability was determined in code-projects Simple E-Banking System 1.0. This affects an unknow… | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-57jj-jgp3-2qxc | A private key disclosure vulnerability exists in ZTE's ZXMP M721 product. A low-privileged user can… | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-57c7-8jj8-rrhc | A security vulnerability has been detected in CLTPHP 3.0. The affected element is an unknown functi… | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-4jqq-4xxm-j495 | A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects … | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-4fp2-2m2w-788r | A security flaw has been discovered in code-projects Automated Voting System 1.0. The affected elem… | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-4fgm-hqgm-fg87 | A vulnerability was found in code-projects Online Event Judging System 1.0. Affected is an unknown … | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-2864-c5gm-f383 | A vulnerability has been found in OpenWGA 7.11.12 Build 737. This impacts an unknown function of th… | 2025-10-27T09:30:16Z | 2025-10-27T09:30:16Z |
| ghsa-p3v9-cmpm-vc58 | A vulnerability was detected in Tenda CH22 1.0.0.1. Affected by this vulnerability is the function … | 2025-10-27T09:30:15Z | 2025-10-27T09:30:15Z |
| ghsa-mrmh-4ppp-pg8c | A vulnerability was found in Tenda CH22 1.0.0.1. This vulnerability affects the function fromSetIpB… | 2025-10-27T09:30:15Z | 2025-10-27T09:30:15Z |
| ghsa-mphm-qj4m-rgxx | HYDRA X, MIP 2 and FEDRA 2 of MPDV Mikrolab GmbH suffer from an unauthenticated local file disclosu… | 2025-10-27T09:30:15Z | 2025-11-03T18:31:47Z |
| ghsa-c9mh-4wvf-6rqw | A vulnerability has been found in Tenda CH22 1.0.0.1. This affects the function fromSafeMacFilter o… | 2025-10-27T09:30:15Z | 2025-10-27T09:30:15Z |
| ghsa-7c4j-cf3j-qjcm | A flaw has been found in Tenda CH22 1.0.0.1. Affected by this issue is the function fromSafeUrlFilt… | 2025-10-27T09:30:15Z | 2025-10-27T09:30:15Z |
| ghsa-72q5-998j-vg7r | A vulnerability was determined in Tenda CH22 1.0.0.1. This issue affects the function fromDhcpListC… | 2025-10-27T09:30:15Z | 2025-10-27T09:30:15Z |
| ghsa-xxxg-8p58-2qqv | The IDonate WordPress plugin before 2.1.13 does not have authorisation and CSRF when deleting user… | 2025-10-27T06:30:28Z | 2025-10-27T18:31:09Z |
| ghsa-q57j-wgw3-jw48 | A flaw has been found in projectworlds Online Shopping System 1.0. Impacted is an unknown function … | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-jwpw-v44x-63pc | A vulnerability has been found in Tenda AC6 15.03.06.50. This issue affects some unknown processing… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-jvgr-7mgj-9rx2 | A security vulnerability has been detected in Bdtask Flight Booking Software up to 3.1. Affected by… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-jgm2-j5pr-pph9 | A vulnerability was detected in Bdtask Flight Booking Software up to 3.1. This affects an unknown p… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-hpjm-36pf-pv8v | A flaw has been found in Iqbolshoh php-business-website up to 10677743a8dfc281f85291a27cf63a0bce043… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-h3mf-62g7-rhfj | A vulnerability was determined in projectworlds Gate Pass Management System 1.0. The affected eleme… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-c2x5-h372-v5w7 | A vulnerability was detected in Tenda O3 1.0.0.10(2478). This issue affects the function SetValue/G… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-9hwh-38g7-jrxm | A vulnerability was identified in projectworlds Expense Management System 1.0. The impacted element… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-63jh-v6wx-r73j | A weakness has been identified in projectworlds Expense Management System 1.0. This impacts an unkn… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-5wvf-mw3c-73fm | A security vulnerability has been detected in projectworlds Expense Management System 1.0. Affected… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-2x59-2w3w-3ccw | A security flaw has been discovered in projectworlds Expense Management System 1.0. This affects an… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-2w2q-r6q7-86fg | A vulnerability was found in SourceCodester Best House Rental Management System 1.0. Impacted is th… | 2025-10-27T06:30:28Z | 2025-10-27T06:30:28Z |
| ghsa-fxm8-3753-c2p6 | A security vulnerability has been detected in Tenda O3 1.0.0.10(2478). This vulnerability affects t… | 2025-10-27T06:30:27Z | 2025-10-27T06:30:27Z |
| ghsa-26wj-qjvf-gf89 | A weakness has been identified in Tenda O3 1.0.0.10(2478). This affects the function SetValue/GetVa… | 2025-10-27T06:30:27Z | 2025-10-27T06:30:27Z |
| ghsa-5rcg-7jx4-f3xr | A security flaw has been discovered in Tenda O3 1.0.0.10(2478). Affected by this issue is the funct… | 2025-10-27T06:30:26Z | 2025-10-27T06:30:26Z |
| ghsa-wh86-wjvr-gp4g | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:40Z | 2025-10-27T03:30:40Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-12247 | Hasleo Backup Suite HasleoImageMountService/HasleoBack… |
Hasleo |
Backup Suite |
2025-10-27T08:02:06.216Z | 2025-10-27T17:17:57.573Z | |
| cve-2025-11682 | 7.1 (v4.0) | Stored Cross-Site Scripting in Perx Customer Engagemen… |
Perx Technologies |
Customer Engagement & Loyalty Platform |
2025-10-27T07:39:54.263Z | 2025-10-27T17:25:18.430Z |
| cve-2025-12246 | chatwoot Admin IframeLoader.vue cross site scripting |
n/a |
chatwoot |
2025-10-27T07:32:09.692Z | 2025-10-27T17:55:14.601Z | |
| cve-2025-12245 | chatwoot Widget IFrameHelper.js initPostMessageCommuni… |
n/a |
chatwoot |
2025-10-27T07:32:07.544Z | 2025-10-27T18:25:56.142Z | |
| cve-2025-12244 | code-projects Simple E-Banking System register.php cro… |
code-projects |
Simple E-Banking System |
2025-10-27T07:32:05.103Z | 2025-10-27T18:29:13.298Z | |
| cve-2025-12243 | code-projects Client Details System GET Parameter welc… |
code-projects |
Client Details System |
2025-10-27T07:02:16.794Z | 2025-10-27T18:31:08.218Z | |
| cve-2025-12242 | CodeAstro Gym Management System check-attendance.php s… |
CodeAstro |
Gym Management System |
2025-10-27T07:02:14.435Z | 2025-10-27T18:01:44.703Z | |
| cve-2025-12241 | TOTOLINK A3300R POST Parameter cstecgi.cgi setLanguage… |
TOTOLINK |
A3300R |
2025-10-27T07:02:10.780Z | 2025-10-27T18:03:42.756Z | |
| cve-2025-12055 | N/A | Unauthenticated Local File Disclosure in MPDV Mikrolab… |
MPDV Mikrolab GmbH |
MIP 2 |
2025-10-27T06:36:36.526Z | 2025-11-03T17:32:04.323Z |
| cve-2025-12240 | TOTOLINK A3300R cstecgi.cgi setDmzCfg buffer overflow |
TOTOLINK |
A3300R |
2025-10-27T06:32:14.914Z | 2025-10-27T20:13:13.431Z | |
| cve-2025-12239 | TOTOLINK A3300R cstecgi.cgi setDdnsCfg buffer overflow |
TOTOLINK |
A3300R |
2025-10-27T06:32:10.266Z | 2025-10-27T20:12:41.451Z | |
| cve-2025-12238 | code-projects Automated Voting System user.php sql injection |
code-projects |
Automated Voting System |
2025-10-27T06:32:06.192Z | 2025-10-27T13:21:46.145Z | |
| cve-2025-12237 | projectworlds Advanced Library Management System index… |
projectworlds |
Advanced Library Management System |
2025-10-27T06:22:49.972Z | 2025-10-27T13:22:39.279Z | |
| cve-2025-12236 | Tenda CH22 DhcpListClient fromDhcpListClient buffer overflow |
Tenda |
CH22 |
2025-10-27T06:22:47.662Z | 2025-10-27T13:23:52.661Z | |
| cve-2025-12235 | Tenda CH22 SetIpBind fromSetIpBind buffer overflow |
Tenda |
CH22 |
2025-10-27T06:22:44.013Z | 2025-10-27T13:25:16.489Z | |
| cve-2025-12234 | Tenda CH22 SafeMacFilter fromSafeMacFilter buffer overflow |
Tenda |
CH22 |
2025-10-27T06:22:21.764Z | 2025-10-27T13:34:53.278Z | |
| cve-2025-12233 | Tenda CH22 SafeUrlFilter fromSafeUrlFilter buffer overflow |
Tenda |
CH22 |
2025-10-27T06:22:17.626Z | 2025-10-27T14:42:43.162Z | |
| cve-2025-12232 | Tenda CH22 SafeClientFilter fromSafeClientFilter buffe… |
Tenda |
CH22 |
2025-10-27T06:22:13.528Z | 2025-10-27T14:51:20.097Z | |
| cve-2025-12231 | projectworlds Expense Management System Expense Catego… |
projectworlds |
Expense Management System |
2025-10-27T06:02:08.498Z | 2025-10-27T15:13:52.169Z | |
| cve-2025-12230 | projectworlds Expense Management System Currency creat… |
projectworlds |
Expense Management System |
2025-10-27T06:02:06.014Z | 2025-10-27T15:15:26.294Z | |
| cve-2025-11154 | N/A | IDonate < 2.1.13 - Unauthenticated User Deletion |
Unknown |
IDonate |
2025-10-27T06:00:01.632Z | 2025-10-27T15:11:51.813Z |
| cve-2025-12229 | projectworlds Expense Management System Roles Page cre… |
projectworlds |
Expense Management System |
2025-10-27T05:32:09.853Z | 2025-10-27T20:11:46.848Z | |
| cve-2025-12228 | projectworlds Expense Management System Users Page cre… |
projectworlds |
Expense Management System |
2025-10-27T05:32:07.551Z | 2025-10-27T20:10:59.785Z | |
| cve-2025-12227 | projectworlds Gate Pass Management System add-pass.php… |
projectworlds |
Gate Pass Management System |
2025-10-27T05:32:05.176Z | 2025-10-27T20:09:56.142Z | |
| cve-2025-12226 | SourceCodester Best House Rental Management System adm… |
SourceCodester |
Best House Rental Management System |
2025-10-27T05:02:10.120Z | 2025-10-27T20:09:00.735Z | |
| cve-2025-12225 | Tenda AC6 HTTP Request WifiGuestSet stack-based overflow |
Tenda |
AC6 |
2025-10-27T05:02:06.747Z | 2025-10-27T20:06:53.554Z | |
| cve-2025-12224 | Iqbolshoh php-business-website contact.php cross site … |
Iqbolshoh |
php-business-website |
2025-10-27T04:32:10.383Z | 2025-10-27T20:06:17.208Z | |
| cve-2025-12223 | Bdtask Flight Booking Software Package Information pac… |
Bdtask |
Flight Booking Software |
2025-10-27T04:32:07.968Z | 2025-10-27T20:05:20.283Z | |
| cve-2025-12222 | Bdtask Flight Booking Software Deposit deposit unrestr… |
Bdtask |
Flight Booking Software |
2025-10-27T04:32:05.653Z | 2025-10-27T20:04:43.065Z | |
| cve-2025-12215 | projectworlds Online Shopping System login_submit.php … |
projectworlds |
Online Shopping System |
2025-10-27T04:02:12.489Z | 2025-10-27T20:03:23.987Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-34133 | 7 (v4.0) | Wimi Teamwork < v7.38.17 CSRF |
Cloud Solutions SAS |
Wimi Teamwork |
2025-10-27T15:13:06.704Z | 2025-10-27T15:32:02.819Z |
| cve-2025-12294 | SourceCodester Point of Sales delete_category.php sql … |
SourceCodester |
Point of Sales |
2025-10-27T16:02:10.885Z | 2025-10-27T20:31:41.606Z | |
| cve-2025-12293 | SourceCodester Point of Sales category.php sql injection |
SourceCodester |
Point of Sales |
2025-10-27T16:02:07.688Z | 2025-10-27T20:31:16.208Z | |
| cve-2025-12292 | SourceCodester Point of Sales index.php sql injection |
SourceCodester |
Point of Sales |
2025-10-27T15:32:09.216Z | 2025-10-30T14:16:59.817Z | |
| cve-2025-12291 | ashymuzuro Full-Ecommece-Website/Muzuro Ecommerce Syst… |
ashymuzuro |
Full-Ecommece-Website |
2025-10-27T15:32:05.824Z | 2025-10-30T14:16:42.162Z | |
| cve-2025-10023 | 6.2 (v3.1) | A user with elevated privileges can inject XSS in the … |
Centreon |
Infra Monitoring |
2025-10-27T15:07:21.621Z | 2025-10-30T13:48:16.904Z |
| cve-2023-49440 | N/A | AhnLab EPP 1.0.15 is vulnerable to SQL Injection … |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-29T13:41:43.427Z |
| cve-2023-37749 | N/A | Incorrect access control in the REST API endpoint… |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-27T19:50:47.551Z |
| cve-2025-61482 | N/A | Improper handling of OTP/TOTP/HOTP values in NetK… |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-27T17:36:03.062Z |
| cve-2025-52268 | N/A | StarCharge Artemis AC Charger 7-22 kW v1.0.4 was … |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-27T19:46:32.511Z |
| cve-2025-52264 | N/A | StarCharge Artemis AC Charger 7-22 kW v1.0.4 was … |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-30T14:14:22.547Z |
| cve-2025-36121 | 5.4 (v3.1) | HTML Injection Vulnerability in a Specific URL Endpoin… |
IBM |
OpenPages |
2025-10-27T14:56:07.466Z | 2025-10-27T18:51:26.399Z |
| cve-2025-34292 | 9.4 (v4.0) | BeWelcome/Rox PHP Object Injection RCE |
BeWelcome |
Rox |
2025-10-27T14:36:52.888Z | 2025-10-27T21:09:42.910Z |
| cve-2025-26862 | 0 (v4.0) | PingFederate unexpected browser flow initiation in red… |
Ping Identity |
PingFederate |
2025-10-27T14:39:41.284Z | 2025-10-27T14:48:11.544Z |
| cve-2025-12351 | 6.8 (v3.1) | Inadequate access control measure allows unauthorized … |
Honeywell |
S35 3M/5M/8M/Pinhole/Kit Camera |
2025-10-27T15:03:57.602Z | 2025-10-27T16:04:11.466Z |
| cve-2025-12290 | Sui Shang Information Technology Suishang Enterprise-L… |
Sui Shang Information Technology |
Suishang Enterprise-Level B2B2C Multi-User Mall System |
2025-10-27T15:02:08.700Z | 2025-10-27T15:55:50.999Z | |
| cve-2025-12289 | Sui Shang Information Technology Suishang Enterprise-L… |
Sui Shang Information Technology |
Suishang Enterprise-Level B2B2C Multi-User Mall System |
2025-10-27T15:02:05.980Z | 2025-10-27T15:55:56.418Z | |
| cve-2025-12288 | Bdtask Pharmacy Management System User Profile edit_us… |
Bdtask |
Pharmacy Management System |
2025-10-27T14:32:09.211Z | 2025-10-30T14:16:30.330Z | |
| cve-2025-12287 | Bdtask Wholesale Inventory Control and Inventory Manag… |
Bdtask |
Wholesale Inventory Control and Inventory Management System |
2025-10-27T14:32:06.663Z | 2025-10-27T14:32:06.663Z | |
| cve-2025-9164 | 8.8 (v4.0) | Multiple DLL Search Order Hijacking Vulnerabilities in… |
Docker |
Docker Desktop |
2025-10-27T13:53:40.216Z | 2025-10-28T03:56:02.643Z |
| cve-2025-61481 | N/A | An issue in MikroTik RouterOS v.7.14.2 and SwOS v… |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-30T17:24:08.770Z |
| cve-2025-60291 | N/A | An issue was discovered in eTimeTrackLite Web thr… |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-27T15:57:06.701Z |
| cve-2025-52263 | N/A | An issue in the Web Configuration module of Start… |
n/a |
n/a |
2025-10-27T00:00:00.000Z | 2025-10-27T15:56:53.683Z |
| cve-2025-50055 | N/A | Cross-site scripting (XSS) vulnerability in the S… |
OpenVPN |
Access Server |
2025-10-27T13:39:43.652Z | 2025-10-30T18:23:58.634Z |
| cve-2025-12286 | VeePN AVService avservice.exe unquoted search path |
n/a |
VeePN |
2025-10-27T14:02:08.168Z | 2025-10-27T14:02:08.168Z | |
| cve-2025-12283 | code-projects Client Details System authorization |
code-projects |
Client Details System |
2025-10-27T14:02:05.718Z | 2025-10-27T14:02:05.718Z | |
| cve-2025-12282 | code-projects Client Details System manage-users.php c… |
code-projects |
Client Details System |
2025-10-27T13:32:11.414Z | 2025-10-27T13:32:11.414Z | |
| cve-2025-12281 | code-projects Client Details System clientview.php cro… |
code-projects |
Client Details System |
2025-10-27T13:32:08.483Z | 2025-10-27T14:21:09.648Z | |
| cve-2025-12280 | code-projects Client Details System update-clients.php… |
code-projects |
Client Details System |
2025-10-27T13:32:05.925Z | 2025-10-27T14:25:29.509Z | |
| cve-2025-41384 | 5.1 (v4.0) | Reflected Cross-Site Scripting (XSS) in SuiteCRM |
SuiteCRM |
SuiteCRM |
2025-10-27T12:53:51.383Z | 2025-10-27T15:08:15.360Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-187922 | Malicious code in markdown-cors-janus-dotenv-parse-variables (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187921 | Malicious code in mantle-private-mineralogy-morgan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187920 | Malicious code in mantle-mini-css-extract-plugin-singularitarianism-areology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187919 | Malicious code in mantle-galaxy-vuetify-pm2 (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187918 | Malicious code in mantle-asteroid-charon-quasar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187917 | Malicious code in mantle-achernar-kinetic-whitedwarf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187916 | Malicious code in magnetosphere-quito-isostasy-despina (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187915 | Malicious code in magnetosphere-procyon-neutronstar-cli (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187914 | Malicious code in magnetosphere-hydra-aurora-hyperion (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187913 | Malicious code in magnetosphere-exec-hyperion-spinner (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187912 | Malicious code in magnetar-thermosphere-nconf-quantum (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187911 | Malicious code in magnetar-palynology-uranology-blackhole (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187910 | Malicious code in magnetar-paleoecology-tectonic-yaml (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187909 | Malicious code in magnetar-geochemistry-remark-repository (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187908 | Malicious code in magnetar-eridanus-middleware-update (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187907 | Malicious code in magellan-vega-phoenix-hydrogeology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187906 | Malicious code in magellan-transport-auth0-pulsar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187905 | Malicious code in magellan-neptunology-extremophile-janus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187904 | Malicious code in magellan-hyperion-gridsome-electron-builder (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187903 | Malicious code in magellan-gravity-solarnebula-dotenv-safe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187902 | Malicious code in magellan-gammarayburst-passport-antares (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187901 | Malicious code in magellan-fornax-chai-test (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187900 | Malicious code in magellan-enif-oauth-sirius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187899 | Malicious code in magellan-bootes-resonance-sedna (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187898 | Malicious code in magellan-blaze-archaeometry-slides (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187897 | Malicious code in magellan-augmentedreality-webdriver-mocha-blitz (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187896 | Malicious code in magellan-astro-webdriverio-enceladus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187895 | Malicious code in lyra-xanthus-csrf-pm2 (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187894 | Malicious code in lyra-warp-dactyl-interferometry (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187893 | Malicious code in lyra-taphonomy-fusion-exosphere (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:1738 | Red Hat Security Advisory: libpq security update | 2025-02-20T16:31:24+00:00 | 2025-10-27T20:13:56+00:00 |
| rhsa-2025:1735 | Red Hat Security Advisory: libpq security update | 2025-02-20T16:22:44+00:00 | 2025-10-27T20:13:56+00:00 |
| rhsa-2025:1731 | Red Hat Security Advisory: postgresql:16 security update | 2025-02-20T15:49:39+00:00 | 2025-10-27T20:13:53+00:00 |
| rhsa-2025:1730 | Red Hat Security Advisory: postgresql:15 security update | 2025-02-20T15:48:39+00:00 | 2025-10-27T20:13:53+00:00 |
| rhsa-2025:1729 | Red Hat Security Advisory: postgresql:13 security update | 2025-02-20T15:48:19+00:00 | 2025-10-27T20:13:52+00:00 |
| rhsa-2025:1726 | Red Hat Security Advisory: postgresql security update | 2025-02-20T15:48:09+00:00 | 2025-10-27T20:13:50+00:00 |
| rhsa-2025:1727 | Red Hat Security Advisory: postgresql security update | 2025-02-20T15:47:39+00:00 | 2025-10-27T20:13:50+00:00 |
| rhsa-2025:1732 | Red Hat Security Advisory: libpq security update | 2025-02-20T15:46:59+00:00 | 2025-10-27T20:13:54+00:00 |
| rhsa-2025:1733 | Red Hat Security Advisory: libpq security update | 2025-02-20T15:45:19+00:00 | 2025-10-27T20:13:54+00:00 |
| rhsa-2025:1723 | Red Hat Security Advisory: postgresql:13 security update | 2025-02-20T15:09:54+00:00 | 2025-10-27T20:13:47+00:00 |
| rhsa-2025:1724 | Red Hat Security Advisory: postgresql:13 security update | 2025-02-20T15:09:24+00:00 | 2025-10-27T20:13:48+00:00 |
| rhsa-2025:1721 | Red Hat Security Advisory: postgresql:15 security update | 2025-02-20T15:06:54+00:00 | 2025-10-27T20:13:45+00:00 |
| rhsa-2025:1728 | Red Hat Security Advisory: postgresql security update | 2025-02-20T15:04:44+00:00 | 2025-10-27T20:13:52+00:00 |
| rhsa-2025:1722 | Red Hat Security Advisory: postgresql:15 security update | 2025-02-20T15:02:59+00:00 | 2025-10-27T20:13:47+00:00 |
| rhsa-2025:1725 | Red Hat Security Advisory: libpq security update | 2025-02-20T14:55:29+00:00 | 2025-10-27T20:13:48+00:00 |
| rhsa-2025:1720 | Red Hat Security Advisory: libpq security update | 2025-02-20T14:49:14+00:00 | 2025-10-27T20:13:45+00:00 |
| rhsa-2025:1386 | Red Hat Security Advisory: OpenShift Container Platform 4.16.35 security update | 2025-02-19T19:45:29+00:00 | 2025-11-14T11:39:06+00:00 |
| rhsa-2025:1680 | Red Hat Security Advisory: kpatch-patch-4_18_0-477_43_1, kpatch-patch-4_18_0-477_67_1, and kpatch-patch-4_18_0-477_81_1 security update | 2025-02-19T14:31:51+00:00 | 2025-11-06T22:35:30+00:00 |
| rhsa-2025:1673 | Red Hat Security Advisory: mysql:8.0 security update | 2025-02-19T11:10:11+00:00 | 2025-11-06T22:02:15+00:00 |
| rhsa-2025:1671 | Red Hat Security Advisory: mysql security update | 2025-02-19T10:31:41+00:00 | 2025-11-06T22:02:15+00:00 |
| rhsa-2025:1662 | Red Hat Security Advisory: kpatch-patch-4_18_0-372_118_1, kpatch-patch-4_18_0-372_131_1, and kpatch-patch-4_18_0-372_91_1 security update | 2025-02-19T02:25:00+00:00 | 2025-11-06T22:35:24+00:00 |
| rhsa-2025:1663 | Red Hat Security Advisory: kpatch-patch-4_18_0-305_120_1, kpatch-patch-4_18_0-305_138_1, and kpatch-patch-4_18_0-305_145_1 security update | 2025-02-19T02:23:30+00:00 | 2025-11-06T22:35:24+00:00 |
| rhsa-2025:1658 | Red Hat Security Advisory: kernel security update | 2025-02-19T01:00:10+00:00 | 2025-11-07T15:42:48+00:00 |
| rhsa-2025:1657 | Red Hat Security Advisory: kpatch-patch-4_18_0-553, kpatch-patch-4_18_0-553_16_1, and kpatch-patch-4_18_0-553_30_1 security update | 2025-02-18T22:01:34+00:00 | 2025-11-06T22:35:24+00:00 |
| rhsa-2025:1403 | Red Hat Security Advisory: OpenShift Container Platform 4.17.17 bug fix and security update | 2025-02-18T17:47:03+00:00 | 2025-11-06T22:35:23+00:00 |
| rhsa-2025:1637 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update | 2025-02-18T11:41:33+00:00 | 2025-11-11T16:07:21+00:00 |
| rhsa-2025:1636 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update | 2025-02-18T11:41:18+00:00 | 2025-11-11T16:07:22+00:00 |
| rhsa-2025:1638 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update | 2025-02-18T11:41:12+00:00 | 2025-11-11T16:07:22+00:00 |
| rhsa-2025:1635 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update | 2025-02-18T11:37:37+00:00 | 2025-11-11T16:07:23+00:00 |
| rhsa-2025:1632 | Red Hat Security Advisory: redhat-ds:11 security update | 2025-02-18T10:15:43+00:00 | 2025-11-06T22:02:14+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-49991 | drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49989 | drm/amd/display: fix double free issue during amdgpu module unload | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49988 | ksmbd: add refcnt to ksmbd_conn struct | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49987 | bpftool: Fix undefined behavior in qsort(NULL 0 ...) | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49986 | platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49985 | i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49983 | ext4: drop ppath from ext4_ext_replay_update_ex() to avoid double-free | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49982 | aoe: fix the potential use-after-free problem in more places | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49981 | media: venus: fix use after free bug in venus_remove due to race condition | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49980 | vrf: revert "vrf: Remove unnecessary RCU-bh critical section" | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49978 | gso: fix udp gso fraglist segmentation after pull from frag_list | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49977 | net: stmmac: Fix zero-division error when disabling tc cbs | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49976 | tracing/timerlat: Drop interface_lock in stop_kthread() | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49975 | uprobes: fix kernel info leak via "[uprobes]" vma | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49974 | NFSD: Limit the number of concurrent async COPY operations | 2024-10-01T07:00:00.000Z | 2025-09-03T22:28:21.000Z |
| msrc_cve-2024-49973 | r8169: add tally counter fields added with RTL8125 | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49972 | drm/amd/display: Deallocate DML memory if allocation fails | 2024-10-01T07:00:00.000Z | 2025-09-03T22:07:27.000Z |
| msrc_cve-2024-49971 | drm/amd/display: Increase array size of dummy_boolean | 2024-10-01T07:00:00.000Z | 2025-09-03T22:20:42.000Z |
| msrc_cve-2024-49969 | drm/amd/display: Fix index out of bounds in DCN30 color transformation | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49968 | ext4: filesystems without casefold feature cannot be mounted with siphash | 2024-10-01T07:00:00.000Z | 2025-09-04T00:40:21.000Z |
| msrc_cve-2024-49965 | ocfs2: remove unreasonable unlock in ocfs2_read_blocks | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49963 | mailbox: bcm2835: Fix timeout during suspend mode | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49962 | ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49961 | media: i2c: ar0521: Use cansleep version of gpiod_set_value() | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49960 | ext4: fix timer use-after-free on failed mount | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49959 | jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49958 | ocfs2: reserve space for inline xattr before attaching reflink tree | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49957 | ocfs2: fix null-ptr-deref when journal load failed. | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49955 | ACPI: battery: Fix possible crash when unregistering a battery hook | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49954 | static_call: Replace pointless WARN_ON() in static_call_module_notify() | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2010-000017 | Movable Type vulnerable to cross-site scripting | 2010-05-12T15:25+09:00 | 2010-05-12T15:25+09:00 |
| jvndb-2010-000016 | Multiple Cybozu products vulnerable to authentication bypass | 2010-04-21T17:27+09:00 | 2010-04-21T17:27+09:00 |
| jvndb-2010-000015 | Ichitaro series vulnerable to arbitrary code execution | 2010-04-12T17:17+09:00 | 2010-04-12T17:17+09:00 |
| jvndb-2010-001204 | Accela BizSearch Access Control Bypass Vulnerability | 2010-04-09T16:36+09:00 | 2010-04-09T16:36+09:00 |
| jvndb-2010-000014 | Cisco Router and Security Device Manager vulnerable to cross-site scripting | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000013 | MODx vulnerable to cross-site scripting | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000012 | MODx vulnerable to SQL injection | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000011 | Internet Explorer information disclosure vulnerability | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000010 | HL-SiteManager vulnerable to SQL injection | 2010-04-02T17:33+09:00 | 2010-04-02T17:33+09:00 |
| jvndb-2010-000009 | Compiere vulnerable to cross-site scripting | 2010-04-02T17:32+09:00 | 2010-04-02T17:32+09:00 |
| jvndb-2010-000008 | Compiere vulnerable to cross-site scripting | 2010-04-02T17:32+09:00 | 2010-04-02T17:32+09:00 |
| jvndb-2010-000007 | PrettyFormMail vulnerable to cross-site scripting | 2010-04-02T17:31+09:00 | 2010-04-02T17:31+09:00 |
| jvndb-2009-000057 | ATOK screen lock bypass vulnerability | 2010-03-23T17:42+09:00 | 2010-03-23T17:42+09:00 |
| jvndb-2009-000018 | Ichitaro series buffer overflow vulnerability | 2010-03-23T17:42+09:00 | 2010-03-23T17:42+09:00 |
| jvndb-2010-001147 | JP1/Cm2/Network Node Manager Remote Console Insecure File Permissions Vulnerability | 2010-03-15T12:21+09:00 | 2010-03-15T12:21+09:00 |
| jvndb-2010-000006 | OpenPNE authentication bypass vulnerability | 2010-03-12T15:29+09:00 | 2010-03-12T15:29+09:00 |
| jvndb-2010-001088 | uCosminexus Portal Framework Cross-Site Scripting Vulnerability | 2010-03-03T12:00+09:00 | 2010-03-03T12:00+09:00 |
| jvndb-2010-000005 | tDiary plugin tb-send.rb vulnerable to cross-site scripting | 2010-02-26T12:45+09:00 | 2010-02-26T12:45+09:00 |
| jvndb-2009-002475 | Buffer Overflow Vulnerability in Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java | 2010-02-09T14:03+09:00 | 2010-02-09T14:03+09:00 |
| jvndb-2010-000004 | Oracle Application Server vulnerable to cross-site scripting | 2010-01-14T21:24+09:00 | 2010-01-14T21:24+09:00 |
| jvndb-2010-000003 | WebCalenderC3 vulnerable to directory traversal | 2010-01-14T21:24+09:00 | 2010-01-14T21:24+09:00 |
| jvndb-2010-000002 | WebCalenderC3 cross-site scripting vulnerability | 2010-01-14T21:23+09:00 | 2010-01-14T21:23+09:00 |
| jvndb-2010-000001 | Movable Type access restriction bypass vulnerability | 2010-01-06T16:26+09:00 | 2010-01-06T16:26+09:00 |
| jvndb-2009-002358 | Fujitsu Interstage and Systemwalker SSL Vulnerabilities | 2009-12-28T11:19+09:00 | 2009-12-28T11:19+09:00 |
| jvndb-2009-002345 | StartTLS not enabled in Hitachi Storage Command Suite products | 2009-12-24T14:32+09:00 | 2009-12-24T14:32+09:00 |
| jvndb-2009-000084 | P forum vulnerable to directory traversal | 2009-12-17T14:18+09:00 | 2009-12-17T14:18+09:00 |
| jvndb-2009-000077 | Active! mail 2003 cookie disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000076 | Active! mail 2003 session ID disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000075 | Active! mail 2003 cross-site scripting vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000079 | SEIL/B1 authentication issue | 2009-12-09T19:38+09:00 | 2009-12-09T19:38+09:00 |
| ID | Description | Updated |
|---|