Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-p98w-mx82-xhg4 | Missing Authorization vulnerability in Spencer Haws Link Whisper Free link-whisper allows Exploitin… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-mx76-j492-6c3v | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-j768-6r6g-m9h3 | A vulnerability was detected in Kamailio 5.5. The affected element is the function sr_push_yy_state… | 2025-10-27T03:30:39Z | 2025-11-05T00:31:30Z |
| ghsa-j46c-hfxp-3h44 | Missing Authorization vulnerability in wpseek Admin Management Xtended admin-management-xtended al… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-hg8r-q6jx-8pfj | Missing Authorization vulnerability in Themekraft BuddyForms buddyforms allows Accessing Functional… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-h9rr-38f2-f57m | Cross-Site Request Forgery (CSRF) vulnerability in Andrea Landonio CloudSearch cloud-search allows … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-fh89-2rg8-6gx9 | Missing Authorization vulnerability in 沃之涛 百度站长SEO合集(支持百度/神马/Bing/头条推送) baiduseo allows Accessing F… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-fgh4-qp5f-8j48 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-crqx-56cp-p8j6 | Cross-Site Request Forgery (CSRF) vulnerability in iseremet Reloadly reloadly-topup-widget allows S… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-cmpw-ffqj-x98j | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-cfvm-7f4p-fg84 | A weakness has been identified in givanz Vvveb up to 1.0.7.3. This issue affects the function sanit… | 2025-10-27T03:30:39Z | 2025-10-27T03:30:39Z |
| ghsa-c8qv-m95w-84cx | Cross-Site Request Forgery (CSRF) vulnerability in raychat Raychat raychat allows Cross Site Reques… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-c2rv-fm36-43g7 | Cross-Site Request Forgery (CSRF) vulnerability in FanBridge FanBridge signup fanbridge-signup allo… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-9j3c-v37q-wc5j | Missing Authorization vulnerability in Apiki GoCache gocache-cdn allows Exploiting Incorrectly Conf… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-8rmj-2xg2-c6p9 | Missing Authorization vulnerability in Kiotviet KiotViet Sync kiotvietsync allows Exploiting Incorr… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-82xj-vm55-pp5m | Cross-Site Request Forgery (CSRF) vulnerability in Clifton Griffin Simple Content Templates for Blo… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-7chw-hhvh-5rp9 | Missing Authorization vulnerability in Joovii Sendle Shipping official-sendle-shipping-method allow… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-76cq-h226-vv35 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:30Z |
| ghsa-75wf-2743-qp5f | Insertion of Sensitive Information Into Sent Data vulnerability in airesvsg ACF to REST API acf-to-… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-6mmq-g487-46w7 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-4cj4-4jvg-p6q8 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-44r5-gm3r-62wj | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-3wcv-7wxv-gvf8 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:39Z | 2025-11-13T12:31:32Z |
| ghsa-2x76-q69m-x8p7 | Missing Authorization vulnerability in nanbu Welcart e-Commerce usc-e-shop allows Exploiting Incorr… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-2w76-84vx-75wq | A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rve_destroy of… | 2025-10-27T03:30:39Z | 2025-11-05T00:31:30Z |
| ghsa-2rjw-37q7-prrc | Cross-Site Request Forgery (CSRF) vulnerability in NikanWP NikanWP WooCommerce Reporting wc-reports… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-23qm-g3r4-35xx | Missing Authorization vulnerability in RealMag777 MDTF wp-meta-data-filter-and-taxonomy-filter allo… | 2025-10-27T03:30:39Z | 2025-11-13T12:31:31Z |
| ghsa-xwpp-p833-67wp | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2025-11-13T12:31:29Z |
| ghsa-x5x6-gpfm-cpm4 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2025-11-13T12:31:29Z |
| ghsa-wgh5-f6hf-q96m | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-27T03:30:38Z | 2025-11-13T12:31:30Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-62978 | N/A | WordPress KiotViet Sync plugin <= 1.8.5 - Broken Acces… |
Kiotviet |
KiotViet Sync |
2025-10-27T01:34:18.281Z | 2025-11-13T10:33:48.705Z |
| cve-2025-62977 | N/A | WordPress 百度站长SEO合集(支持百度/神马/Bing/头条推送) plugin <= 2.1.3… |
沃之涛 |
百度站长SEO合集(支持百度/神马/Bing/头条推送) |
2025-10-27T01:34:17.906Z | 2025-11-13T10:33:48.772Z |
| cve-2025-62976 | N/A | WordPress Sendle Shipping plugin <= 6.02 - Broken Acce… |
Joovii |
Sendle Shipping |
2025-10-27T01:34:17.528Z | 2025-11-13T10:33:48.598Z |
| cve-2025-62975 | N/A | WordPress Raychat plugin <= 2.2.1 - Cross Site Request… |
raychat |
Raychat |
2025-10-27T01:34:17.146Z | 2025-11-13T10:33:48.609Z |
| cve-2025-62974 | N/A | WordPress Headline Analyzer plugin <= 1.3.7 - Cross Si… |
CoSchedule |
Headline Analyzer |
2025-10-27T01:34:16.779Z | 2025-11-13T10:33:48.494Z |
| cve-2025-62973 | N/A | WordPress BuddyForms plugin <= 2.9.0 - Broken Access C… |
Themekraft |
BuddyForms |
2025-10-27T01:34:16.394Z | 2025-11-13T10:33:48.556Z |
| cve-2025-62972 | N/A | WordPress WebinarPress plugin <= 1.33.28 - Broken Acce… |
WPWebinarSystem |
WebinarPress |
2025-10-27T01:34:16.018Z | 2025-11-13T10:33:48.696Z |
| cve-2025-62971 | N/A | WordPress Attesa Extra plugin <= 1.4.5 - Cross Site Sc… |
CrestaProject |
Attesa Extra |
2025-10-27T01:34:15.629Z | 2025-11-13T10:33:48.691Z |
| cve-2025-62970 | N/A | WordPress Link Whisper Free plugin <= 0.8.8 - Broken A… |
Spencer Haws |
Link Whisper Free |
2025-10-27T01:34:15.242Z | 2025-11-13T10:33:48.458Z |
| cve-2025-62969 | N/A | WordPress NextMove Lite plugin <= 2.21.0 - Cross Site … |
XLPlugins |
NextMove Lite |
2025-10-27T01:34:14.860Z | 2025-11-13T10:33:48.671Z |
| cve-2025-62968 | N/A | WordPress WP Last Modified Info plugin <= 1.9.2 - Cros… |
Sayan Datta |
WP Last Modified Info |
2025-10-27T01:34:14.465Z | 2025-11-13T10:33:48.544Z |
| cve-2025-62967 | N/A | WordPress DirectoryPress plugin <= 3.6.25 - Cross Site… |
designinvento |
DirectoryPress |
2025-10-27T01:34:14.079Z | 2025-11-13T10:33:48.414Z |
| cve-2025-62966 | N/A | WordPress GoCache plugin <= 1.3.6 - Broken Access Cont… |
Apiki |
GoCache |
2025-10-27T01:34:13.698Z | 2025-11-13T10:33:48.744Z |
| cve-2025-62965 | N/A | WordPress Admin Management Xtended plugin <= 2.5.1 - … |
wpseek |
Admin Management Xtended |
2025-10-27T01:34:13.305Z | 2025-11-13T10:33:48.406Z |
| cve-2025-62964 | N/A | WordPress MDTF plugin <= 1.3.4 - Broken Access Control… |
RealMag777 |
MDTF |
2025-10-27T01:34:12.925Z | 2025-11-13T10:33:48.432Z |
| cve-2025-62963 | N/A | WordPress Estatik plugin <= 4.1.13 - Cross Site Script… |
Estatik |
Estatik |
2025-10-27T01:34:12.534Z | 2025-11-13T10:33:48.543Z |
| cve-2025-62962 | N/A | WordPress CloudSearch plugin <= 3.0.0 - Cross Site Req… |
Andrea Landonio |
CloudSearch |
2025-10-27T01:34:12.156Z | 2025-11-13T10:33:48.658Z |
| cve-2025-62959 | N/A | WordPress Paid Videochat Turnkey Site plugin <= 7.3.22… |
videowhisper |
Paid Videochat Turnkey Site |
2025-10-27T01:34:11.771Z | 2025-11-13T10:33:48.572Z |
| cve-2025-62958 | N/A | WordPress Simple Content Templates for Blog Posts & Pa… |
Clifton Griffin |
Simple Content Templates for Blog Posts & Pages |
2025-10-27T01:34:11.386Z | 2025-11-13T10:33:48.467Z |
| cve-2025-62957 | N/A | WordPress NikanWP WooCommerce Reporting plugin <= 1.0.… |
NikanWP |
NikanWP WooCommerce Reporting |
2025-10-27T01:34:10.997Z | 2025-11-13T10:33:48.217Z |
| cve-2025-62956 | N/A | WordPress Reloadly plugin <= 2.0.1 - Cross Site Reques… |
iseremet |
Reloadly |
2025-10-27T01:34:10.627Z | 2025-11-13T10:33:48.494Z |
| cve-2025-62954 | N/A | WordPress Revive Old Posts plugin <= 9.3.3 - Broken Ac… |
Codeinwp |
Revive Old Posts |
2025-10-27T01:34:10.251Z | 2025-11-13T10:33:48.601Z |
| cve-2025-62953 | N/A | WordPress Welcart e-Commerce plugin <= 2.11.24 - Broke… |
nanbu |
Welcart e-Commerce |
2025-10-27T01:34:09.846Z | 2025-11-13T10:33:48.461Z |
| cve-2025-62952 | N/A | WordPress ChatBot plugin <= 7.3.0 - Broken Access Cont… |
QuantumCloud |
ChatBot |
2025-10-27T01:34:09.465Z | 2025-11-13T10:33:48.416Z |
| cve-2025-62951 | N/A | WordPress Interactive Content – H5P plugin <= 1.16.0 -… |
icc0rz |
Interactive Content – H5P |
2025-10-27T01:34:09.049Z | 2025-11-13T10:33:48.186Z |
| cve-2025-62949 | N/A | WordPress Activity Plus Reloaded for BuddyPress plugin… |
BuddyDev |
Activity Plus Reloaded for BuddyPress |
2025-10-27T01:34:08.667Z | 2025-11-13T10:33:48.570Z |
| cve-2025-62948 | N/A | WordPress Date counter plugin <= 2.0.3 - Cross Site Sc… |
Konstantin Pankratov |
Date counter |
2025-10-27T01:34:08.293Z | 2025-11-13T10:33:48.354Z |
| cve-2025-62947 | N/A | WordPress Publitio plugin <= 2.2.3 - Sensitive Data Ex… |
publitio |
Publitio |
2025-10-27T01:34:07.905Z | 2025-11-13T10:33:48.367Z |
| cve-2025-62946 | N/A | WordPress Everest Backup plugin <= 2.3.8 - Broken Acce… |
everestthemes |
Everest Backup |
2025-10-27T01:34:07.532Z | 2025-11-13T10:33:48.278Z |
| cve-2025-62945 | N/A | WordPress Did Prestashop Display plugin <= 1.0.30 - Cr… |
Eduard Pinuaga Linares |
Did Prestashop Display |
2025-10-27T01:34:07.137Z | 2025-11-13T10:33:48.588Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-12265 | Tenda CH22 VirtualSer fromVirtualSer buffer overflow |
Tenda |
CH22 |
2025-10-27T11:02:07.933Z | 2025-10-27T12:14:52.668Z | |
| cve-2025-12264 | Wisencode Create Support Ticket create cross site scripting |
n/a |
Wisencode |
2025-10-27T10:32:10.416Z | 2025-10-27T12:20:59.536Z | |
| cve-2025-12263 | code-projects Online Event Judging System edit_judge.p… |
code-projects |
Online Event Judging System |
2025-10-27T10:32:08.484Z | 2025-10-27T12:46:44.143Z | |
| cve-2025-12262 | code-projects Online Event Judging System edit_criteri… |
code-projects |
Online Event Judging System |
2025-10-27T10:32:05.934Z | 2025-10-27T13:22:24.941Z | |
| cve-2025-8432 | 8.4 (v3.1) | CentreonBI user account on the MBI server can execute … |
Centreon |
Infra Monitoring |
2025-10-27T10:08:33.662Z | 2025-10-30T13:51:12.045Z |
| cve-2025-46583 | 5.3 (v3.1) | DOS Vulnerability in ZTE MC889A Pro product |
ZTE |
MC889A Pro |
2025-10-27T09:23:38.328Z | 2025-10-27T15:47:46.207Z |
| cve-2025-12261 | CodeAstro Gym Management System remove-announcement.ph… |
CodeAstro |
Gym Management System |
2025-10-27T10:02:14.597Z | 2025-10-27T13:23:02.540Z | |
| cve-2025-12260 | TOTOLINK A3300R POST Parameter cstecgi.cgi setSyslogCf… |
TOTOLINK |
A3300R |
2025-10-27T10:02:11.656Z | 2025-10-27T20:13:58.026Z | |
| cve-2025-12259 | TOTOLINK A3300R POST Parameter cstecgi.cgi setSchedule… |
TOTOLINK |
A3300R |
2025-10-27T10:02:08.097Z | 2025-10-27T20:13:39.307Z | |
| cve-2025-12258 | TOTOLINK A3300R POST Parameter cstecgi.cg setOpModeCfg… |
TOTOLINK |
A3300R |
2025-10-27T09:32:11.829Z | 2025-10-27T13:23:42.434Z | |
| cve-2025-12257 | SourceCodester Online Student Result System view_resul… |
SourceCodester |
Online Student Result System |
2025-10-27T09:32:08.633Z | 2025-10-27T14:16:39.217Z | |
| cve-2025-12256 | code-projects Online Event Judging System edit_contest… |
code-projects |
Online Event Judging System |
2025-10-27T09:32:05.563Z | 2025-10-27T14:17:19.226Z | |
| cve-2025-10561 | N/A | {'providerMetadata': {'orgId': 'a6863dd2-93fc-443d-bef1-79f0b5020988', 'shortName': 'SICK AG', 'dateUpdated': '2025-11-11T08:33:26.172Z'}, 'rejectedReasons': [{'lang': 'en', 'supportingMedia': [{'base64': False, 'type': 'text/html', 'value': 'This CVE ID was assigned in error.<br>\nThe End-of-Life status of a component, by itself, does not constitute a vulnerability under the CVE Program’s rules.<br>\nThis condition represents a security weakness (CWE-1104: Use of Unmaintained Third-Party Components) rather than a specific vulnerability instance.'}], 'value': 'This CVE ID was assigned in error.\n\nThe End-of-Life status of a component, by itself, does not constitute a vulnerability under the CVE Program’s rules.\n\nThis condition represents a security weakness (CWE-1104: Use of Unmaintained Third-Party Components) rather than a specific vulnerability instance.'}], 'x_generator': {'engine': 'Vulnogram 0.1.0-dev'}} | N/A | N/A | 2025-10-27T10:00:07.715Z | 2025-11-11T08:33:26.172Z |
| cve-2025-46582 | 7.7 (v3.1) | Private Key Disclosure Vulnerability in ZTE ZXMP M721 … |
ZTE |
ZXMP M721 |
2025-10-27T08:44:49.704Z | 2025-10-27T15:58:25.984Z |
| cve-2025-12255 | code-projects Online Event Judging System add_contesta… |
code-projects |
Online Event Judging System |
2025-10-27T09:02:11.193Z | 2025-10-27T15:48:22.191Z | |
| cve-2025-12254 | code-projects Online Event Judging System add_judge.ph… |
code-projects |
Online Event Judging System |
2025-10-27T09:02:08.635Z | 2025-10-27T15:48:44.221Z | |
| cve-2025-12253 | AMTT Hotel Broadband Operation System get_expiredtime.… |
AMTT |
Hotel Broadband Operation System |
2025-10-27T09:02:06.044Z | 2025-10-27T15:50:37.182Z | |
| cve-2025-12252 | code-projects Online Event Judging System action.php s… |
code-projects |
Online Event Judging System |
2025-10-27T08:32:11.065Z | 2025-10-27T16:41:35.083Z | |
| cve-2025-12251 | OpenWGA Admin UI cross site scripting |
n/a |
OpenWGA |
2025-10-27T08:32:08.551Z | 2025-10-27T16:51:52.053Z | |
| cve-2025-12250 | OpenWGA TMLScript API WGA.File path traversal |
n/a |
OpenWGA |
2025-10-27T08:32:06.054Z | 2025-10-27T16:56:19.544Z | |
| cve-2025-12080 | 6.9 (v4.0) | Intent Abuse in Google Messages for Wear OS for Silent… |
Google |
WearOS |
2025-10-27T08:45:52.604Z | 2025-10-27T15:53:29.322Z |
| cve-2025-12249 | Axosoft Scrum and Bug Tracking Edit Ticket csv injection |
Axosoft |
Scrum and Bug Tracking |
2025-10-27T08:02:11.492Z | 2025-10-27T17:00:37.799Z | |
| cve-2025-12248 | CLTPHP search.html sql injection |
n/a |
CLTPHP |
2025-10-27T08:02:08.742Z | 2025-10-27T17:02:36.711Z | |
| cve-2025-12247 | Hasleo Backup Suite HasleoImageMountService/HasleoBack… |
Hasleo |
Backup Suite |
2025-10-27T08:02:06.216Z | 2025-10-27T17:17:57.573Z | |
| cve-2025-12246 | chatwoot Admin IframeLoader.vue cross site scripting |
n/a |
chatwoot |
2025-10-27T07:32:09.692Z | 2025-10-27T17:55:14.601Z | |
| cve-2025-12245 | chatwoot Widget IFrameHelper.js initPostMessageCommuni… |
n/a |
chatwoot |
2025-10-27T07:32:07.544Z | 2025-10-27T18:25:56.142Z | |
| cve-2025-12244 | code-projects Simple E-Banking System register.php cro… |
code-projects |
Simple E-Banking System |
2025-10-27T07:32:05.103Z | 2025-10-27T18:29:13.298Z | |
| cve-2025-11682 | 7.1 (v4.0) | Stored Cross-Site Scripting in Perx Customer Engagemen… |
Perx Technologies |
Customer Engagement & Loyalty Platform |
2025-10-27T07:39:54.263Z | 2025-10-27T17:25:18.430Z |
| cve-2025-12243 | code-projects Client Details System GET Parameter welc… |
code-projects |
Client Details System |
2025-10-27T07:02:16.794Z | 2025-10-27T18:31:08.218Z | |
| cve-2025-12242 | CodeAstro Gym Management System check-attendance.php s… |
CodeAstro |
Gym Management System |
2025-10-27T07:02:14.435Z | 2025-10-27T18:01:44.703Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-187862 | Malicious code in long-zero-rain-daemon-refactor (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187861 | Malicious code in long-sigma-authenticate-alpha-analyze (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187860 | Malicious code in long-nu-new-nu-cache (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187859 | Malicious code in long-new-report-analyze-permission (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187858 | Malicious code in long-module-report-abstract-alpha (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187857 | Malicious code in long-final-minify-load-tree (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187856 | Malicious code in long-class-report-grep-catch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187855 | Malicious code in long-boolean-table-compress-tree (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187854 | Malicious code in long-alpha-code-sun-table (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187853 | Malicious code in loglevel-testcafe-spectron-leda (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187852 | Malicious code in loglevel-selenium-process-mongoose (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187851 | Malicious code in loglevel-meteor-mui-version (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187850 | Malicious code in loglevel-hyperion-bootstrap-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187849 | Malicious code in loglevel-exobiology-eslint-config-rate-limiter (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187848 | Malicious code in loglevel-event-resonance-umbriel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187847 | Malicious code in log-slow-debug-zero-report (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187846 | Malicious code in log-info-good-promise-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187845 | Malicious code in log-delta-daemon-finally-minify (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187844 | Malicious code in log-cron-execute-small-signal (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187843 | Malicious code in log-byte-cluster-uglify-error (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187842 | Malicious code in local-ursa-karma-mysql (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187841 | Malicious code in local-terser-postcss-loader-eventhoriz (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187840 | Malicious code in local-lyra-cli-rimraf (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187839 | Malicious code in local-kaus-wolf-local (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187838 | Malicious code in local-jasmine-gammarayburst-delphinus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187837 | Malicious code in local-farout-transform-chai (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187836 | Malicious code in local-cz-conventional-changelog-cosmos-quark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187835 | Malicious code in local-astrobiology-magellan-airbnb (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187834 | Malicious code in local-astro-inquirer-neptune (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-187833 | Malicious code in local-ariel-elara-schema (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:1347 | Red Hat Security Advisory: kernel security update | 2025-02-12T08:24:16+00:00 | 2025-11-06T22:35:22+00:00 |
| rhsa-2025:1346 | Red Hat Security Advisory: gcc security update | 2025-02-12T07:06:05+00:00 | 2025-11-06T23:54:04+00:00 |
| rhsa-2025:1342 | Red Hat Security Advisory: gcc-toolset-13-gcc security update | 2025-02-12T05:37:00+00:00 | 2025-11-06T23:54:04+00:00 |
| rhsa-2025:1341 | Red Hat Security Advisory: thunderbird security update | 2025-02-12T04:23:06+00:00 | 2025-11-06T23:23:52+00:00 |
| rhsa-2025:1340 | Red Hat Security Advisory: thunderbird security update | 2025-02-12T04:17:00+00:00 | 2025-11-06T23:23:52+00:00 |
| rhsa-2025:1339 | Red Hat Security Advisory: thunderbird security update | 2025-02-12T04:08:35+00:00 | 2025-11-06T23:23:51+00:00 |
| rhsa-2025:1130 | Red Hat Security Advisory: OpenShift Container Platform 4.15.45 packages and security update | 2025-02-12T04:05:10+00:00 | 2025-11-06T22:35:14+00:00 |
| rhsa-2025:1128 | Red Hat Security Advisory: OpenShift Container Platform 4.15.45 bug fix and security update | 2025-02-12T03:43:17+00:00 | 2025-11-14T11:39:03+00:00 |
| rhsa-2025:1338 | Red Hat Security Advisory: gcc-toolset-14-gcc security update | 2025-02-12T00:40:25+00:00 | 2025-11-06T23:54:04+00:00 |
| rhsa-2025:1123 | Red Hat Security Advisory: OpenShift Container Platform 4.16.34 security and extras update | 2025-02-12T00:13:05+00:00 | 2025-11-14T11:39:00+00:00 |
| rhsa-2025:1335 | Red Hat Security Advisory: RHUI 4.11 security, bugfix, and enhancement update | 2025-02-12T00:11:35+00:00 | 2025-11-15T08:44:46+00:00 |
| rhsa-2025:1334 | Red Hat Security Advisory: ACS 4.5 enhancement and security update | 2025-02-11T21:20:30+00:00 | 2025-11-15T08:44:46+00:00 |
| rhsa-2025:1330 | Red Hat Security Advisory: openssl security update | 2025-02-11T16:50:14+00:00 | 2025-11-08T07:13:28+00:00 |
| rhsa-2025:1318 | Red Hat Security Advisory: thunderbird security update | 2025-02-11T16:45:34+00:00 | 2025-11-06T23:23:51+00:00 |
| rhsa-2025:1317 | Red Hat Security Advisory: thunderbird security update | 2025-02-11T16:42:49+00:00 | 2025-11-06T23:23:51+00:00 |
| rhsa-2025:1329 | Red Hat Security Advisory: doxygen security update | 2025-02-11T16:26:59+00:00 | 2025-11-06T23:54:04+00:00 |
| rhsa-2025:1319 | Red Hat Security Advisory: thunderbird security update | 2025-02-11T15:54:13+00:00 | 2025-11-06T23:23:51+00:00 |
| rhsa-2025:1327 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:44:02+00:00 | 2025-11-15T08:44:44+00:00 |
| rhsa-2025:1326 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:41:51+00:00 | 2025-11-15T08:44:44+00:00 |
| rhsa-2025:1325 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:41:41+00:00 | 2025-11-15T08:44:43+00:00 |
| rhsa-2025:1324 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:39:16+00:00 | 2025-11-15T08:44:42+00:00 |
| rhsa-2025:1322 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:37:40+00:00 | 2025-11-15T08:44:41+00:00 |
| rhsa-2025:1321 | Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release | 2025-02-11T15:37:26+00:00 | 2025-11-15T08:44:41+00:00 |
| rhsa-2025:1301 | Red Hat Security Advisory: gcc security update | 2025-02-11T14:58:28+00:00 | 2025-11-06T23:54:03+00:00 |
| rhsa-2025:1311 | Red Hat Security Advisory: gcc security update | 2025-02-11T14:43:08+00:00 | 2025-11-06T23:54:01+00:00 |
| rhsa-2025:1315 | Red Hat Security Advisory: doxygen security update | 2025-02-11T14:36:08+00:00 | 2025-11-06T23:54:02+00:00 |
| rhsa-2025:1314 | Red Hat Security Advisory: doxygen security update | 2025-02-11T14:24:08+00:00 | 2025-11-06T23:54:02+00:00 |
| rhsa-2025:1303 | Red Hat Security Advisory: gcc security update | 2025-02-11T14:09:23+00:00 | 2025-11-06T23:53:59+00:00 |
| rhsa-2025:1304 | Red Hat Security Advisory: gcc security update | 2025-02-11T14:07:13+00:00 | 2025-11-06T23:53:59+00:00 |
| rhsa-2025:1309 | Red Hat Security Advisory: gcc-toolset-13-gcc security update | 2025-02-11T13:53:03+00:00 | 2025-11-06T23:54:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-49915 | drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw | 2024-10-01T07:00:00.000Z | 2025-09-03T20:12:58.000Z |
| msrc_cve-2024-49914 | drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe | 2024-10-01T07:00:00.000Z | 2025-09-03T20:52:12.000Z |
| msrc_cve-2024-49913 | drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49912 | drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' | 2024-10-01T07:00:00.000Z | 2024-11-09T00:00:00.000Z |
| msrc_cve-2024-49911 | drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func | 2024-10-01T07:00:00.000Z | 2025-09-03T19:40:44.000Z |
| msrc_cve-2024-49909 | drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func | 2024-10-01T07:00:00.000Z | 2025-09-03T19:37:07.000Z |
| msrc_cve-2024-49907 | drm/amd/display: Check null pointers before using dc->clk_mgr | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49906 | drm/amd/display: Check null pointer before try to access it | 2024-10-01T07:00:00.000Z | 2025-09-03T19:48:30.000Z |
| msrc_cve-2024-49905 | drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) | 2024-10-01T07:00:00.000Z | 2024-11-09T00:00:00.000Z |
| msrc_cve-2024-49904 | drm/amdgpu: add list empty check to avoid null pointer issue | 2024-10-01T07:00:00.000Z | 2025-09-03T22:44:22.000Z |
| msrc_cve-2024-49903 | jfs: Fix uaf in dbFreeBits | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49902 | jfs: check if leafidx greater than num leaves per dmap tree | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49901 | drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs | 2024-10-01T07:00:00.000Z | 2024-11-12T00:00:00.000Z |
| msrc_cve-2024-49900 | jfs: Fix uninit-value access of new_ea in ea_buffer | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49899 | drm/amd/display: Initialize denominators' default to 1 | 2024-10-01T07:00:00.000Z | 2025-09-03T21:53:00.000Z |
| msrc_cve-2024-49898 | drm/amd/display: Check null-initialized variables | 2024-10-01T07:00:00.000Z | 2025-09-03T19:44:24.000Z |
| msrc_cve-2024-49897 | drm/amd/display: Check phantom_stream before it is used | 2024-10-01T07:00:00.000Z | 2025-09-03T22:55:58.000Z |
| msrc_cve-2024-49896 | drm/amd/display: Check stream before comparing them | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49895 | drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49894 | drm/amd/display: Fix index out of bounds in degamma hardware format translation | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49893 | drm/amd/display: Check stream_status before it is used | 2024-10-01T07:00:00.000Z | 2025-09-03T21:45:39.000Z |
| msrc_cve-2024-49892 | drm/amd/display: Initialize get_bytes_per_element's default to 1 | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49891 | scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths | 2024-10-01T07:00:00.000Z | 2025-09-03T22:21:45.000Z |
| msrc_cve-2024-49890 | drm/amd/pm: ensure the fw_info is not null before using it | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49889 | ext4: avoid use-after-free in ext4_ext_show_leaf() | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49888 | bpf: Fix a sdiv overflow issue | 2024-10-01T07:00:00.000Z | 2025-09-03T21:25:39.000Z |
| msrc_cve-2024-49886 | platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49885 | mm, slub: avoid zeroing kmalloc redzone | 2024-10-01T07:00:00.000Z | 2025-09-03T21:58:45.000Z |
| msrc_cve-2024-49884 | ext4: fix slab-use-after-free in ext4_split_extent_at() | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| msrc_cve-2024-49883 | ext4: aovid use-after-free in ext4_ext_insert_extent() | 2024-10-01T07:00:00.000Z | 2024-12-12T00:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-000049 | Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter) | 2009-07-24T17:19+09:00 | 2009-07-24T17:19+09:00 |
| jvndb-2009-000048 | shiromuku(fs6)DIARY cross-site scripting vulnerability | 2009-07-15T18:15+09:00 | 2009-07-15T18:15+09:00 |
| jvndb-2009-001741 | Hitachi Web Server Vulnerability in SSL Client Authentication | 2009-07-14T10:17+09:00 | 2014-05-21T18:16+09:00 |
| jvndb-2009-001740 | Hitachi Web Server Reverse Proxy Denial of Service (DoS) Vulnerability | 2009-07-14T10:17+09:00 | 2014-05-21T18:24+09:00 |
| jvndb-2009-001545 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Zip File Scanning Utility | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-001544 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Vulnerability in Encoding Process | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-000046 | PHP-I-BOARD from Let's PHP! vulnerable to directory traversal | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000045 | PHP-I-BOARD from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000044 | Tree BBS from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000043 | Movable Type access restriction bypass vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000042 | Movable Type cross-site scripting vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000041 | Cross-site scripting vulnerability in PukiWikiMod from XOOPS Maniac | 2009-06-19T16:35+09:00 | 2009-06-19T16:35+09:00 |
| jvndb-2009-000040 | iPhone OS denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000039 | Buffer overflow vulnerability in Microsoft Works converters | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000038 | Cross-site scripting vulnerability in activeCollab | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000037 | Apache Tomcat denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2012-09-28T13:40+09:00 |
| jvndb-2009-000036 | Apache Tomcat information disclosure vulnerability | 2009-06-18T17:53+09:00 | 2012-09-28T13:35+09:00 |
| jvndb-2009-000035 | Predictable session ID vulnerability in Serene Bach | 2009-06-18T17:53+09:00 | 2009-06-18T17:53+09:00 |
| jvndb-2009-000034 | IMG-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000033 | REP-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000032 | Directory traversal vulnerability in multiple Cisco Systems products | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000031 | Cross-site scripting vulnerability in leger (free edition) | 2009-05-27T18:28+09:00 | 2009-05-27T18:28+09:00 |
| jvndb-2009-000030 | a-News from Appleple vulnerable to cross-site scripting | 2009-05-22T14:31+09:00 | 2009-05-22T14:31+09:00 |
| jvndb-2009-000029 | HP System Management Homepage vulnerable to cross-site scripting | 2009-05-20T16:01+09:00 | 2009-05-20T16:01+09:00 |
| jvndb-2009-000028 | Trees from CGI RESCUE vulnerable to cross-site scripting | 2009-05-19T13:41+09:00 | 2009-05-19T13:41+09:00 |
| jvndb-2009-000027 | Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting | 2009-05-13T15:37+09:00 | 2009-05-13T15:37+09:00 |
| jvndb-2009-000026 | SQL injection vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000025 | Cross-site scripting vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000024 | Web Mailer from CGI RESCUE vulnerable to HTTP header injection | 2009-04-28T16:36+09:00 | 2009-04-28T16:36+09:00 |
| jvndb-2009-000023 | FORM2MAIL from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| ID | Description | Updated |
|---|