Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-c73g-mx2w-cc93 | A vulnerability was detected in EverShop up to 2.0.1. Affected is an unknown function of the file /… | 2025-11-09T21:30:16Z | 2025-11-09T21:30:17Z |
| ghsa-vvg5-qhqr-r6vw | A vulnerability was identified in TOZED ZLT T10 T10PLUS_3.04.15. The affected element is an unknown… | 2025-11-09T09:30:15Z | 2025-11-09T09:30:15Z |
| ghsa-fqq7-h225-8w6h | A security flaw has been discovered in yungifez Skuul School Management System up to 2.6.5. The imp… | 2025-11-09T09:30:15Z | 2025-11-09T09:30:15Z |
| ghsa-wqc8-4945-8xxr | In the Linux kernel, the following vulnerability has been resolved: serial: qcom-geni: Fix blocked… | 2025-11-09T06:30:24Z | 2025-11-09T06:30:24Z |
| ghsa-r2qx-8vq2-jc32 | In the Linux kernel, the following vulnerability has been resolved: crypto: rng - Ensure set_ent i… | 2025-11-09T06:30:24Z | 2025-11-09T06:30:24Z |
| ghsa-j2f8-96fc-682m | A vulnerability was determined in Sangfor Operation and Maintenance Security Management System 3.0.… | 2025-11-09T00:30:26Z | 2025-11-09T00:30:26Z |
| ghsa-hfpp-2q66-88fj | A vulnerability was found in 70mai X200 up to 20251019. This issue affects some unknown processing … | 2025-11-09T00:30:26Z | 2025-11-09T00:30:26Z |
| ghsa-88w2-6722-q9jg | A vulnerability has been found in aaPanel BaoTa up to 11.1.0. This vulnerability affects unknown co… | 2025-11-09T00:30:26Z | 2025-11-09T00:30:26Z |
| ghsa-p3wh-73vj-58h9 | A flaw has been found in code-projects Responsive Hotel Site 1.0. This affects an unknown part of t… | 2025-11-08T21:30:21Z | 2025-11-08T21:30:21Z |
| ghsa-vrvf-crm8-m957 | The Saphali LiqPay for donate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via… | 2025-11-08T12:30:24Z | 2025-11-08T12:30:24Z |
| ghsa-c3cp-8hf9-98fv | The aThemes Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting … | 2025-11-08T12:30:24Z | 2025-11-08T12:30:24Z |
| ghsa-76x3-974v-wx5g | The Alex Reservations: Smart Restaurant Booking plugin for WordPress is vulnerable to arbitrary fil… | 2025-11-08T12:30:24Z | 2025-11-08T12:30:24Z |
| ghsa-x2hm-rp6m-pffv | The CYAN Backup plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient f… | 2025-11-08T12:30:23Z | 2025-11-08T12:30:23Z |
| ghsa-rq3c-qcg6-jg99 | The Quick Featured Images plugin for WordPress is vulnerable to SQL Injection via the 'delete_orpha… | 2025-11-08T12:30:23Z | 2025-11-08T12:30:23Z |
| ghsa-qvxj-23x4-63x3 | The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to unaut… | 2025-11-08T12:30:23Z | 2025-11-08T12:30:23Z |
| ghsa-5h25-8m42-q52x | The Mail Mint plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type… | 2025-11-08T12:30:23Z | 2025-11-08T12:30:23Z |
| ghsa-v538-gr8w-jr93 | The Flexible Refund and Return Order for WooCommerce plugin for WordPress is vulnerable to unauthor… | 2025-11-08T09:31:08Z | 2025-11-08T09:31:08Z |
| ghsa-mjfw-994c-x339 | The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vuln… | 2025-11-08T09:31:08Z | 2025-11-08T09:31:08Z |
| ghsa-6gj4-3cmf-ffjv | The Academy LMS – WordPress LMS Plugin for Complete eLearning Solution plugin for WordPress is vuln… | 2025-11-08T09:31:08Z | 2025-11-08T09:31:08Z |
| ghsa-4mg2-rgw7-wvrm | The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauth… | 2025-11-08T09:31:08Z | 2025-11-08T09:31:08Z |
| ghsa-x258-vqv6-3976 | The HTML Forms – Simple WordPress Forms Plugin plugin for WordPress is vulnerable to Stored Cross-S… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-wq7f-wxg4-cf5j | The Smart Auto Upload Images plugin for WordPress is vulnerable to arbitrary file uploads due to mi… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-vxvr-5342-6g7x | The Mang Board WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'mp'… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-rxc7-fx8m-jfjp | The WPFunnels – The Easiest Funnel Builder For WordPress And WooCommerce To Collect Leads And Incre… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-pr98-p8v8-r94g | The Contact Form 7 AWeber Extension plugin for WordPress is vulnerable to unauthorized modification… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-mxg7-8fqf-6h2j | The Insert Headers and Footers Code – HT Script plugin for WordPress is vulnerable to Stored Cross-… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-jcx9-wjx2-ccx2 | The Groups plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions u… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-f2vc-gg64-xmgf | The WPFunnels plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient fil… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-96cx-3fh6-vv56 | The WP2Social Auto Publish plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ghsa-8h59-9955-wv9r | The Ovatheme Events Manager plugin for WordPress is vulnerable to unauthorized access due to a miss… | 2025-11-08T06:30:26Z | 2025-11-08T06:30:26Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-12919 | EverShop Order Order.resolvers.js resource injection |
n/a |
EverShop |
2025-11-09T20:02:06.116Z | 2025-11-09T20:02:06.116Z | |
| cve-2025-12918 | yungifez Skuul School Management System View Fee Invoi… |
yungifez |
Skuul School Management System |
2025-11-09T08:02:05.919Z | 2025-11-09T08:02:05.919Z | |
| cve-2025-12917 | TOZED ZLT T10 Reboot proc_post denial of service |
TOZED |
ZLT T10 |
2025-11-09T07:32:06.010Z | 2025-11-09T07:32:06.010Z | |
| cve-2025-40109 | N/A | crypto: rng - Ensure set_ent is always present |
Linux |
Linux |
2025-11-09T04:35:59.979Z | 2025-11-09T04:35:59.979Z |
| cve-2025-40108 | N/A | serial: qcom-geni: Fix blocked task |
Linux |
Linux |
2025-11-09T04:35:58.587Z | 2025-11-09T04:35:58.587Z |
| cve-2025-12916 | Sangfor Operation and Maintenance Security Management … |
Sangfor |
Operation and Maintenance Security Management System |
2025-11-08T23:32:05.812Z | 2025-11-08T23:32:05.812Z | |
| cve-2025-12915 | 70mai X200 Init Script file inclusion |
70mai |
X200 |
2025-11-08T23:02:06.006Z | 2025-11-08T23:02:06.006Z | |
| cve-2025-12914 | aaPanel BaoTa Backend database sql injection |
aaPanel |
BaoTa |
2025-11-08T21:32:06.077Z | 2025-11-08T21:32:06.077Z | |
| cve-2025-12913 | code-projects Responsive Hotel Site roomdel.php sql in… |
code-projects |
Responsive Hotel Site |
2025-11-08T20:02:06.080Z | 2025-11-08T20:02:06.080Z | |
| cve-2025-12399 | Alex Reservations: Smart Restaurant Booking <= 2.2.3 -… |
alexreservations |
Alex Reservations: Smart Restaurant Booking |
2025-11-08T09:28:11.905Z | 2025-11-08T09:28:11.905Z | |
| cve-2025-11967 | Mail Mint <= 1.18.10 - Authenticated (Admin+) Arbitrar… |
getwpfunnels |
Mail Mint – Newsletters, Email Marketing, Automation, WooCommerce Emails, Post Notification, and more |
2025-11-08T09:28:11.511Z | 2025-11-08T09:28:11.511Z | |
| cve-2025-11448 | Gallery Plugin for WordPress – Envira Photo Gallery <=… |
smub |
Gallery Plugin for WordPress – Envira Photo Gallery |
2025-11-08T09:28:11.104Z | 2025-11-08T09:28:11.104Z | |
| cve-2025-12837 | aThemes Addons for Elementor <= 1.1.5 - Authenticated … |
smub |
aThemes Addons for Elementor |
2025-11-08T09:28:10.706Z | 2025-11-08T09:28:10.706Z | |
| cve-2025-12643 | Saphali LiqPay for donate <= 1.0.2 - Authenticated (Co… |
saphali |
Saphali LiqPay for donate |
2025-11-08T09:28:10.300Z | 2025-11-08T09:28:10.300Z | |
| cve-2025-11980 | Quick Featured Images <= 13.7.3 - Authenticated (Edito… |
kybernetikservices |
Quick Featured Images |
2025-11-08T09:28:09.878Z | 2025-11-08T09:28:09.878Z | |
| cve-2025-12092 | CYAN Backup <= 2.5.4 - Authenticated (Admin+) Arbitrar… |
gregross |
CYAN Backup |
2025-11-08T09:28:09.323Z | 2025-11-08T09:28:09.323Z | |
| cve-2025-12098 | Academy LMS Pro <= 3.3.8 - Unauthenticated Sensitive I… |
academylms |
Academy LMS Pro |
2025-11-08T08:27:42.051Z | 2025-11-08T08:27:42.051Z | |
| cve-2025-12099 | Academy LMS – WordPress LMS Plugin for Complete eLearn… |
academylms |
Academy LMS – WordPress LMS Plugin for Complete eLearning Solution |
2025-11-08T08:27:41.410Z | 2025-11-08T08:27:41.410Z | |
| cve-2025-12621 | Flexible Refund and Return Order for WooCommerce <= 1.… |
wpdesk |
Flexible Refund and Return Order for WooCommerce |
2025-11-08T07:26:28.151Z | 2025-11-08T07:26:28.151Z | |
| cve-2025-12498 | EventPrime – Events Calendar, Bookings and Tickets <= … |
metagauss |
EventPrime – Events Calendar, Bookings and Tickets |
2025-11-08T06:39:56.156Z | 2025-11-08T06:39:56.156Z | |
| cve-2025-9334 | Better Find and Replace <= 1.7.7 - Authenticated (Subs… |
codesolz |
Better Find and Replace – AI-Powered Suggestions |
2025-11-08T05:52:43.249Z | 2025-11-08T05:52:43.249Z | |
| cve-2025-12125 | HTML Forms <= 1.5.5 - Authenticated (Admin+) Stored Cr… |
linksoftware |
HTML Forms – Simple WordPress Forms Plugin |
2025-11-08T03:27:50.508Z | 2025-11-08T03:27:50.508Z | |
| cve-2025-12112 | Insert Headers and Footers Code – HT Script <= 1.1.6 -… |
htplugins |
Insert Headers and Footers Code – HT Script |
2025-11-08T03:27:50.117Z | 2025-11-08T03:27:50.117Z | |
| cve-2025-12000 | WPFunnels <= 3.6.2 - Authenticated (Administrator+) Ar… |
getwpfunnels |
Easy WordPress Funnel Builder To Collect Leads And Increase Sales – WPFunnels |
2025-11-08T03:27:49.707Z | 2025-11-08T03:27:49.707Z | |
| cve-2025-11748 | Groups <= 6.7.0 - Authenticated (Subscriber+) Insecure… |
itthinx |
Groups |
2025-11-08T03:27:49.308Z | 2025-11-08T03:27:49.308Z | |
| cve-2025-12161 | Smart Auto Upload Images <= 1.2.0 - Authenticated (Con… |
burhandodhy |
Smart Auto Upload Images – Import External Images |
2025-11-08T03:27:48.931Z | 2025-11-08T03:27:48.931Z | |
| cve-2025-12193 | Mang Board WP <= 2.3.1 - Reflected Cross-Site Scripting |
kitae-park |
Mang Board WP |
2025-11-08T03:27:48.543Z | 2025-11-08T03:27:48.543Z | |
| cve-2025-11972 | Tag, Category, and Taxonomy Manager – AI Autotagger wi… |
stevejburge |
Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI |
2025-11-08T03:27:48.135Z | 2025-11-08T03:27:48.135Z | |
| cve-2025-7663 | Ovatheme Events Manager <= 1.8.6 - Missing Authorization |
ovatheme |
Ovatheme Events Manager |
2025-11-08T03:27:47.659Z | 2025-11-08T03:27:47.659Z | |
| cve-2025-12353 | WPFunnels <= 3.6.2 - Unauthorized User Registration |
getwpfunnels |
Easy WordPress Funnel Builder To Collect Leads And Increase Sales – WPFunnels |
2025-11-08T03:27:47.222Z | 2025-11-08T03:27:47.222Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-12919 | EverShop Order Order.resolvers.js resource injection |
n/a |
EverShop |
2025-11-09T20:02:06.116Z | 2025-11-09T20:02:06.116Z | |
| cve-2025-12918 | yungifez Skuul School Management System View Fee Invoi… |
yungifez |
Skuul School Management System |
2025-11-09T08:02:05.919Z | 2025-11-09T08:02:05.919Z | |
| cve-2025-12917 | TOZED ZLT T10 Reboot proc_post denial of service |
TOZED |
ZLT T10 |
2025-11-09T07:32:06.010Z | 2025-11-09T07:32:06.010Z | |
| cve-2025-40109 | N/A | crypto: rng - Ensure set_ent is always present |
Linux |
Linux |
2025-11-09T04:35:59.979Z | 2025-11-09T04:35:59.979Z |
| cve-2025-40108 | N/A | serial: qcom-geni: Fix blocked task |
Linux |
Linux |
2025-11-09T04:35:58.587Z | 2025-11-09T04:35:58.587Z |
| cve-2025-12916 | Sangfor Operation and Maintenance Security Management … |
Sangfor |
Operation and Maintenance Security Management System |
2025-11-08T23:32:05.812Z | 2025-11-08T23:32:05.812Z | |
| cve-2025-12915 | 70mai X200 Init Script file inclusion |
70mai |
X200 |
2025-11-08T23:02:06.006Z | 2025-11-08T23:02:06.006Z | |
| cve-2025-12914 | aaPanel BaoTa Backend database sql injection |
aaPanel |
BaoTa |
2025-11-08T21:32:06.077Z | 2025-11-08T21:32:06.077Z | |
| cve-2025-12913 | code-projects Responsive Hotel Site roomdel.php sql in… |
code-projects |
Responsive Hotel Site |
2025-11-08T20:02:06.080Z | 2025-11-08T20:02:06.080Z | |
| cve-2025-12837 | aThemes Addons for Elementor <= 1.1.5 - Authenticated … |
smub |
aThemes Addons for Elementor |
2025-11-08T09:28:10.706Z | 2025-11-08T09:28:10.706Z | |
| cve-2025-12643 | Saphali LiqPay for donate <= 1.0.2 - Authenticated (Co… |
saphali |
Saphali LiqPay for donate |
2025-11-08T09:28:10.300Z | 2025-11-08T09:28:10.300Z | |
| cve-2025-12399 | Alex Reservations: Smart Restaurant Booking <= 2.2.3 -… |
alexreservations |
Alex Reservations: Smart Restaurant Booking |
2025-11-08T09:28:11.905Z | 2025-11-08T09:28:11.905Z | |
| cve-2025-12092 | CYAN Backup <= 2.5.4 - Authenticated (Admin+) Arbitrar… |
gregross |
CYAN Backup |
2025-11-08T09:28:09.323Z | 2025-11-08T09:28:09.323Z | |
| cve-2025-11980 | Quick Featured Images <= 13.7.3 - Authenticated (Edito… |
kybernetikservices |
Quick Featured Images |
2025-11-08T09:28:09.878Z | 2025-11-08T09:28:09.878Z | |
| cve-2025-11967 | Mail Mint <= 1.18.10 - Authenticated (Admin+) Arbitrar… |
getwpfunnels |
Mail Mint – Newsletters, Email Marketing, Automation, WooCommerce Emails, Post Notification, and more |
2025-11-08T09:28:11.511Z | 2025-11-08T09:28:11.511Z | |
| cve-2025-11448 | Gallery Plugin for WordPress – Envira Photo Gallery <=… |
smub |
Gallery Plugin for WordPress – Envira Photo Gallery |
2025-11-08T09:28:11.104Z | 2025-11-08T09:28:11.104Z | |
| cve-2025-12099 | Academy LMS – WordPress LMS Plugin for Complete eLearn… |
academylms |
Academy LMS – WordPress LMS Plugin for Complete eLearning Solution |
2025-11-08T08:27:41.410Z | 2025-11-08T08:27:41.410Z | |
| cve-2025-12098 | Academy LMS Pro <= 3.3.8 - Unauthenticated Sensitive I… |
academylms |
Academy LMS Pro |
2025-11-08T08:27:42.051Z | 2025-11-08T08:27:42.051Z | |
| cve-2025-12621 | Flexible Refund and Return Order for WooCommerce <= 1.… |
wpdesk |
Flexible Refund and Return Order for WooCommerce |
2025-11-08T07:26:28.151Z | 2025-11-08T07:26:28.151Z | |
| cve-2025-12498 | EventPrime – Events Calendar, Bookings and Tickets <= … |
metagauss |
EventPrime – Events Calendar, Bookings and Tickets |
2025-11-08T06:39:56.156Z | 2025-11-08T06:39:56.156Z | |
| cve-2025-9334 | Better Find and Replace <= 1.7.7 - Authenticated (Subs… |
codesolz |
Better Find and Replace – AI-Powered Suggestions |
2025-11-08T05:52:43.249Z | 2025-11-08T05:52:43.249Z | |
| cve-2025-7663 | Ovatheme Events Manager <= 1.8.6 - Missing Authorization |
ovatheme |
Ovatheme Events Manager |
2025-11-08T03:27:47.659Z | 2025-11-08T03:27:47.659Z | |
| cve-2025-12353 | WPFunnels <= 3.6.2 - Unauthorized User Registration |
getwpfunnels |
Easy WordPress Funnel Builder To Collect Leads And Increase Sales – WPFunnels |
2025-11-08T03:27:47.222Z | 2025-11-08T03:27:47.222Z | |
| cve-2025-12193 | Mang Board WP <= 2.3.1 - Reflected Cross-Site Scripting |
kitae-park |
Mang Board WP |
2025-11-08T03:27:48.543Z | 2025-11-08T03:27:48.543Z | |
| cve-2025-12177 | Download Manager <= 3.3.30 - Unauthenticated Cron Trig… |
codename065 |
Download Manager |
2025-11-08T03:27:45.992Z | 2025-11-08T03:27:45.992Z | |
| cve-2025-12167 | Contact Form 7 AWeber Extension <= 0.1.42 - Missing Au… |
rnzo |
Contact Form 7 AWeber Extension |
2025-11-08T03:27:45.362Z | 2025-11-08T03:27:45.362Z | |
| cve-2025-12161 | Smart Auto Upload Images <= 1.2.0 - Authenticated (Con… |
burhandodhy |
Smart Auto Upload Images – Import External Images |
2025-11-08T03:27:48.931Z | 2025-11-08T03:27:48.931Z | |
| cve-2025-12125 | HTML Forms <= 1.5.5 - Authenticated (Admin+) Stored Cr… |
linksoftware |
HTML Forms – Simple WordPress Forms Plugin |
2025-11-08T03:27:50.508Z | 2025-11-08T03:27:50.508Z | |
| cve-2025-12112 | Insert Headers and Footers Code – HT Script <= 1.1.6 -… |
htplugins |
Insert Headers and Footers Code – HT Script |
2025-11-08T03:27:50.117Z | 2025-11-08T03:27:50.117Z | |
| cve-2025-12064 | WP2Social Auto Publish <= 2.4.7 - Reflected Cross-Site… |
f1logic |
WP2Social Auto Publish |
2025-11-08T03:27:46.417Z | 2025-11-08T03:27:46.417Z |
| ID | Description | Package | Published | Updated |
|---|---|---|---|---|
| pysec-2024-85 | Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD… | mindsdb | 2024-09-12T13:15:00Z | 2025-10-27T07:48:17.990031Z |
| pysec-2024-84 | Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD… | mindsdb | 2024-09-12T13:15:00Z | 2025-10-27T07:48:17.870421Z |
| pysec-2024-83 | Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD… | mindsdb | 2024-09-12T13:15:00Z | 2025-10-27T07:48:17.746372Z |
| pysec-2024-82 | Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB… | mindsdb | 2024-09-12T13:15:00Z | 2025-10-27T07:48:17.624467Z |
| pysec-2023-278 | MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1… | mindsdb | 2023-12-11T21:15:00Z | 2025-10-27T07:48:17.326672Z |
| pysec-2020-220 | A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll… | ansible | 2020-10-05T14:15:00Z | 2025-10-31T04:43:53.616247Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-49728 | Malicious code in yuni-wajit63-riris (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49727 | Malicious code in yuni-tomat18-riris (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49726 | Malicious code in yuni-tiwul39-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49725 | Malicious code in yuni-tempe47-miaww (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49724 | Malicious code in yuni-telurtahu97-sluey (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49723 | Malicious code in yuni-tek50-ruro (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49722 | Malicious code in yuni-tahu61-tititugel (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49721 | Malicious code in yuni-serimuka97-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49720 | Malicious code in yuni-sego66-breki (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49719 | Malicious code in yuni-sate78-ruro (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49718 | Malicious code in yuni-saguer85-miaww (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49717 | Malicious code in yuni-saguer45-riris (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49716 | Malicious code in yuni-rujaksoto78-riris (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49715 | Malicious code in yuni-rujaksoto51-breki (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49714 | Malicious code in yuni-pecel20-sluey (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49713 | Malicious code in yuni-oncom3-miaww (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49712 | Malicious code in yuni-nasiuduk36-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49711 | Malicious code in yuni-nasi61-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49710 | Malicious code in yuni-nasi3-breki (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49709 | Malicious code in yuni-moci49-breki (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49708 | Malicious code in yuni-mendut43-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49707 | Malicious code in yuni-lontong21-ruro (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49706 | Malicious code in yuni-lodeh9-ruro (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49705 | Malicious code in yuni-lodeh57-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49704 | Malicious code in yuni-liwet93-pore (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49703 | Malicious code in yuni-lapis88-ruro (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49702 | Malicious code in yuni-lapis21-sluey (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49701 | Malicious code in yuni-kupang42-riris (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49700 | Malicious code in yuni-kue20-sukiwir (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| mal-2025-49699 | Malicious code in yuni-kolak62-sluey (npm) | 2025-11-09T18:30:25Z | 2025-11-09T18:30:25Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2491 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-11-05T23:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2025-2481 | Apple Xcode: Mehrere Schwachstellen | 2025-11-03T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2480 | Apple Safari: Mehrere Schwachstellen | 2025-11-03T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2475 | Apple macOS: Mehrere Schwachstellen | 2025-11-03T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2473 | Apple iOS: Mehrere Schwachstellen | 2025-11-03T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2469 | Redis: Schwachstelle ermöglicht Codeausführung | 2025-11-02T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2450 | Linux Kernel: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2445 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2444 | Dell Secure Connect Gateway: Mehrere Schwachstellen | 2025-10-29T23:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2441 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-10-29T23:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2436 | Xwayland und X.Org X11: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2025-10-28T23:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2427 | strongSwan (eap-mschapv2 plugin): Schwachstelle ermöglicht Codeausführung und DoS | 2025-10-27T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2420 | Apache Tomcat: Mehrere Schwachstellen | 2025-10-27T23:00:00.000+00:00 | 2025-10-28T23:00:00.000+00:00 |
| wid-sec-w-2025-2416 | Proxmox Backup Server: Mehrere Schwachstellen | 2025-10-26T23:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2407 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-10-26T23:00:00.000+00:00 | 2025-10-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2403 | Ubiquiti UniFi: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-10-23T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2398 | Moxa Switch: Mehrere Schwachstellen | 2025-10-23T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2395 | Rancher Manager: Mehrere Schwachstellen | 2025-10-23T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2392 | Internet Systems Consortium BIND: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-26T23:00:00.000+00:00 |
| wid-sec-w-2025-2391 | OpenBao: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2390 | PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2388 | MongoDB: Schwachstelle ermöglicht Privilegieneskalation | 2025-10-22T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2386 | Unbound: Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2385 | Drupal Module: Mehrere Schwachstellen | 2025-10-22T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2375 | Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-10-21T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2365 | Oracle Java SE: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2344 | Checkmk: Schwachstelle ermöglicht Cross-Site Scripting | 2025-10-20T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2339 | ImageMagick (BMP decoder): Schwachstelle ermöglicht Denial of Service | 2025-10-19T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2334 | Squid: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Offenlegung von Informationen | 2025-10-16T22:00:00.000+00:00 | 2025-11-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2322 | Samba: Mehrere Schwachstellen | 2025-10-15T22:00:00.000+00:00 | 2025-10-19T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:19927 | Red Hat Security Advisory: runc security update | 2025-11-07T18:11:41+00:00 | 2025-11-08T00:23:45+00:00 |
| rhsa-2025:19923 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.17 Images Update | 2025-11-07T12:03:46+00:00 | 2025-11-07T21:05:32+00:00 |
| rhsa-2025:19925 | Red Hat Security Advisory: Red Hat build of Keycloak 26.0.17 Update | 2025-11-07T12:03:36+00:00 | 2025-11-07T21:05:32+00:00 |
| rhsa-2025:19920 | Red Hat Security Advisory: webkitgtk4 security update | 2025-11-06T17:05:08+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19918 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T17:01:23+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19914 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T17:01:08+00:00 | 2025-11-06T23:43:22+00:00 |
| rhsa-2025:19916 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T17:00:48+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19919 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T16:59:38+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19913 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T16:54:08+00:00 | 2025-11-06T23:43:22+00:00 |
| rhsa-2025:19911 | Red Hat Security Advisory: qt5-qt3d security update | 2025-11-06T16:46:28+00:00 | 2025-11-06T23:43:26+00:00 |
| rhsa-2025:19915 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-06T16:45:43+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19809 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security update | 2025-11-06T16:32:43+00:00 | 2025-11-07T21:09:50+00:00 |
| rhsa-2025:19810 | Red Hat Security Advisory: Red Hat JBoss Web Server 6.1.3 release and security update | 2025-11-06T16:24:24+00:00 | 2025-11-07T21:09:50+00:00 |
| rhsa-2025:19912 | Red Hat Security Advisory: bind security update | 2025-11-06T15:50:53+00:00 | 2025-11-06T23:43:24+00:00 |
| rhsa-2025:19906 | Red Hat Security Advisory: mingw-libtiff security update | 2025-11-06T13:13:52+00:00 | 2025-11-07T21:37:55+00:00 |
| rhsa-2025:19909 | Red Hat Security Advisory: tigervnc security update | 2025-11-06T13:08:32+00:00 | 2025-11-06T23:42:50+00:00 |
| rhsa-2025:19306 | Red Hat Security Advisory: OpenShift Container Platform 4.15.59 bug fix and security update | 2025-11-06T11:55:24+00:00 | 2025-11-06T22:56:40+00:00 |
| rhsa-2025:19886 | Red Hat Security Advisory: kernel security update | 2025-11-06T09:16:12+00:00 | 2025-11-06T21:43:59+00:00 |
| rhsa-2025:19851 | Red Hat Security Advisory: sssd security update | 2025-11-06T07:32:57+00:00 | 2025-11-07T19:42:33+00:00 |
| rhsa-2025:19852 | Red Hat Security Advisory: sssd security update | 2025-11-06T06:56:57+00:00 | 2025-11-07T19:42:33+00:00 |
| rhsa-2025:19859 | Red Hat Security Advisory: sssd security update | 2025-11-06T05:15:36+00:00 | 2025-11-07T19:42:38+00:00 |
| rhsa-2025:19849 | Red Hat Security Advisory: sssd security update | 2025-11-06T05:05:07+00:00 | 2025-11-07T19:42:32+00:00 |
| rhsa-2025:19854 | Red Hat Security Advisory: sssd security update | 2025-11-06T04:15:11+00:00 | 2025-11-07T19:42:37+00:00 |
| rhsa-2025:19853 | Red Hat Security Advisory: sssd security update | 2025-11-06T03:32:46+00:00 | 2025-11-07T19:42:36+00:00 |
| rhsa-2025:19848 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:35:01+00:00 | 2025-11-07T19:42:30+00:00 |
| rhsa-2025:19847 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:34:26+00:00 | 2025-11-07T19:42:30+00:00 |
| rhsa-2025:19850 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:33:26+00:00 | 2025-11-07T19:42:32+00:00 |
| rhsa-2025:19856 | Red Hat Security Advisory: Satellite 6.15.5.6 Async Update | 2025-11-06T02:27:41+00:00 | 2025-11-06T23:24:10+00:00 |
| rhsa-2025:19855 | Red Hat Security Advisory: Satellite 6.16.5.5 Async Update | 2025-11-06T02:27:26+00:00 | 2025-11-06T23:24:09+00:00 |
| rhsa-2025:19835 | Red Hat Security Advisory: bind security update | 2025-11-06T01:58:21+00:00 | 2025-11-07T15:56:02+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-60711 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-31T07:00:00.000Z |
| msrc_cve-2025-59503 | Azure Compute Resource Provider Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-28T07:00:00.000Z |
| msrc_cve-2025-59501 | Microsoft Configuration Manager Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-24T07:00:00.000Z |
| msrc_cve-2025-59500 | Azure Notification Service Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-23T07:00:00.000Z |
| msrc_cve-2025-59295 | Windows URL Parsing Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-23T07:00:00.000Z |
| msrc_cve-2025-59287 | Windows Server Update Service (WSUS) Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-24T07:00:00.000Z |
| msrc_cve-2025-59273 | Azure Event Grid System Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-23T07:00:00.000Z |
| msrc_cve-2025-59233 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-15T07:00:00.000Z |
| msrc_cve-2025-55676 | Windows USB Video Class System Driver Information Disclosure Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-23T07:00:00.000Z |
| msrc_cve-2025-55320 | Configuration Manager Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-17T07:00:00.000Z |
| msrc_cve-2025-55315 | ASP.NET Security Feature Bypass Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-22T07:00:00.000Z |
| msrc_cve-2025-25004 | PowerShell Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-21T07:00:00.000Z |
| msrc_cve-2025-8677 | Resource exhaustion via malformed DNSKEY handling | 2025-10-02T00:00:00.000Z | 2025-10-25T01:01:37.000Z |
| msrc_cve-2025-8291 | ZIP64 End of Central Directory (EOCD) Locator record offset not checked | 2025-10-02T00:00:00.000Z | 2025-10-10T01:02:05.000Z |
| msrc_cve-2025-62813 | LZ4 through 1.10.0 allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact when the application processes untrusted LZ4 frames. For example, LZ4F_createCDict_advanced in lib/lz4frame.c mishandles NULL checks. | 2025-10-02T00:00:00.000Z | 2025-10-24T01:02:42.000Z |
| msrc_cve-2025-62518 | astral-tokio-tar Vulnerable to PAX Header Desynchronization | 2025-10-02T00:00:00.000Z | 2025-10-25T14:01:53.000Z |
| msrc_cve-2025-62231 | Xorg: xmayland: value overflow in xkbsetcompatmap() | 2025-10-02T00:00:00.000Z | 2025-10-31T01:11:26.000Z |
| msrc_cve-2025-62230 | Xorg: xwayland: use-after-free in xkb client resource removal | 2025-10-02T00:00:00.000Z | 2025-11-02T01:02:49.000Z |
| msrc_cve-2025-62229 | Xorg: xmayland: use-after-free in xpresentnotify structure creation | 2025-10-02T00:00:00.000Z | 2025-10-31T01:11:31.000Z |
| msrc_cve-2025-62168 | Squid vulnerable to information disclosure via authentication credential leakage in error handling | 2025-10-02T00:00:00.000Z | 2025-10-19T01:01:13.000Z |
| msrc_cve-2025-61985 | ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used. | 2025-10-02T00:00:00.000Z | 2025-10-08T01:02:00.000Z |
| msrc_cve-2025-61984 | ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file. (A configuration file that provides a complete literal username is not categorized as an untrusted source.) | 2025-10-02T00:00:00.000Z | 2025-10-08T01:02:05.000Z |
| msrc_cve-2025-61725 | Excessive CPU consumption in ParseAddress in net/mail | 2025-10-02T00:00:00.000Z | 2025-10-31T01:05:04.000Z |
| msrc_cve-2025-61724 | Excessive CPU consumption in Reader.ReadResponse in net/textproto | 2025-10-02T00:00:00.000Z | 2025-10-31T01:07:11.000Z |
| msrc_cve-2025-61723 | Quadratic complexity when parsing some invalid inputs in encoding/pem | 2025-10-02T00:00:00.000Z | 2025-10-31T01:07:43.000Z |
| msrc_cve-2025-61107 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet. | 2025-10-02T00:00:00.000Z | 2025-10-31T01:11:07.000Z |
| msrc_cve-2025-61106 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2025-10-31T01:10:59.000Z |
| msrc_cve-2025-61105 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2025-10-31T01:11:21.000Z |
| msrc_cve-2025-61104 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_unknown_tlv function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2025-11-02T01:02:44.000Z |
| msrc_cve-2025-61103 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_lan_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2025-10-31T01:10:51.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-308-05 | IDIS ICM Viewer | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-04 | Radiometrics VizAir | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-03 | Delta Electronics CNCSoft-G2 | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-02 | Survision License Plate Recognition Camera | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| icsa-25-308-01 | Fuji Electric Monitouch V-SFT-6 | 2025-11-04T07:00:00.000000Z | 2025-11-04T07:00:00.000000Z |
| va-25-304-02 | Restaurant Brands International assistant platform multiple vulnerabilities | 2025-10-31T17:02:13Z | 2025-10-31T17:02:13Z |
| va-25-304-01 | ELOG multiple vulnerabilities | 2025-10-31T16:57:24Z | 2025-10-31T16:57:24Z |
| icsa-25-303-02 | Hitachi Energy TropOS | 2025-10-30T06:00:00.000000Z | 2025-10-30T06:00:00.000000Z |
| icsa-25-303-01 | International Standards Organization ISO 15118 | 2025-10-30T05:00:00.000000Z | 2025-10-30T05:00:00.000000Z |
| icsma-25-301-01 | Vertikal Systems Hospital Manager Backend Services | 2025-10-28T06:00:00.000000Z | 2025-10-28T06:00:00.000000Z |
| icsma-25-296-01 | NIHON KOHDEN Central Monitor CNS-6201 | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-04 | Delta Electronics ASDA-Soft | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-03 | Veeder-Root TLS4B Automatic Tank Gauge System | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-02 | ASKI Energy ALS-Mini-S8 and ALS-Mini-S4 | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-01 | AutomationDirect Productivity Suite | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| va-25-296-01 | Frontier Airlines website publicly available email address validation | 2025-10-23T00:00:00Z | 2025-10-23T00:00:00Z |
| va-25-297-01 | IBM DOORS Next Generation multiple vulnerabilities | 2025-10-22T18:45:47Z | 2025-10-22T18:45:47Z |
| icsma-25-294-01 | Oxford Nanopore Technologies MinKNOW | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-25-294-06 | Raisecomm RAX701-GC Series | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-25-294-05 | CloudEdge Online Cameras and App | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-25-294-02 | Rockwell Automation Compact GuardLogix 5370 | 2025-10-21T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-294-01 | Rockwell Automation 1783-NATR | 2025-10-21T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-289-04 | Rockwell Automation ArmorStart AOP | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-289-03 | Rockwell Automation FactoryTalk ViewPoint | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-289-02 | Rockwell Automation FactoryTalk Linx | 2025-10-16T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-289-01 | Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7 | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-301-01 | Schneider Electric EcoStruxure | 2025-10-14T07:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-289-10 | Siemens HyperLynx and Industrial Edge App Publisher | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-09 | Siemens TeleControl Server Basic | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-08 | Siemens SINEC NMS | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-ise-radsupress-dos-8yf3jthh | Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability | 2025-11-05T16:00:00+00:00 | 2025-11-05T16:00:00+00:00 |
| cisco-sa-ise-multiple-vulns-o9beswjh | Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities | 2025-11-05T16:00:00+00:00 | 2025-11-05T16:00:00+00:00 |
| cisco-sa-cc-unauth-rce-qen8h7mq | Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities | 2025-11-05T16:00:00+00:00 | 2025-11-05T16:00:00+00:00 |
| cisco-sa-cc-mult-vuln-gk4tfxsn | Multiple Cisco Contact Center Products Vulnerabilities | 2025-11-05T16:00:00+00:00 | 2025-11-05T16:00:00+00:00 |
| cisco-sa-snort3-mime-vulns-ttl8pgvh | Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities | 2025-10-15T16:00:00+00:00 | 2025-10-15T16:00:00+00:00 |
| cisco-sa-roomos-inf-disc-qggsbxam | Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability | 2025-10-15T16:00:00+00:00 | 2025-10-15T16:00:00+00:00 |
| cisco-sa-phone-dos-fpyjlv7a | Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities | 2025-10-15T16:00:00+00:00 | 2025-10-15T16:00:00+00:00 |
| cisco-sa-http-code-exec-wmfp3h3o | Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability | 2025-09-25T16:00:00+00:00 | 2025-11-06T15:50:51+00:00 |
| cisco-sa-asaftd-webvpn-z5xp8eub | Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability | 2025-09-25T16:00:00+00:00 | 2025-11-06T15:50:54+00:00 |
| cisco-sa-asaftd-webvpn-yrootuw | Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability | 2025-09-25T16:00:00+00:00 | 2025-11-06T15:50:55+00:00 |
| cisco-sa-secboot-uqfd8avc | Cisco IOS XE Software Secure Boot Bypass Vulnerabilities | 2025-09-24T16:00:00+00:00 | 2025-10-15T15:57:29+00:00 |
| cisco-sa-broadworks-xss-o696ymra | Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability | 2025-07-02T16:00:00+00:00 | 2025-10-21T15:13:31+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| sca-2025-0014 | CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC | 2025-11-03T11:00:00.000Z | 2025-11-03T14:00:00.000Z |
| sca-2025-0013 | Vulnerabilities affecting SICK TLOC100-100 | 2025-10-27T14:00:00.000Z | 2025-10-27T14:00:00.000Z |
| sca-2025-0012 | Sudo vulnerability affects SICK SID products | 2025-10-27T11:00:00.000Z | 2025-10-27T14:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| oxdc-adv-2025-0001 | OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001 | 2025-10-31T00:00:00+02:00 | 2025-10-31T00:00:00+00:00 |
| oxas-adv-2025-0002 | OX App Suite Security Advisory OXAS-ADV-2025-0002 | 2025-08-12T00:00:00+02:00 | 2025-10-31T00:00:00+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000103 | Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series" | 2025-11-07T15:39+09:00 | 2025-11-07T15:39+09:00 |
| jvndb-2025-000102 | CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection | 2025-11-07T14:55+09:00 | 2025-11-07T14:55+09:00 |
| jvndb-2025-000101 | GROWI vulnerable to stored cross-site scripting | 2025-11-06T13:45+09:00 | 2025-11-06T13:45+09:00 |
| jvndb-2025-017972 | Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series | 2025-11-04T16:37+09:00 | 2025-11-04T16:37+09:00 |
| jvndb-2025-000100 | Multiple Roboticsware products register Windows services with unquoted file paths | 2025-11-04T14:17+09:00 | 2025-11-04T14:17+09:00 |
| jvndb-2025-000098 | Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path | 2025-11-04T13:51+09:00 | 2025-11-04T13:51+09:00 |
| jvndb-2025-000099 | Progress Flowmon vulnerable to authenticated OS command injection | 2025-11-04T12:47+09:00 | 2025-11-04T12:47+09:00 |
| jvndb-2025-000096 | Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries | 2025-10-29T14:17+09:00 | 2025-10-29T14:17+09:00 |
| jvndb-2025-000095 | MZK-DP300N uses hard-coded credentials | 2025-10-28T14:04+09:00 | 2025-10-28T14:04+09:00 |
| jvndb-2025-000093 | Multiple stored cross-site scripting vulnerabilities in Pleasanter | 2025-10-24T15:11+09:00 | 2025-10-24T15:11+09:00 |
| jvndb-2025-000084 | GROWI vulnerable to cross-site scripting | 2025-10-22T15:44+09:00 | 2025-10-22T15:44+09:00 |
| jvndb-2025-000091 | I-O DATA NarSuS App registers a Windows service with an unquoted file path | 2025-10-22T15:04+09:00 | 2025-10-22T15:04+09:00 |
| jvndb-2025-000090 | Multiple stored cross-site scripting vulnerabilities in Movable Type | 2025-10-22T13:54+09:00 | 2025-10-22T13:54+09:00 |
| jvndb-2025-000088 | Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel | 2025-10-20T16:17+09:00 | 2025-10-22T10:06+09:00 |
| jvndb-2025-000092 | ETERNUS SF vulnerable to incorrect default permissions | 2025-10-20T14:20+09:00 | 2025-10-20T14:20+09:00 |
| jvndb-2025-000089 | Installer of AutoDownloader may insecurely load Dynamic Link Libraries | 2025-10-17T13:38+09:00 | 2025-10-17T13:38+09:00 |
| jvndb-2025-000074 | Multiple vulnerabilities in desknet's NEO | 2025-10-16T17:30+09:00 | 2025-10-16T17:30+09:00 |
| jvndb-2025-000076 | Multiple vulnerabilities in ChatLuck | 2025-10-16T17:17+09:00 | 2025-10-16T17:17+09:00 |
| jvndb-2025-000087 | Ruijie Networks RG-EST300 undocumented SSH functionality | 2025-10-16T14:19+09:00 | 2025-10-16T14:19+09:00 |
| jvndb-2025-016124 | Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal | 2025-10-16T11:16+09:00 | 2025-10-16T11:16+09:00 |
| jvndb-2025-000085 | Multiple RSUPPORT products may insecurely load Dynamic Link Libraries | 2025-10-15T15:55+09:00 | 2025-10-15T15:55+09:00 |
| jvndb-2025-000086 | Phoenix Contact CHARX SEC-3xxx vulnerable to code injection | 2025-10-15T15:54+09:00 | 2025-10-15T15:54+09:00 |
| jvndb-2025-000083 | BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path | 2025-10-10T13:56+09:00 | 2025-10-10T13:56+09:00 |
| jvndb-2025-015451 | Multiple vulnerabilities in FUJI Electric V-SFT | 2025-10-09T13:39+09:00 | 2025-10-09T13:39+09:00 |
| jvndb-2025-000082 | The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries | 2025-10-06T15:38+09:00 | 2025-10-06T15:38+09:00 |
| jvndb-2025-015061 | Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation | 2025-10-06T13:52+09:00 | 2025-10-06T13:52+09:00 |
| jvndb-2025-014967 | Multiple vulnerabilities in multiple Keyence products | 2025-10-03T11:19+09:00 | 2025-10-03T11:19+09:00 |
| jvndb-2025-014793 | NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference | 2025-10-01T11:35+09:00 | 2025-10-27T12:28+09:00 |
| jvndb-2025-014642 | Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-09-30T11:50+09:00 | 2025-09-30T11:50+09:00 |
| jvndb-2025-000081 | DataSpider Servista improper restriction of XML external entity references | 2025-09-29T14:44+09:00 | 2025-10-07T16:54+09:00 |
| ID | Description | Updated |
|---|
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| gcve-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010 | 7.3 (v3.1) | Unitree Multiple Robotic Products Command Injection |
Unitree |
Go2 |
2025-09-26T06:53:49.585Z | 2025-09-26T15:16:57.586Z |
| gcve-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001 | 4.3 (v3.1) | Unauthenticated leak of sensitive information affectin… |
Brother Industries, Ltd |
HL-L8260CDN |
2025-08-12T15:23:00.577Z | 2025-08-15T05:53:23.017Z |