Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-6rw7-vpxm-498p | qs's arrayLimit bypass in its bracket notation allows DoS via memory exhaustion | 2025-12-30T21:02:54Z | 2025-12-30T21:02:54Z |
| ghsa-2267-xqcf-gw2m | FacturaScripts is Vulnerable to Stored Cross-Site Scripting (XSS) via XML File Upload | 2025-12-30T20:52:21Z | 2025-12-31T22:18:28Z |
| ghsa-6mp4-q625-mxjp | YOURLS is vulnerable to XSS through JSONP and Callback request parameters | 2025-12-30T19:34:26Z | 2025-12-30T19:34:26Z |
| ghsa-xphh-5v4r-r3rx | PsiTransfer has Zip Slip Path Traversal via TAR Archive Download | 2025-12-30T19:25:04Z | 2025-12-30T19:25:04Z |
| ghsa-pc98-fxf5-853j | A security flaw has been discovered in BiggiDroid Simple PHP CMS 1.0. This impacts an unknown funct… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-g7wc-fgqc-j967 | A weakness has been identified in Edimax BR-6208AC 1.02/1.03. Affected by this issue is the functio… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-f643-8m38-xc64 | A divide-by-zero in the encryption/decryption routines of GNU Recutils v1.9 allows attackers to cau… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-cfg2-4jfq-43g5 | A NULL pointer dereference in the src/path.c component of GNU Unrtf v0.21.10 allows attackers to ca… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-3p4c-m632-jv39 | Authentication Bypass in fosrl/pangolin v1.6.2 and before allows attackers to access Pangolin resou… | 2025-12-30T18:30:20Z | 2025-12-30T18:30:20Z |
| ghsa-xvq8-m37c-gmmv | A security flaw has been discovered in Edimax BR-6208AC 1.02/1.03. Affected by this vulnerability i… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-v9m5-q826-6fwj | Cross-Site Request Forgery (CSRF) vulnerability in ConoHa by GMO WING WordPress Migrator allows Upl… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-rj5w-qvm9-38mq | Missing Authorization vulnerability in SiteLock SiteLock Security allows Exploiting Incorrectly Con… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-mrp8-v53m-q9q9 | JD Cloud NAS routers AX1800 (4.3.1.r4308 and earlier), AX3000 (4.3.1.r4318 and earlier), AX6600 (4.… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:20Z |
| ghsa-jc4g-746q-772h | A vulnerability was identified in Edimax BR-6208AC 1.02/1.03. Affected is the function formStaDrvSe… | 2025-12-30T18:30:19Z | 2025-12-30T21:30:32Z |
| ghsa-j3gq-w4jw-w88g | An issue was discovered in Zeroheight (SaaS) prior to 2025-06-13. A legacy user creation API pathwa… | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-f4fr-j83v-v22w | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-8hj8-8wm2-wh7h | Cross-Site Request Forgery (CSRF) vulnerability in Merv Barrett Import into Easy Property Listings … | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-5f5g-3v7q-886j | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-58wv-qpwh-r6rr | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T18:30:19Z | 2025-12-30T18:30:19Z |
| ghsa-rfr5-8625-hm35 | Missing Authorization vulnerability in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Co… | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-pw2q-c8xj-w9fw | A vulnerability was determined in Tenda W6-S 1.0.0.4(510). This impacts an unknown function of the … | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-h575-v39p-fv76 | nixseparatedebuginfod before v0.4.1 is vulnerable to Directory Traversal. | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-grrf-q8mm-c5x7 | A vulnerability was found in Tenda W6-S 1.0.0.4(510). This affects the function TendaAte of the fil… | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-g5pq-3mc4-93fw | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-cv94-mq7f-9hch | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-3vh3-xm22-984m | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-30T18:30:18Z | 2025-12-30T18:30:18Z |
| ghsa-59pp-r3rg-353g | Composer is vulnerable to ANSI sequence injection | 2025-12-30T17:44:10Z | 2025-12-31T22:17:32Z |
| ghsa-x4m5-4cw8-vc44 | axios-cache-interceptor Vulnerable to Cache Poisoning via Ignored HTTP Vary Header | 2025-12-30T15:37:55Z | 2025-12-30T15:37:55Z |
| ghsa-8wpr-639p-ccrj | Nest has a Fastify URL Encoding Middleware Bypass (TOCTOU) | 2025-12-30T15:32:44Z | 2025-12-30T15:32:44Z |
| ghsa-9cg9-4h4f-j6fg | phpMyFAQ has unauthenticated config backup download via /api/setup/backup | 2025-12-30T15:31:19Z | 2025-12-30T15:31:19Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2023-54324 | N/A | dm: fix a race condition in retrieve_deps |
Linux |
Linux |
2025-12-30T12:37:08.337Z | 2025-12-30T12:37:08.337Z |
| cve-2023-54323 | N/A | cxl/pmem: Fix nvdimm registration races |
Linux |
Linux |
2025-12-30T12:37:07.656Z | 2025-12-30T12:37:07.656Z |
| cve-2022-50889 | N/A | dm integrity: Fix UAF in dm_integrity_dtr() |
Linux |
Linux |
2025-12-30T12:37:06.957Z | 2025-12-30T12:37:06.957Z |
| cve-2022-50888 | N/A | remoteproc: qcom: q6v5: Fix potential null-ptr-deref i… |
Linux |
Linux |
2025-12-30T12:37:06.269Z | 2025-12-30T12:37:06.269Z |
| cve-2022-50887 | N/A | regulator: core: fix unbalanced of node refcount in re… |
Linux |
Linux |
2025-12-30T12:37:05.505Z | 2025-12-30T12:37:05.505Z |
| cve-2023-54322 | N/A | arm64: set __exception_irq_entry with __irq_entry as a… |
Linux |
Linux |
2025-12-30T12:34:15.446Z | 2025-12-30T12:34:15.446Z |
| cve-2023-54321 | N/A | driver core: fix potential null-ptr-deref in device_add() |
Linux |
Linux |
2025-12-30T12:34:14.793Z | 2025-12-30T12:34:14.793Z |
| cve-2023-54320 | N/A | platform/x86/amd: pmc: Fix memory leak in amd_pmc_stb_… |
Linux |
Linux |
2025-12-30T12:34:14.133Z | 2025-12-30T12:34:14.133Z |
| cve-2023-54319 | N/A | pinctrl: at91-pio4: check return value of devm_kasprintf() |
Linux |
Linux |
2025-12-30T12:34:13.468Z | 2025-12-30T12:34:13.468Z |
| cve-2022-50886 | N/A | mmc: toshsd: fix return value check of mmc_add_host() |
Linux |
Linux |
2025-12-30T12:34:12.782Z | 2025-12-30T12:34:12.782Z |
| cve-2022-50885 | N/A | RDMA/rxe: Fix NULL-ptr-deref in rxe_qp_do_cleanup() wh… |
Linux |
Linux |
2025-12-30T12:34:12.093Z | 2025-12-30T12:34:12.093Z |
| cve-2022-50884 | N/A | drm: Prevent drm_copy_field() to attempt copying a NUL… |
Linux |
Linux |
2025-12-30T12:34:11.390Z | 2025-12-30T12:34:11.390Z |
| cve-2025-15248 | sunhailin12315 product-review 商品评价系统 Write a Review cr… |
sunhailin12315 |
product-review 商品评价系统 |
2025-12-30T12:32:10.563Z | 2025-12-30T12:52:00.610Z | |
| cve-2023-54318 | N/A | net/smc: use smc_lgr_list.lock to protect smc_lgr_list… |
Linux |
Linux |
2025-12-30T12:23:48.134Z | 2025-12-30T12:23:48.134Z |
| cve-2023-54317 | N/A | dm flakey: don't corrupt the zero page |
Linux |
Linux |
2025-12-30T12:23:47.232Z | 2025-12-30T12:23:47.232Z |
| cve-2023-54316 | N/A | refscale: Fix uninitalized use of wait_queue_head_t |
Linux |
Linux |
2025-12-30T12:23:46.526Z | 2025-12-30T12:23:46.526Z |
| cve-2023-54315 | N/A | powerpc/powernv/sriov: perform null check on iov befor… |
Linux |
Linux |
2025-12-30T12:23:45.858Z | 2025-12-30T12:23:45.858Z |
| cve-2023-54314 | N/A | media: af9005: Fix null-ptr-deref in af9005_i2c_xfer |
Linux |
Linux |
2025-12-30T12:23:45.179Z | 2025-12-30T12:23:45.179Z |
| cve-2023-54313 | N/A | ovl: fix null pointer dereference in ovl_get_acl_rcu() |
Linux |
Linux |
2025-12-30T12:23:44.484Z | 2025-12-30T12:23:44.484Z |
| cve-2023-54312 | N/A | samples/bpf: Fix buffer overflow in tcp_basertt |
Linux |
Linux |
2025-12-30T12:23:43.828Z | 2025-12-30T12:23:43.828Z |
| cve-2023-54311 | N/A | ext4: fix deadlock when converting an inline directory… |
Linux |
Linux |
2025-12-30T12:23:43.174Z | 2025-12-30T12:23:43.174Z |
| cve-2023-54310 | N/A | scsi: message: mptlan: Fix use after free bug in mptla… |
Linux |
Linux |
2025-12-30T12:23:42.509Z | 2025-12-30T12:23:42.509Z |
| cve-2023-54309 | N/A | tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpm… |
Linux |
Linux |
2025-12-30T12:23:41.834Z | 2025-12-30T12:23:41.834Z |
| cve-2023-54308 | N/A | ALSA: ymfpci: Create card with device-managed snd_devm… |
Linux |
Linux |
2025-12-30T12:23:41.163Z | 2025-12-30T12:23:41.163Z |
| cve-2023-54307 | N/A | ptp_qoriq: fix memory leak in probe() |
Linux |
Linux |
2025-12-30T12:23:40.491Z | 2025-12-30T12:23:40.491Z |
| cve-2023-54306 | N/A | net: tls: avoid hanging tasks on the tx_lock |
Linux |
Linux |
2025-12-30T12:23:39.833Z | 2025-12-30T12:23:39.833Z |
| cve-2023-54305 | N/A | ext4: refuse to create ea block when umounted |
Linux |
Linux |
2025-12-30T12:23:39.163Z | 2025-12-30T12:23:39.163Z |
| cve-2023-54304 | N/A | firmware: meson_sm: fix to avoid potential NULL pointe… |
Linux |
Linux |
2025-12-30T12:23:38.495Z | 2025-12-30T12:23:38.495Z |
| cve-2023-54303 | N/A | bpf: Disable preemption in bpf_perf_event_output |
Linux |
Linux |
2025-12-30T12:23:37.827Z | 2025-12-30T12:23:37.827Z |
| cve-2023-54302 | N/A | RDMA/irdma: Fix data race on CQP completion stats |
Linux |
Linux |
2025-12-30T12:23:37.165Z | 2025-12-30T12:23:37.165Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-66824 | N/A | A Stored Cross-Site Scripting (XSS) vulnerability… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T18:52:27.447Z |
| cve-2025-15264 | FeehiCMS TimThumb timthumb.php server-side request forgery |
n/a |
FeehiCMS |
2025-12-30T19:02:05.997Z | 2025-12-30T19:19:34.871Z | |
| cve-2025-15263 | BiggiDroid Simple PHP CMS Admin Login login.php sql in… |
BiggiDroid |
Simple PHP CMS |
2025-12-30T18:32:09.366Z | 2025-12-30T19:20:42.260Z | |
| cve-2025-65411 | N/A | A NULL pointer dereference in the src/path.c comp… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T17:39:43.714Z |
| cve-2025-65409 | N/A | A divide-by-zero in the encryption/decryption rou… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T17:46:21.953Z |
| cve-2025-56332 | N/A | Authentication Bypass in fosrl/pangolin v1.6.2 an… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T18:00:09.859Z |
| cve-2025-15262 | BiggiDroid Simple PHP CMS Site Logo edit.php unrestric… |
BiggiDroid |
Simple PHP CMS |
2025-12-30T18:02:09.475Z | 2025-12-30T19:21:53.687Z | |
| cve-2025-15258 | Edimax BR-6208AC Web-based Configuration formALGSetup … |
Edimax |
BR-6208AC |
2025-12-30T17:32:05.860Z | 2025-12-30T17:58:23.586Z | |
| cve-2025-69204 | ImageMagick converting a malicious MVG file to SVG cau… |
ImageMagick |
ImageMagick |
2025-12-30T16:56:32.469Z | 2025-12-30T17:54:44.445Z | |
| cve-2025-68950 | Magick's failure to limit MVG mutual references formin… |
ImageMagick |
ImageMagick |
2025-12-30T16:50:25.773Z | 2025-12-30T18:11:38.304Z | |
| cve-2025-68926 | RustFS has a gRPC Hardcoded Token Authentication Bypass |
rustfs |
rustfs |
2025-12-30T16:59:53.999Z | 2025-12-30T17:47:46.836Z | |
| cve-2025-68618 | Magick's failure to limit the depth of SVG file reads … |
ImageMagick |
ImageMagick |
2025-12-30T16:14:24.235Z | 2025-12-30T18:11:48.611Z | |
| cve-2025-66848 | N/A | JD Cloud NAS routers AX1800 (4.3.1.r4308 and earl… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T17:04:56.353Z |
| cve-2025-66103 | 6.5 (v3.1) | WordPress WPCal.io plugin <= 0.9.5.9 - Cross Site Scri… |
Revmakx |
WPCal.io |
2025-12-30T16:43:38.792Z | 2025-12-30T19:24:11.198Z |
| cve-2025-66094 | 6.5 (v3.1) | WordPress Yada Wiki plugin <= 3.5 - Cross Site Scripti… |
dmccan |
Yada Wiki |
2025-12-30T16:17:26.055Z | 2025-12-30T19:30:10.651Z |
| cve-2025-65925 | N/A | An issue was discovered in Zeroheight (SaaS) prio… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T16:27:34.310Z |
| cve-2025-62128 | 4.3 (v3.1) | WordPress SiteLock Security plugin <= 5.0.1 - Broken A… |
SiteLock |
SiteLock Security |
2025-12-30T16:23:46.871Z | 2025-12-30T19:25:36.389Z |
| cve-2025-62112 | 4.3 (v3.1) | WordPress Import into Easy Property Listings plugin <=… |
Merv Barrett |
Import into Easy Property Listings |
2025-12-30T16:21:30.852Z | 2025-12-30T19:29:13.709Z |
| cve-2025-59129 | 7.6 (v3.1) | WordPress Appointify plugin <= 1.0.8 - SQL Injection v… |
Appointify |
Appointify |
2025-12-30T16:51:35.844Z | 2025-12-30T17:58:51.901Z |
| cve-2025-52835 | 9.6 (v3.1) | WordPress WING WordPress Migrator plugin <= 1.1.9 - Cr… |
ConoHa by GMO |
WING WordPress Migrator |
2025-12-30T16:48:13.719Z | 2025-12-30T19:23:13.955Z |
| cve-2025-15257 | Edimax BR-6208AC Web-based Configuration formRoute com… |
Edimax |
BR-6208AC |
2025-12-30T17:02:06.973Z | 2025-12-30T17:44:20.951Z | |
| cve-2025-15256 | Edimax BR-6208AC Web-based Configuration formStaDrvSet… |
Edimax |
BR-6208AC |
2025-12-30T16:32:06.090Z | 2025-12-30T18:11:43.621Z | |
| cve-2025-67746 | Composer vulnerable to ANSI sequence injection |
composer |
composer |
2025-12-30T16:11:04.776Z | 2025-12-30T17:30:04.562Z | |
| cve-2025-66080 | 5.3 (v3.1) | WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-12-30T16:10:40.664Z | 2025-12-30T19:32:13.092Z |
| cve-2025-64528 | Users are able to find users by name even when `enable… |
discourse |
discourse |
2025-12-30T16:04:10.093Z | 2025-12-30T18:11:53.787Z | |
| cve-2025-64190 | 6.5 (v3.1) | WordPress XStore Core plugin < 5.6 - Cross Site Script… |
8theme.com |
XStore Core |
2025-12-30T16:00:52.385Z | 2025-12-30T19:41:50.835Z |
| cve-2025-63027 | 6.5 (v3.1) | WordPress WBC907 Core plugin <= 3.4.1 - Cross Site Scr… |
Webcreations907 |
WBC907 Core |
2025-12-30T16:03:32.421Z | 2025-12-30T19:35:47.965Z |
| cve-2025-62746 | 6.5 (v3.1) | WordPress Featured Video for WordPress – VideographyWP… |
CodeFlavors |
Featured Video for WordPress & VideographyWP |
2025-12-30T16:13:59.784Z | 2025-12-30T16:19:30.698Z |
| cve-2025-61557 | N/A | nixseparatedebuginfod before v0.4.1 is vulnerable… |
n/a |
n/a |
2025-12-30T00:00:00.000Z | 2025-12-30T16:12:08.097Z |
| cve-2025-15255 | Tenda W6-S R7websSsecurityHandler httpd stack-based overflow |
Tenda |
W6-S |
2025-12-30T16:02:07.019Z | 2025-12-30T18:11:58.975Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-reversing-labs-ba212840ea05ed7e | 2025-12-23T08:06:15Z | 2025-12-23T08:06:15Z | |
| mal-0000-reversing-labs-977713f4db85b44e | 2025-12-23T08:06:14Z | 2025-12-23T08:06:14Z | |
| mal-2025-192736 | Malicious code in elf-stats-bright-pinecone-706 (npm) | 2025-12-23T08:06:06Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-0af70a6f4df12109 | 2025-12-23T08:06:06Z | 2025-12-23T08:06:06Z | |
| mal-0000-reversing-labs-f5e01ce2495fd551 | 2025-12-23T08:06:05Z | 2025-12-23T08:06:05Z | |
| mal-0000-reversing-labs-3958e7699f4be7f7 | 2025-12-23T08:06:04Z | 2025-12-23T08:06:04Z | |
| mal-0000-reversing-labs-a7a33789074a2c01 | 2025-12-23T08:06:03Z | 2025-12-23T08:06:03Z | |
| mal-0000-reversing-labs-afc91d510586925d | 2025-12-23T08:06:02Z | 2025-12-23T08:06:02Z | |
| mal-0000-reversing-labs-1fe78b9f9ab018e1 | 2025-12-23T08:06:02Z | 2025-12-23T08:06:02Z | |
| mal-2025-192735 | Malicious code in elf-stats-aurora-rocket-733 (npm) | 2025-12-23T08:06:01Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-82d39b197faf3799 | 2025-12-23T08:06:01Z | 2025-12-23T08:06:01Z | |
| mal-0000-reversing-labs-6812442086411e71 | 2025-12-23T08:06:00Z | 2025-12-23T08:06:00Z | |
| mal-2025-192734 | Malicious code in elf-stats-aurora-drum-979 (npm) | 2025-12-23T08:05:59Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-eabad6161ec009af | 2025-12-23T08:05:59Z | 2025-12-23T08:05:59Z | |
| mal-0000-reversing-labs-718b654dca46082b | 2025-12-23T08:05:35Z | 2025-12-23T08:05:35Z | |
| mal-0000-reversing-labs-ffa3ef316fb26547 | 2025-12-23T08:05:31Z | 2025-12-23T08:05:31Z | |
| mal-0000-reversing-labs-b25be4f8fc2ec1c8 | 2025-12-23T08:05:30Z | 2025-12-23T08:05:30Z | |
| mal-0000-reversing-labs-38d90dbfae6dd6ce | 2025-12-23T08:05:01Z | 2025-12-23T08:05:01Z | |
| mal-2025-192733 | Malicious code in ddxq_cms_tools (npm) | 2025-12-23T08:04:21Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-5c6eb1a30aa7ad90 | 2025-12-23T08:04:21Z | 2025-12-23T08:04:21Z | |
| mal-2025-192732 | Malicious code in ddos-turbo-max (npm) | 2025-12-23T08:04:20Z | 2025-12-24T00:53:16Z |
| mal-2025-192731 | Malicious code in ddos-turbo-ecma (npm) | 2025-12-23T08:04:20Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-bc0dfdc70e3b2fc0 | 2025-12-23T08:04:20Z | 2025-12-23T08:04:20Z | |
| mal-0000-reversing-labs-7a1859f449ba65fd | 2025-12-23T08:04:20Z | 2025-12-23T08:04:20Z | |
| mal-0000-reversing-labs-dc457374fd190922 | 2025-12-23T08:04:08Z | 2025-12-23T08:04:08Z | |
| mal-0000-reversing-labs-aca7b8a009ed92a9 | 2025-12-23T08:04:06Z | 2025-12-23T08:04:06Z | |
| mal-0000-reversing-labs-6e668c29d209a914 | 2025-12-23T08:03:30Z | 2025-12-23T08:03:30Z | |
| mal-2025-192730 | Malicious code in corplib (npm) | 2025-12-23T08:03:29Z | 2025-12-24T00:53:16Z |
| mal-0000-reversing-labs-981b0f7adaff503c | 2025-12-23T08:03:29Z | 2025-12-23T08:03:29Z | |
| mal-2025-192728 | Malicious code in cookie-mapper (npm) | 2025-12-23T08:03:19Z | 2025-12-24T00:53:16Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-1221 | Samba: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-06-02T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1205 | Golang Go: Mehrere Schwachstellen | 2025-06-01T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1201 | Linux Kernel: Mehrere Schwachstellen | 2025-05-29T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-1169 | Apache Commons BeanUtils: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-29T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1144 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-05-25T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1140 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-25T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1134 | Ghostscript: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-22T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-1114 | Linux Kernel: Mehrere Schwachstellen | 2025-05-20T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-1055 | Node.js: Mehrere Schwachstellen | 2025-05-14T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-1007 | Apple macOS: Mehrere Schwachstellen | 2025-05-12T22:00:00.000+00:00 | 2025-11-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0991 | Linux Kernel: Mehrere Schwachstellen | 2025-05-08T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-0987 | Eclipse Jetty: Mehrere Schwachstellen | 2025-05-08T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0956 | Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Denial of Service | 2025-05-06T22:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2025-0944 | GIMP: Schwachstelle ermöglicht Codeausführung | 2025-05-05T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-0935 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0922 | Linux Kernel: Mehrere Schwachstellen | 2025-05-01T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0879 | BusyBox: Mehrere Schwachstellen | 2025-04-23T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-0877 | Redis: Schwachstelle ermöglicht Denial of Service | 2025-04-23T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0861 | Linux Kernel: Mehrere Schwachstellen | 2025-04-21T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0844 | Linux Kernel: Mehrere Schwachstellen | 2025-04-16T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0837 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-04-15T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0836 | Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-15T22:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2025-0831 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2025-04-15T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0813 | Oracle MySQL: Mehrere Schwachstellen | 2025-04-15T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-0754 | Red Hat Enterprise Linux (opentelemetry-collector): Schwachstelle ermöglicht Denial of Service | 2025-04-08T22:00:00.000+00:00 | 2025-12-30T23:00:00.000+00:00 |
| wid-sec-w-2025-0730 | libxml2: Schwachstelle ermöglicht Manipulation von Dateien | 2025-04-07T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0728 | WebKitGTK und WPE WebKit: Mehrere Schwachstellen | 2025-04-07T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-0718 | Red Hat Enterprise Linux (libxslt): Schwachstelle ermöglicht DoS und Codeausführung | 2025-04-06T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0713 | poppler: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-04-06T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0712 | GNU libc: Schwachstelle ermöglicht Denial of Service | 2025-04-06T22:00:00.000+00:00 | 2025-11-17T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-133772 | SSA-133772: Zip Path Traversal Vulnerability in Teamcenter Active Workspace | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-840188 | SSA-840188: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products | 2021-11-09T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-703715 | SSA-703715: Information Disclosure Vulnerability in Climatix POL909 (AWM and AWB) | 2021-11-09T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-114589 | SSA-114589: Multiple Vulnerabilities in Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products | 2021-11-09T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-044112 | SSA-044112: Multiple Vulnerabilities (NUCLEUS:13) in the TCP/IP Stack of Nucleus RTOS | 2021-11-09T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-766247 | SSA-766247: Authentication Vulnerability in SIMATIC Process Historian | 2021-10-12T00:00:00Z | 2022-01-11T00:00:00Z |
| ssa-280624 | SSA-280624: Multiple Vulnerabilities in SCALANCE W1750D | 2021-10-12T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-728618 | SSA-728618: Multiple Vulnerabilities in Solid Edge before SE2021MP8 | 2021-09-28T00:00:00Z | 2021-09-28T00:00:00Z |
| ssa-997732 | SSA-997732: Modfem File Parsing Vulnerability in Simcenter Femap before V2021.2 | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-987403 | SSA-987403: Multiple Vulnerabilities in Teamcenter | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-944498 | SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-847986 | SSA-847986: Denial-of-Service Vulnerabilities in SIPROTEC 5 relays | 2021-09-14T00:00:00Z | 2021-10-12T00:00:00Z |
| ssa-756638 | SSA-756638: Vulnerabilities in Third-Party Component Mbed TLS of LOGO! CMR Family and SIMATIC RTU 3000 Family | 2021-09-14T00:00:00Z | 2022-05-10T00:00:00Z |
| ssa-692317 | SSA-692317: Authorization Bypass Vulnerability in Industrial Edge | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-676336 | SSA-676336: OpenSSH Vulnerabilities in SCALANCE X-200 and X-300/X408 Switches | 2021-09-14T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-535997 | SSA-535997: Cleartext Storage of Sensitive Information in Multiple SIMATIC Products | 2021-09-14T00:00:00Z | 2022-06-14T00:00:00Z |
| ssa-535380 | SSA-535380: Command Injection Vulnerability in Siveillance OIS Affecting Several Building Management Systems | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-500748 | SSA-500748: Denial-of-Service Vulnerabilities in SIPROTEC 5 Devices | 2021-09-14T00:00:00Z | 2021-10-12T00:00:00Z |
| ssa-453715 | SSA-453715: Deserialization Vulnerability in CCOM Communication Component of Desigo CC Family | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-413407 | SSA-413407: Path Traversal Vulnerability in Teamcenter Active Workspace | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-334944 | SSA-334944: Vulnerability in SINEMA Remote Connect Server | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-330339 | SSA-330339: Web Vulnerabilities in SINEC NMS | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-316383 | SSA-316383: NumberJack Vulnerability in LOGO! CMR and SIMATIC RTU 3000 devices | 2021-09-14T00:00:00Z | 2022-02-08T00:00:00Z |
| ssa-288459 | SSA-288459: Heap Overflow Vulnerability in RFID terminals | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-208530 | SSA-208530: File parsing vulnerabilities in IFC adapter in NX | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-109294 | SSA-109294: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-816035 | SSA-816035: Code Execution Vulnerability in SINEMA Remote Connect Client | 2021-08-19T00:00:00Z | 2021-08-19T00:00:00Z |
| ssa-938030 | SSA-938030: DGN and PAR File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.2.0.2 | 2021-08-10T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-830194 | SSA-830194: Missing Authentication Vulnerability in S7-1200 Devices | 2021-08-10T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-818688 | SSA-818688: Multiple Vulnerabilities in Solid Edge before SE2021MP7 | 2021-08-10T00:00:00Z | 2021-08-10T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:19859 | Red Hat Security Advisory: sssd security update | 2025-11-06T05:15:36+00:00 | 2025-11-27T17:37:50+00:00 |
| rhsa-2025:19849 | Red Hat Security Advisory: sssd security update | 2025-11-06T05:05:07+00:00 | 2025-11-27T17:37:49+00:00 |
| rhsa-2025:19854 | Red Hat Security Advisory: sssd security update | 2025-11-06T04:15:11+00:00 | 2025-11-27T17:37:39+00:00 |
| rhsa-2025:19853 | Red Hat Security Advisory: sssd security update | 2025-11-06T03:32:46+00:00 | 2025-11-27T17:37:42+00:00 |
| rhsa-2025:19848 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:35:01+00:00 | 2025-11-27T17:37:46+00:00 |
| rhsa-2025:19847 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:34:26+00:00 | 2025-11-27T17:37:50+00:00 |
| rhsa-2025:19850 | Red Hat Security Advisory: sssd security update | 2025-11-06T02:33:26+00:00 | 2025-11-27T17:37:46+00:00 |
| rhsa-2025:19856 | Red Hat Security Advisory: Satellite 6.15.5.6 Async Update | 2025-11-06T02:27:41+00:00 | 2025-11-21T19:30:37+00:00 |
| rhsa-2025:19855 | Red Hat Security Advisory: Satellite 6.16.5.5 Async Update | 2025-11-06T02:27:26+00:00 | 2025-11-21T19:30:31+00:00 |
| rhsa-2025:19835 | Red Hat Security Advisory: bind security update | 2025-11-06T01:58:21+00:00 | 2025-11-27T03:24:09+00:00 |
| rhsa-2025:19832 | Red Hat Security Advisory: Satellite 6.17.6 Async Update | 2025-11-05T23:49:21+00:00 | 2025-11-21T19:30:28+00:00 |
| rhsa-2025:19300 | Red Hat Security Advisory: OpenShift Container Platform 4.19.18 bug fix and security update | 2025-11-05T18:15:06+00:00 | 2025-11-27T17:37:43+00:00 |
| rhsa-2025:19807 | Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.7.1 release | 2025-11-05T14:26:13+00:00 | 2025-11-27T17:38:02+00:00 |
| rhsa-2025:19804 | Red Hat Security Advisory: RHACS 4.7.8 security and bug fix update | 2025-11-05T13:15:10+00:00 | 2025-11-21T19:38:56+00:00 |
| rhsa-2025:19800 | Red Hat Security Advisory: pcs security update | 2025-11-05T13:11:24+00:00 | 2025-11-21T19:30:26+00:00 |
| rhsa-2025:19313 | Red Hat Security Advisory: OpenShift Container Platform 4.17.43 bug fix and security update | 2025-11-05T12:26:14+00:00 | 2025-11-27T17:37:44+00:00 |
| rhsa-2025:19793 | Red Hat Security Advisory: bind9.16 security update | 2025-11-05T12:01:59+00:00 | 2025-11-27T03:24:35+00:00 |
| rhsa-2025:19314 | Red Hat Security Advisory: OpenShift Container Platform 4.17.43 bug fix and security update | 2025-11-05T11:57:29+00:00 | 2025-11-21T19:38:54+00:00 |
| rhsa-2025:19772 | Red Hat Security Advisory: qt6-qtsvg security update | 2025-11-05T07:46:09+00:00 | 2025-11-27T17:37:49+00:00 |
| rhsa-2025:19295 | Red Hat Security Advisory: OpenShift Container Platform 4.20.2 bug fix and security update | 2025-11-05T04:44:49+00:00 | 2025-11-27T17:37:42+00:00 |
| rhsa-2025:19736 | Red Hat Security Advisory: pcs security update | 2025-11-04T23:37:53+00:00 | 2025-11-21T19:30:26+00:00 |
| rhsa-2025:19734 | Red Hat Security Advisory: pcs security update | 2025-11-04T20:02:07+00:00 | 2025-11-21T19:30:26+00:00 |
| rhsa-2025:19731 | Red Hat Security Advisory: podman security update | 2025-11-04T19:52:32+00:00 | 2025-11-26T15:51:09+00:00 |
| rhsa-2025:19733 | Red Hat Security Advisory: pcs security update | 2025-11-04T19:51:12+00:00 | 2025-11-21T19:30:25+00:00 |
| rhsa-2025:19720 | Red Hat Security Advisory: libsoup3 security update | 2025-11-04T18:03:12+00:00 | 2025-11-27T17:37:04+00:00 |
| rhsa-2025:19721 | Red Hat Security Advisory: Satellite 6.18.0 new version release | 2025-11-04T17:34:02+00:00 | 2025-11-21T19:30:25+00:00 |
| rhsa-2025:19719 | Red Hat Security Advisory: pcs security update | 2025-11-04T17:06:17+00:00 | 2025-11-21T19:30:24+00:00 |
| rhsa-2025:19713 | Red Hat Security Advisory: libsoup security update | 2025-11-04T17:00:12+00:00 | 2025-11-25T10:22:37+00:00 |
| rhsa-2025:19714 | Red Hat Security Advisory: libsoup security update | 2025-11-04T15:37:57+00:00 | 2025-11-25T10:22:37+00:00 |
| rhsa-2025:19675 | Red Hat Security Advisory: valkey security update | 2025-11-04T14:45:57+00:00 | 2025-11-28T11:32:56+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-2296 | Un-verified kernel bypass Secure Boot mechanism in direct boot mode | 2025-12-02T00:00:00.000Z | 2025-12-23T01:35:11.000Z |
| msrc_cve-2025-14523 | Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins) | 2025-12-02T00:00:00.000Z | 2025-12-13T01:02:10.000Z |
| msrc_cve-2025-14512 | Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow | 2025-12-02T00:00:00.000Z | 2025-12-20T01:40:40.000Z |
| msrc_cve-2025-14180 | NULL Pointer Dereference in PDO quoting | 2025-12-02T00:00:00.000Z | 2025-12-31T01:02:05.000Z |
| msrc_cve-2025-14178 | Heap buffer overflow in array_merge() | 2025-12-02T00:00:00.000Z | 2025-12-31T01:02:10.000Z |
| msrc_cve-2025-14177 | Information Leak of Memory in getimagesize | 2025-12-02T00:00:00.000Z | 2025-12-31T01:02:15.000Z |
| msrc_cve-2025-14104 | Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames | 2025-12-02T00:00:00.000Z | 2025-12-30T14:36:04.000Z |
| msrc_cve-2025-14087 | Glib: glib: buffer underflow in gvariant parser leads to heap corruption | 2025-12-02T00:00:00.000Z | 2025-12-20T01:40:29.000Z |
| msrc_cve-2025-13912 | Potential non-constant time compiled code with Clang LLVM | 2025-12-02T00:00:00.000Z | 2025-12-30T01:36:30.000Z |
| msrc_cve-2025-13837 | Out-of-memory when loading Plist | 2025-12-02T00:00:00.000Z | 2025-12-31T01:36:37.000Z |
| msrc_cve-2025-13836 | Excessive read buffering DoS in http.client | 2025-12-02T00:00:00.000Z | 2025-12-31T01:36:27.000Z |
| msrc_cve-2025-13699 | MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability | 2025-12-02T00:00:00.000Z | 2025-12-30T01:37:07.000Z |
| msrc_cve-2025-13281 | Portworx Half-Blind SSRF in kube-controller-manager | 2025-12-02T00:00:00.000Z | 2025-12-30T14:36:11.000Z |
| msrc_cve-2025-12819 | Untrusted search path in auth_query connection in PgBouncer | 2025-12-02T00:00:00.000Z | 2025-12-23T01:37:37.000Z |
| msrc_cve-2025-12385 | Improper validation of <img> tag size in Text component parser | 2025-12-02T00:00:00.000Z | 2025-12-17T14:37:05.000Z |
| msrc_cve-2025-12084 | Quadratic complexity in node ID cache clearing | 2025-12-02T00:00:00.000Z | 2025-12-31T01:36:45.000Z |
| msrc_cve-2023-54161 | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:26.000Z |
| msrc_cve-2023-54082 | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:53.000Z |
| msrc_cve-2023-54061 | x86: fix clear_user_rep_good() exception handling annotation | 2025-12-02T00:00:00.000Z | 2025-12-26T14:38:55.000Z |
| msrc_cve-2023-53749 | x86: fix clear_user_rep_good() exception handling annotation | 2025-12-02T00:00:00.000Z | 2025-12-09T01:01:20.000Z |
| msrc_cve-2025-64660 | GitHub Copilot and Visual Studio Code Remote Code Execution Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-25T08:00:00.000Z |
| msrc_cve-2025-64657 | Azure Application Gateway Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-64656 | Application Gateway Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-64655 | Dynamics OmniChannel SDK Storage Containers Elevation of Privilege Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-62459 | Microsoft Defender Portal Spoofing Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-20T08:00:00.000Z |
| msrc_cve-2025-62453 | GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-11T08:00:00.000Z |
| msrc_cve-2025-62452 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-11T08:00:00.000Z |
| msrc_cve-2025-62449 | Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-11T08:00:00.000Z |
| msrc_cve-2025-62222 | Agentic AI and Visual Studio Code Remote Code Execution Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-11T08:00:00.000Z |
| msrc_cve-2025-62220 | Windows Subsystem for Linux GUI Remote Code Execution Vulnerability | 2025-11-11T08:00:00.000Z | 2025-11-13T08:00:00.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-003242 | OMRON NJ/NX series vulnerable to insufficient verification of data authenticity | 2024-05-28T12:28+09:00 | 2024-07-26T16:27+09:00 |
| jvndb-2024-000051 | Splunk Config Explorer vulnerable to cross-site scripting | 2024-05-24T13:50+09:00 | 2024-05-24T13:50+09:00 |
| jvndb-2024-000050 | WordPress Plugin "WP Booking" vulnerable to cross-site scripting | 2024-05-24T13:41+09:00 | 2024-05-24T13:41+09:00 |
| jvndb-2024-000046 | Android App "TP-Link Tether" and "TP-Link Tapo" vulnerable to improper server certificate verification | 2024-05-21T13:33+09:00 | 2024-05-21T13:33+09:00 |
| jvndb-2024-003188 | Panasonic KW Watcher vulnerable to memory buffer error | 2024-05-17T15:46+09:00 | 2024-05-17T15:46+09:00 |
| jvndb-2023-021762 | Ruijie BCR810W/BCR860 vulnerable to OS command injection | 2024-05-17T13:54+09:00 | 2024-05-17T13:54+09:00 |
| jvndb-2024-000049 | WordPress Plugin "Download Plugins and Themes from Dashboard" vulnerable to path traversal | 2024-05-17T13:33+09:00 | 2024-05-17T13:33+09:00 |
| jvndb-2024-003187 | Multiple vulnerabilities in Field Logic DataCube | 2024-05-17T12:05+09:00 | 2024-05-17T12:05+09:00 |
| jvndb-2024-002342 | Central Dogma vulnerable to cross-site scripting | 2024-05-13T17:27+09:00 | 2024-05-13T17:27+09:00 |
| jvndb-2024-000047 | Multiple vulnerabilities in Cybozu Garoon | 2024-05-13T15:19+09:00 | 2024-05-13T15:19+09:00 |
| jvndb-2024-000045 | "OfferBox" App uses a hard-coded secret key | 2024-05-10T15:11+09:00 | 2024-05-10T15:11+09:00 |
| jvndb-2024-003181 | Hidden Functionality vulnerability in DT900 | 2024-05-10T13:59+09:00 | 2024-05-10T13:59+09:00 |
| jvndb-2024-000048 | Phormer vulnerable to cross-site scripting | 2024-05-10T13:48+09:00 | 2024-05-10T13:48+09:00 |
| jvndb-2024-000043 | Multiple vulnerabilities in MosP kintai kanri | 2024-05-09T14:10+09:00 | 2024-05-09T14:10+09:00 |
| jvndb-2024-000044 | WordPress Plugin "Heateor Social Login WordPress" vulnerable to cross-site scripting | 2024-05-08T13:43+09:00 | 2024-05-08T13:43+09:00 |
| jvndb-2024-003178 | Trend Micro Maximum Security vulnerable to improper link resolution (CVE-2024-32849) | 2024-05-08T10:19+09:00 | 2024-05-08T10:19+09:00 |
| jvndb-2024-003119 | NETGEAR routers vulnerable to buffer overflow | 2024-04-25T11:21+09:00 | 2024-04-25T11:21+09:00 |
| jvndb-2024-000042 | Multiple vulnerabilities in RoamWiFi R10 | 2024-04-24T13:44+09:00 | 2024-04-24T13:44+09:00 |
| jvndb-2024-003116 | Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer | 2024-04-24T10:13+09:00 | 2024-04-24T10:13+09:00 |
| jvndb-2024-000901 | TvRock vulnerable to cross-site request forgery | 2024-04-23T18:22+09:00 | 2024-04-23T18:22+09:00 |
| jvndb-2024-000903 | TvRock vulnerable to denial-of-service (DoS) | 2024-04-23T18:21+09:00 | 2024-04-23T18:21+09:00 |
| jvndb-2024-003108 | Armeria-saml improperly handles SAML messages | 2024-04-22T17:28+09:00 | 2024-04-22T17:28+09:00 |
| jvndb-2023-014491 | LINE client for iOS vulnerable to improper server certificate verification | 2024-04-22T15:27+09:00 | 2024-04-22T15:27+09:00 |
| jvndb-2024-000041 | Multiple vulnerabilities in WordPress Plugin "Forminator" | 2024-04-18T13:53+09:00 | 2024-04-18T13:53+09:00 |
| jvndb-2022-017175 | Proscend Communications M330-W and M330-W5 vulnerable to OS command injection | 2024-04-16T14:30+09:00 | 2024-04-16T14:30+09:00 |
| jvndb-2024-000040 | Multiple vulnerabilities in BUFFALO wireless LAN routers | 2024-04-15T16:29+09:00 | 2024-04-15T16:29+09:00 |
| jvndb-2024-000039 | Multiple vulnerabilities in a-blog cms | 2024-04-10T13:55+09:00 | 2024-04-10T13:55+09:00 |
| jvndb-2024-000038 | Multiple vulnerabilities in WordPress Plugin "Ninja Forms" | 2024-04-08T13:44+09:00 | 2024-04-08T13:44+09:00 |
| jvndb-2024-003068 | Multiple vulnerabilities in Cente middleware | 2024-04-05T15:36+09:00 | 2024-09-24T15:00+09:00 |
| jvndb-2024-000037 | Multiple vulnerabilities in NEC Aterm series | 2024-04-05T14:53+09:00 | 2024-04-05T14:53+09:00 |
| ID | Description | Updated |
|---|