Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2021-47778	8.6 (4.0)	GetSimple CMS My SMTP Contact Plugin 1.1.2 - PHP Code …	Get-Simple	My SMTP Contact Plugin	2026-01-21T17:29:48.390Z	2026-01-22T16:51:15.220Z
CVE-2021-47860	8.5 (4.0) 5.3 (3.1)	GetSimple CMS Custom JS 0.1 - CSRF to XSS to RCE	GetSimple CMS	Custom JS Plugin	2026-01-21T17:29:56.337Z	2026-01-22T16:51:09.944Z
CVE-2021-47870	5.4 (4.0)	GetSimple CMS My SMTP Contact Plugin 1.1.2 - Stored XSS	GetSimple CMS	My SMTP Contact Plugin	2026-01-21T17:32:09.385Z	2026-01-22T16:51:05.377Z
CVE-2026-23755	8.4 (4.0)	D-Link D-View 8 Installer DLL Preloading via Uncontrol…	D-Link	D-View 8	2026-01-21T18:02:30.160Z	2026-01-22T16:50:59.815Z
CVE-2026-23754	8.7 (4.0)	D-Link D-View 8 IDOR Allows Credential Disclosure and …	D-Link	D-View 8	2026-01-21T18:02:45.878Z	2026-01-22T16:50:54.833Z
CVE-2025-68139	4.3 (3.1)	In EVerest, by default, the EV is responsible for clos…	EVerest	everest-core	2026-01-21T19:36:36.127Z	2026-01-22T16:50:50.152Z
CVE-2025-68140	4.3 (3.1)	EVerest allows null session ID to bypass session ID ve…	EVerest	everest-core	2026-01-21T19:54:51.285Z	2026-01-22T16:50:45.344Z
CVE-2025-68141	7.4 (3.1)	EVerest vulnerable to null pointer dereference during …	EVerest	everest-core	2026-01-21T19:56:14.482Z	2026-01-22T16:50:38.843Z
CVE-2026-22807	8.8 (3.1)	vLLM affected by RCE via auto_map dynamic module loadi…	vllm-project	vllm	2026-01-21T21:13:11.894Z	2026-01-22T16:50:33.696Z
CVE-2026-22808	5.5 (4.0)	Fleet Windows MDM endpoint has a Cross-site Scripting …	fleetdm	fleet	2026-01-21T21:18:26.283Z	2026-01-22T16:50:28.717Z
CVE-2026-22822	9.3 (4.0)	External Secrets Operator insecurely retrieves secrets…	external-secrets	external-secrets	2026-01-21T21:22:05.249Z	2026-01-22T16:50:23.708Z
CVE-2026-22849	7.2 (4.0)	Saleor lacks proper HTML sanitization in rich text fields	saleor	saleor	2026-01-21T21:31:14.664Z	2026-01-22T16:50:18.828Z
CVE-2026-23499	8.5 (4.0)	Saleor vulnerable to stored XSS via Unrestricted File Upload	saleor	saleor	2026-01-21T21:36:19.702Z	2026-01-22T16:50:13.686Z
CVE-2026-23517	6.3 (4.0)	Fleet has an Access Control vulnerability in debug/ppr…	fleetdm	fleet	2026-01-21T21:45:34.561Z	2026-01-22T16:49:56.246Z
CVE-2026-23518	9.3 (4.0)	Fleet has a JWT signature bypass vulnerability in Azur…	fleetdm	fleet	2026-01-21T21:50:47.998Z	2026-01-22T16:49:50.477Z
CVE-2026-23960	7.3 (4.0)	Argo Workflows affected by stored XSS in the artifact …	argoproj	argo-workflows	2026-01-21T22:02:50.491Z	2026-01-22T16:49:43.075Z
CVE-2026-23524	9.8 (3.1)	Laravel Redis Horizontal Scaling Insecure Deserialization	laravel	reverb	2026-01-21T22:07:55.682Z	2026-01-22T16:49:37.182Z
CVE-2026-23968	6.8 (4.0)	Copier safe template has arbitrary filesystem read acc…	copier-org	copier	2026-01-21T22:13:25.377Z	2026-01-22T16:49:32.054Z
CVE-2026-23986	6.9 (4.0)	Copier safe template has arbitrary filesystem write ac…	copier-org	copier	2026-01-21T22:20:37.720Z	2026-01-22T16:49:26.426Z
CVE-2026-23990	5.3 (3.1)	Flux Operator Web UI Impersonation Bypass via Empty OI…	controlplaneio-fluxcd	flux-operator	2026-01-21T22:25:57.025Z	2026-01-22T16:49:21.454Z
CVE-2026-23996	3.7 (3.1)	FastAPI Api Key has a timing side-channel in verify_ke…	Athroniaeth	fastapi-api-key	2026-01-21T22:29:24.107Z	2026-01-22T16:49:16.733Z
CVE-2026-24046	7.1 (3.1)	Backstage has a Possible Symlink Path Traversal in Sca…	backstage	backstage	2026-01-21T22:36:30.794Z	2026-01-22T16:49:11.684Z
CVE-2026-24047	6.3 (3.1)	@backstage/cli-common has a possible `resolveSafeChild…	backstage	backstage	2026-01-21T22:45:06.956Z	2026-01-22T16:49:06.720Z
CVE-2026-23630	6.3 (4.0)	Docmost is vulnerable to stored Cross-Site Scripting (…	docmost	docmost	2026-01-21T22:51:27.158Z	2026-01-22T16:49:01.024Z
CVE-2026-24048	3.5 (3.1)	Backstage has a Possible SSRF when reading from allowe…	backstage	backstage	2026-01-21T22:51:44.015Z	2026-01-22T16:48:55.954Z
CVE-2025-13601	7.7 (3.1)	Glib: integer overflow in in g_escape_uri_string()			2025-11-26T14:44:22.680Z	2026-01-22T16:47:36.533Z
CVE-2025-5318	8.1 (3.1)	Libssh: out-of-bounds read in sftp_handle()			2025-06-24T14:10:07.188Z	2026-01-22T16:46:32.302Z
CVE-2024-7143	6.7 (3.0)	Pulpcore: rbac permissions incorrectly assigned in tas…			2024-08-07T16:49:29.842Z	2026-01-22T16:41:29.210Z
CVE-2026-22200	8.7 (4.0)	osTicket (1.18.x < 1.18.3, 1.17.x < 1.17.7) PDF Export…	Enhancesoft	osTicket	2026-01-12T18:34:12.781Z	2026-01-22T16:36:11.800Z
CVE-2026-23959	6.9 (4.0)	CoreShop Vulnerable to SQL Injection via Admin custome…	coreshop	CoreShop	2026-01-22T01:57:58.566Z	2026-01-22T16:28:21.076Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-63388	9.1 (3.1)	A Cross-Origin Resource Sharing (CORS) misconfigu…	n/a	n/a	2025-12-18T00:00:00.000Z	2026-01-22T17:50:12.383Z
CVE-2025-63386	9.1 (3.1)	A Cross-Origin Resource Sharing (CORS) misconfigu…	n/a	n/a	2025-12-18T00:00:00.000Z	2026-01-22T17:46:35.982Z
CVE-2025-56157	9.8 (3.1)	Default credentials in Dify thru 1.5.1. PostgreSQ…	n/a	n/a	2025-12-18T00:00:00.000Z	2026-01-22T17:44:21.254Z
CVE-2025-52691	10 (3.1)	Upload Arbitrary Files	SmarterTools	SmarterMail	2025-12-29T02:15:58.200Z	2026-01-23T04:55:15.346Z
CVE-2025-0634	5.1 (4.0)	Use After Free vulnerability in Samsung Open Sour…	Samsung Open Source	rLottie	2025-06-30T01:44:57.595Z	2026-01-22T18:06:37.778Z
CVE-2017-16932	7.5 (3.1)	parser.c in libxml2 before 2.9.5 does not prevent…	n/a	n/a	2017-11-23T21:00:00.000Z	2026-01-22T18:00:13.271Z
CVE-2026-0747	3.3 (3.1)	Exposure of sensitive information in the TeamView…	Devolutions	Remote Desktop Manager	2026-01-08T19:55:58.944Z	2026-01-08T20:07:40.198Z
CVE-2025-20936	8.8 (3.1)	Improper access control in HDCP trustlet prior to…	Samsung Mobile	Samsung Mobile Devices	2025-04-08T04:39:49.851Z	2025-04-09T04:00:29.590Z
CVE-2026-22050	6.9 (4.0)	ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.…	NETAPP	ONTAP 9	2026-01-12T17:15:07.484Z	2026-01-13T17:30:51.952Z
CVE-2025-61939	8.7 (4.0) 8.8 (3.1)	Columbia Weather Systems MicroServer Improper Restrict…	Columbia Weather Systems	MicroServer	2026-01-07T19:56:52.386Z	2026-01-07T20:07:45.479Z
CVE-2025-66620	8.6 (4.0) 8 (3.1)	Columbia Weather Systems MicroServer Command Shell in …	Columbia Weather Systems	MicroServer	2026-01-07T20:08:33.137Z	2026-01-07T20:16:28.659Z
CVE-2025-5591	7.7 (4.0)	Stored Cross-site Scripting (XSS) in Kentico Xperience 13	Kentico	Kentico Xperience	2026-01-05T00:02:51.266Z	2026-01-05T20:34:18.323Z
CVE-2026-0641	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	TOTOLINK WA300 cstecgi.cgi sub_401510 command injection	TOTOLINK	WA300	2026-01-06T19:02:07.258Z	2026-01-06T19:20:43.130Z
CVE-2025-10569	6.5 (3.1)	Allocation of Resources Without Limits or Throttling i…	GitLab	GitLab	2026-01-09T10:04:26.275Z	2026-01-09T19:12:12.768Z
CVE-2025-11246	5.4 (3.1)	Insufficient Granularity of Access Control in GitLab	GitLab	GitLab	2026-01-09T10:04:21.283Z	2026-01-09T19:13:17.900Z
CVE-2025-13761	8 (3.1)	Improper Neutralization of Input During Web Page Gener…	GitLab	GitLab	2026-01-09T10:04:01.331Z	2026-01-10T04:55:46.858Z
CVE-2025-13772	7.1 (3.1)	Missing Authorization in GitLab	GitLab	GitLab	2026-01-09T10:04:06.293Z	2026-01-09T19:13:28.846Z
CVE-2026-0597	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	Campcodes Supplier Management System edit_profile.php …	Campcodes	Supplier Management System	2026-01-05T14:32:06.278Z	2026-01-05T20:05:46.411Z
CVE-2026-0582	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	itsourcecode Society Management System edit_activity_q…	itsourcecode	Society Management System	2026-01-05T08:32:06.107Z	2026-01-05T21:14:21.827Z
CVE-2025-9222	8.7 (3.1)	Improper Neutralization of Input During Web Page Gener…	GitLab	GitLab	2026-01-09T10:04:36.272Z	2026-01-10T04:55:47.964Z
CVE-2026-0580	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	SourceCodester API Key Manager App Import Key cross si…	SourceCodester	API Key Manager App	2026-01-05T07:32:06.021Z	2026-01-05T21:09:22.283Z
CVE-2026-24390	N/A	WordPress Kentha Elementor Widgets plugin < 3.1 - Loca…	QantumThemes	Kentha Elementor Widgets	2026-01-22T16:52:48.114Z	2026-01-22T16:52:48.114Z
CVE-2026-24389	N/A	WordPress Gallery PhotoBlocks plugin <= 1.3.2 - Cross …	WP Chill	Gallery PhotoBlocks	2026-01-22T16:52:47.889Z	2026-01-22T16:52:47.889Z
CVE-2026-24383	N/A	WordPress B Slider plugin <= 2.0.6 - Cross Site Script…	bPlugins	B Slider	2026-01-22T16:52:46.919Z	2026-01-22T16:52:46.919Z
CVE-2026-24380	N/A	WordPress EventPrime plugin <= 4.2.8.0 - Broken Access…	Metagauss	EventPrime	2026-01-22T16:52:46.530Z	2026-01-22T16:52:46.530Z
CVE-2026-24379	N/A	WordPress WP Job Portal plugin <= 2.4.3 - Insecure Dir…	wpjobportal	WP Job Portal	2026-01-22T16:52:46.322Z	2026-01-22T16:52:46.322Z
CVE-2026-24377	N/A	WordPress Nexter Blocks plugin <= 4.6.3 - Sensitive Da…	POSIMYTH	Nexter Blocks	2026-01-22T16:52:46.045Z	2026-01-22T16:52:46.045Z
CVE-2026-24371	N/A	WordPress BA Book Everything plugin <= 1.8.16 - Broken…	bookingalgorithms	BA Book Everything	2026-01-22T16:52:45.641Z	2026-01-22T16:52:45.641Z
CVE-2026-24368	N/A	WordPress The Grid plugin < 2.8.0 - Broken Access Cont…	Theme-one	The Grid	2026-01-22T16:52:45.439Z	2026-01-22T16:52:45.439Z
CVE-2026-24358	N/A	WordPress Quiz And Survey Master plugin <= 10.3.3 - Br…	ExpressTech Systems	Quiz And Survey Master	2026-01-22T16:52:44.066Z	2026-01-22T16:52:44.066Z

ID	Description	Published	Updated
fkie_cve-2025-63388	A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the …	2025-12-18T16:15:54.650	2026-01-22T18:16:43.303
fkie_cve-2025-63386	A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the …	2025-12-18T16:15:54.533	2026-01-22T18:16:42.647
fkie_cve-2025-56157	Default credentials in Dify thru 1.5.1. PostgreSQL username and password specified in the docker-co…	2025-12-18T19:16:26.687	2026-01-22T18:16:42.117
fkie_cve-2025-52691	Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbi…	2025-12-29T03:15:42.837	2026-01-22T18:16:41.940
fkie_cve-2025-0634	Use After Free vulnerability in Samsung Open Source rLottie allows Remote Code Inclusion.This issue…	2025-06-30T02:15:20.920	2026-01-22T18:16:41.773
fkie_cve-2017-16932	parser.c in libxml2 before 2.9.5 does not prevent infinite recursion in parameter entities.	2017-11-23T21:29:00.437	2026-01-22T18:16:40.390
fkie_cve-2026-0747	Exposure of sensitive information in the TeamViewer entry dashboard component in Devolutions Remote…	2026-01-08T20:15:44.927	2026-01-22T18:14:40.343
fkie_cve-2025-20936	Improper access control in HDCP trustlet prior to SMR Apr-2025 Release 1 allows local attackers wit…	2025-04-08T05:15:38.043	2026-01-22T18:11:11.700
fkie_cve-2026-22050	ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled …	2026-01-12T18:15:48.983	2026-01-22T17:58:22.053
fkie_cve-2025-61939	An unused function in MicroServer can start a reverse SSH connection to a vendor registered domain,…	2026-01-07T21:15:58.753	2026-01-22T17:39:18.590
fkie_cve-2025-66620	An unused webshell in MicroServer allows unlimited login attempts, with sudo rights on certain file…	2026-01-07T21:15:59.170	2026-01-22T17:33:55.143
fkie_cve-2025-5591	Kentico Xperience 13 is vulnerable to a stored cross-site scripting attack via a form component, al…	2026-01-05T01:15:51.617	2026-01-22T17:32:40.177
fkie_cve-2026-0641	A security vulnerability has been detected in TOTOLINK WA300 5.2cu.7112_B20190227. This vulnerabili…	2026-01-06T19:16:07.573	2026-01-22T17:32:10.363
fkie_cve-2025-10569	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 8.3 before 18.5.5, 18.6 …	2026-01-09T10:15:44.590	2026-01-22T17:30:01.333
fkie_cve-2025-11246	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 15.4 before 18.5.5, 18.6…	2026-01-09T10:15:44.813	2026-01-22T17:28:53.690
fkie_cve-2025-13761	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.3, and …	2026-01-09T10:15:45.280	2026-01-22T17:26:37.803
fkie_cve-2025-13772	GitLab has remediated an issue in GitLab EE affecting all versions from 18.4 before 18.5.5, 18.6 be…	2026-01-09T10:15:45.450	2026-01-22T17:25:24.950
fkie_cve-2026-0597	A flaw has been found in Campcodes Supplier Management System 1.0. Affected by this issue is some u…	2026-01-05T15:15:45.580	2026-01-22T17:24:54.210
fkie_cve-2026-0582	A vulnerability was identified in itsourcecode Society Management System 1.0. This affects an unkno…	2026-01-05T09:15:55.087	2026-01-22T17:23:44.283
fkie_cve-2025-9222	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2.2 before 18.5.5, 18…	2026-01-09T10:15:47.037	2026-01-22T17:20:15.873
fkie_cve-2026-0580	A vulnerability was found in SourceCodester API Key Manager App 1.0. Affected by this vulnerability…	2026-01-05T08:15:58.213	2026-01-22T17:18:50.370
fkie_cve-2026-24390	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T17:16:42.110	2026-01-22T17:16:42.110
fkie_cve-2026-24389	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:16:41.990	2026-01-22T17:16:41.990
fkie_cve-2026-24383	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:16:41.353	2026-01-22T17:16:41.353
fkie_cve-2026-24380	Missing Authorization vulnerability in Metagauss EventPrime eventprime-event-calendar-management al…	2026-01-22T17:16:40.910	2026-01-22T17:16:40.910
fkie_cve-2026-24379	Authorization Bypass Through User-Controlled Key vulnerability in wpjobportal WP Job Portal wp-job-…	2026-01-22T17:16:40.790	2026-01-22T17:16:40.790
fkie_cve-2026-24377	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in POSIMYT…	2026-01-22T17:16:40.663	2026-01-22T17:16:40.663
fkie_cve-2026-24371	Missing Authorization vulnerability in bookingalgorithms BA Book Everything ba-book-everything allo…	2026-01-22T17:16:40.423	2026-01-22T17:16:40.423
fkie_cve-2026-24368	Missing Authorization vulnerability in Theme-one The Grid the-grid allows Exploiting Incorrectly Co…	2026-01-22T17:16:40.303	2026-01-22T17:16:40.303
fkie_cve-2026-24358	Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next …	2026-01-22T17:16:39.570	2026-01-22T17:16:39.570

ID	Severity	Description	Published	Updated
ghsa-c7c4-v9c9-65gw	6.3 (3.1) 2.1 (4.0)	A weakness has been identified in Totolink NR1800X 9.1.0u.6279_B20210910. This vulnerability affect…	2026-01-22T15:31:32Z	2026-01-22T15:31:32Z
ghsa-4v3f-ffrw-xcx6	7.5 (3.1)	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 11.9 before 18.6.4, 18.7…	2026-01-22T15:31:32Z	2026-01-22T15:31:32Z
ghsa-3rr2-xxqc-95fc	5.3 (3.1)	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.3 before 18.6.4, 18.7…	2026-01-22T15:31:32Z	2026-01-22T15:31:32Z
ghsa-39cv-xcc4-9q3h	8.8 (3.1) 7.4 (4.0)	A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.12.…	2026-01-22T15:31:32Z	2026-01-22T15:31:32Z
ghsa-2rgp-qxg7-fcg5	4.8 (4.0)	MacOS version of Inkscape bundles a Python interpreter that inherits the Transparency, Consent, and…	2026-01-22T15:31:32Z	2026-01-22T15:31:32Z
ghsa-x8wr-8gvh-9cmf	7.0 (4.0)	Storing Passwords in a Recoverable Format vulnerability in Automated Logic WebCTRL on Windows, Carr…	2026-01-22T15:31:31Z	2026-01-22T15:31:31Z
ghsa-x3gm-67qg-2g3x	7.5 (3.1)	Tenda AX1803 v1.0.0.1 was discovered to contain a stack overflow in the security_5g parameter of th…	2026-01-21T18:30:30Z	2026-01-22T15:31:31Z
ghsa-qcj4-rf2h-2w2x	1.3 (4.0)	Neo4j Enterprise edition versions prior to 2025.11.2 and 5.26.17 are vulnerable to a potential info…	2026-01-22T15:31:31Z	2026-01-22T15:31:31Z
ghsa-jr3x-q8gx-4gw3	7.5 (3.1)	An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the fs/ggml/…	2026-01-21T18:30:31Z	2026-01-22T15:31:31Z
ghsa-h73v-mc67-xw25	7.5 (3.1)	An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the GGUF decoder	2026-01-21T18:30:31Z	2026-01-22T15:31:31Z
ghsa-fhx5-76c6-56vc	8.1 (3.1)	Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade In…	2026-01-22T15:31:31Z	2026-01-22T15:31:31Z
ghsa-2w96-8922-g8xr	9.8 (3.1)	Tenda AX3 firmware v16.03.12.11 contains a stack-based buffer overflow in the formGetIptv function …	2026-01-21T18:30:31Z	2026-01-22T15:31:31Z
ghsa-28h7-pr55-9w57	7.5 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in Solvera Software Services Trade I…	2026-01-22T15:31:31Z	2026-01-22T15:31:31Z
ghsa-vm87-5p79-rw78	5.4 (3.1)	Improper Restriction of Rendered UI Layers or Frames vulnerability in Automattic Jetpack allows Cli…	2024-04-24T18:30:33Z	2026-01-22T15:31:28Z
ghsa-4r4v-f3wv-mqw2	9.8 (3.1)	A OS Command Injection vulnerability was discovered in Artica Proxy 4.30.000000. Attackers can exec…	2022-05-06T00:00:49Z	2026-01-22T15:31:28Z
ghsa-44m2-445p-2rrj	6.4 (3.1)	The Jetpack – WP Security, Backup, Speed, & Growth plugin for WordPress is vulnerable to Stored Cro…	2024-05-14T18:31:02Z	2026-01-22T15:31:28Z
ghsa-95jq-xph2-cx9h	8.8 (4.0)	Linkify Allows Prototype Pollution & HTML Attribute Injection (XSS)	2025-07-26T00:30:32Z	2026-01-22T13:51:31Z
ghsa-mw3v-mmfw-3x2g	8.3 (4.0)	OpenSearch is vulnerable to DoS via complex query_string inputs	2025-11-25T21:32:07Z	2026-01-22T13:50:34Z
ghsa-9p56-p6mw-w8qc	7.5 (3.1)	Jenkins has a Denial of service vulnerability in HTTP-based CLI	2025-12-10T18:30:26Z	2026-01-22T13:44:11Z
ghsa-rjr4-v43m-pxq6	1.7 (4.0)	Triton VM Soundness Vulnerability due to Improper Sampling of Randomness	2026-01-21T22:52:56Z	2026-01-22T13:40:29Z
ghsa-x95g-m33x-ggjj	5.1 (4.0)	Quick.Cart is vulnerable to reflected XSS via the sSort parameter. An attacker can craft a maliciou…	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-rwrf-5qh9-q8j8	8.0 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-r8f4-mx7h-29jp	6.5 (3.1)	GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.6.4, 18.7…	2026-01-22T12:31:21Z	2026-01-22T12:31:22Z
ghsa-mj3m-r2gc-xrxc	5.5 (3.1)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-jxp4-5wxx-jhhf	5.3 (3.1) 6.9 (4.0)	MeetingHub developed by HAMASTAR Technology has a Missing Authentication vulnerability, allowing un…	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-jchx-26cr-w8w2	9.4 (4.0)	Quick.Cart is vulnerable to Local File Inclusion and Path Traversal issues in the theme selection m…	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-6g5v-xg2c-jwmq	7.5 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in EXERT Computer Technologies Softw…	2026-01-22T12:31:22Z	2026-01-22T12:31:22Z
ghsa-j7qw-w5vf-rgxv	9.8 (3.1) 9.3 (4.0)	MeetingHub developed by HAMASTAR Technology has an Arbitrary File Upload vulnerability, allowing un…	2026-01-22T09:31:40Z	2026-01-22T09:31:40Z
ghsa-v3x6-95pf-f2f2	7.5 (3.1) 8.7 (4.0)	MeetingHub developed by HAMASTAR Technology has an Arbitrary File Read vulnerability, allowing unau…	2026-01-22T09:31:39Z	2026-01-22T09:31:39Z
ghsa-m3h4-65j5-6j8c	9.8 (3.1)	The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Administrative User C…	2026-01-22T09:31:39Z	2026-01-22T09:31:39Z

ID	Description	Package	Published	Updated
pysec-2023-30	Cross-site Scripting (XSS) - Stored in GitHub repository modoboa/modoboa prior to 2.0.4.	modoboa	2023-01-26T22:15:00Z	2023-05-04T03:49:46.669829Z
pysec-2023-29	Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.2.1.	mlflow	2023-03-24T15:15:00Z	2023-05-04T03:49:46.618607Z
pysec-2023-28	Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.2.2.	mlflow	2023-03-24T15:15:00Z	2023-05-04T03:49:46.565156Z
pysec-2023-27	mindsdb is a Machine Learning platform to help developers build AI solutions. In affected…	mindsdb	2023-04-21T21:15:00Z	2023-05-04T03:49:46.507545Z
pysec-2023-26	MindsDB is an open source machine learning platform. An unsafe extraction is being perfor…	mindsdb	2023-03-30T19:15:00Z	2023-05-04T03:49:46.430565Z
pysec-2023-25	mechanize, a library for automatically interacting with HTTP web servers, contains a regu…	mechanize	2023-01-17T22:15:00Z	2023-05-04T03:49:46.357040Z
pysec-2023-24	Denial of service could be caused to markdown-it-py, before v2.2.0, if an attacker was al…	markdown-it-py	2023-02-23T00:15:00Z	2023-05-04T03:49:46.302314Z
pysec-2023-23	Denial of service could be caused to the command line interface of markdown-it-py, before…	markdown-it-py	2023-02-22T23:15:00Z	2023-05-04T03:49:46.254022Z
pysec-2023-22	An issue was discovered in Mailman Core before 3.3.5. An attacker with access to the REST…	mailman	2023-04-15T20:16:00Z	2023-05-04T03:49:46.203477Z
pysec-2023-21	LTI Consumer XBlock implements the consumer side of the LTI specification enabling integr…	lti-consumer-xblock	2023-01-26T21:18:00Z	2023-05-04T03:49:46.153608Z
pysec-2023-20	Netflix Lemur before version 1.3.2 used insufficiently random values when generating de…	lemur	2023-04-19T20:15:00Z	2023-05-04T03:49:46.100234Z
pysec-2023-19	A vulnerability, which was classified as problematic, was found in kakwa LdapCherry up to…	ldapcherry	2023-01-05T08:15:00Z	2023-05-04T03:49:46.049521Z
pysec-2023-18	In LangChain through 0.0.131, the LLMMathChain chain allows prompt injection attacks that…	langchain	2023-04-05T02:15:00Z	2023-05-04T03:49:46.000016Z
pysec-2023-17	IPython (Interactive Python) is a command shell for interactive computing in multiple pro…	ipython	2023-02-10T20:15:00Z	2023-05-04T03:49:45.922825Z
pysec-2023-16	Gradio is an open-source Python library to build machine learning and data science demos …	gradio	2023-02-23T22:15:00Z	2023-05-04T03:49:45.858658Z
pysec-2023-15	GeoNode is an open source platform that facilitates the creation, sharing, and collaborat…	geonode	2023-02-27T21:15:00Z	2023-05-04T03:49:45.721412Z
pysec-2023-14	UNSUPPPORTED WHEN ASSIGNED UNSUPPORTED WHEN ASSIGNED A vulnerability classifie…	django-ucamlookup	2023-01-05T09:15:00Z	2023-05-04T03:49:45.271028Z
pysec-2023-13	An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 …	django	2023-02-15T01:15:00Z	2023-05-04T03:49:45.612158Z
pysec-2023-12	In Django 3.2 before 3.2.17, 4.0 before 4.0.9, and 4.1 before 4.1.6, the parsed values of…	django	2023-02-01T19:15:00Z	2023-05-04T03:49:45.437728Z
pysec-2023-11	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2023-02-07T21:15:00Z	2023-05-04T03:49:45.221186Z
pysec-2023-10	Changedetection.io before v0.40.1.1 was discovered to contain a stored cross-site scripti…	changedetection-io	2023-02-17T22:15:00Z	2023-05-04T03:49:45.088821Z
pysec-2022-42992	All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to im…	gitpython	2022-12-06T05:15:00Z	2023-05-04T03:49:45.777062Z
pysec-2022-42991	An issue discovered in Python Charmers Future 0.18.2 and earlier allows remote attackers …	future	2022-12-23T00:15:00Z	2023-05-04T03:49:45.660760Z
pysec-2022-42989	A vulnerability, which was classified as problematic, has been found in collective.dms.ba…	collective-dms-basecontent	2022-12-14T15:15:00Z	2023-05-04T03:49:45.138352Z
pysec-2022-42986	Certifi is a curated collection of Root Certificates for validating the trustworthiness o…	certifi	2022-12-07T22:15:00Z	2023-05-04T03:49:45.039819Z
pysec-2023-9	CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.…	cairosvg	2023-03-20T16:15:00Z	2023-05-04T03:49:44.989748Z
pysec-2023-8	Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This iss…	apache-iotdb	2023-04-17T08:15:00Z	2023-05-04T03:49:44.939309Z
pysec-2023-7	Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This iss…	apache-iotdb	2023-04-17T07:15:00Z	2023-05-04T03:49:44.888533Z
pysec-2023-6	Improper Authentication vulnerability in Apache Software Foundation Apache IoTDB.This iss…	apache-iotdb	2023-01-30T17:15:00Z	2023-05-04T03:49:44.840128Z
pysec-2023-5	Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This iss…	apache-iotdb	2023-01-31T10:15:00Z	2023-05-04T03:49:44.792097Z

ID	Description	Updated
gsd-2024-33073	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.641767Z
gsd-2024-33072	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.692854Z
gsd-2024-33071	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.625514Z
gsd-2024-33070	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.621129Z
gsd-2024-33069	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.645844Z
gsd-2024-33068	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.754188Z
gsd-2024-33067	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.725270Z
gsd-2024-33066	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.640877Z
gsd-2024-33065	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.601841Z
gsd-2024-33064	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.742494Z
gsd-2024-33063	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.606683Z
gsd-2024-33062	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.623763Z
gsd-2024-33061	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.698231Z
gsd-2024-33060	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.709441Z
gsd-2024-33059	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.758936Z
gsd-2024-33058	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.680057Z
gsd-2024-33057	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.714140Z
gsd-2024-33056	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.614834Z
gsd-2024-33055	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.636678Z
gsd-2024-33054	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.672967Z
gsd-2024-33053	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.619733Z
gsd-2024-33052	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.640443Z
gsd-2024-33051	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.658888Z
gsd-2024-33050	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.695724Z
gsd-2024-33049	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.604696Z
gsd-2024-33048	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.709832Z
gsd-2024-33047	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.624631Z
gsd-2024-33046	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.708183Z
gsd-2024-33045	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.670079Z
gsd-2024-33044	The format of the source doesn't require a description, click on the link for more details.	2024-04-24T05:02:09.614126Z

ID	Description	Published	Updated
MAL-2025-192968	Malicious code in express-js-web (npm)	2025-12-30T16:12:03Z	2026-01-02T21:37:27Z
MAL-2025-192967	Malicious code in eb-csr (npm)	2025-12-30T16:12:28Z	2026-01-02T21:37:27Z
MAL-2025-192957	Malicious code in crypto-trade-analyzer (npm)	2025-12-29T07:45:42Z	2026-01-02T21:37:27Z
MAL-2025-192955	Malicious code in eslint-config-pexip-engage (npm)	2025-12-28T17:50:47Z	2026-01-02T21:37:27Z
MAL-2025-192952	Malicious code in eslint-config-sdk (npm)	2025-12-27T20:20:29Z	2026-01-02T21:37:27Z
mal-2025-193009	Malicious code in @polystream/streaming (npm)	2025-12-31T16:15:38Z	2026-01-02T21:37:26Z
mal-2025-193004	Malicious code in @vietmoney/vision-camera-code-scanner (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-193003	Malicious code in @vietmoney/vietmoneywork (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-193002	Malicious code in @vietmoney/react-native-vnpay-merchant (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-193001	Malicious code in @vietmoney/react-native-true-id (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-193000	Malicious code in @vietmoney/react-native-tags-input (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192999	Malicious code in @vietmoney/react-native-smart-page (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192998	Malicious code in @vietmoney/react-native-smart-gallery (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192997	Malicious code in @vietmoney/react-native-image-transformer (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192996	Malicious code in @vietmoney/react-native-htmlview (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192995	Malicious code in @vietmoney/react-native-action-button (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192994	Malicious code in @vietmoney/react-big-calendar (npm)	2025-12-31T13:21:20Z	2026-01-02T21:37:26Z
mal-2025-192984	Malicious code in chai-promised-chains (npm)	2025-12-30T17:11:04Z	2026-01-02T21:37:26Z
mal-2025-192983	Malicious code in bigmathex (npm)	2025-12-30T16:59:03Z	2026-01-02T21:37:26Z
mal-2025-192982	Malicious code in @ptest2535/ui-core_mal (npm)	2025-12-30T17:05:14Z	2026-01-02T21:37:26Z
mal-2025-192981	Malicious code in @ptest2535/test_package (npm)	2025-12-30T17:05:14Z	2026-01-02T21:37:26Z
mal-2025-192980	Malicious code in @ptest2535/l_woker_mal (npm)	2025-12-30T17:05:14Z	2026-01-02T21:37:26Z
mal-2025-192979	Malicious code in @ptest2535/artifactory-demo-ptest (npm)	2025-12-30T17:05:14Z	2026-01-02T21:37:26Z
mal-2025-192966	Malicious code in cdd-plugin-for-datawarrior (npm)	2025-12-30T16:12:28Z	2026-01-02T21:37:26Z
mal-2025-192965	Malicious code in awsmcc (npm)	2025-12-30T16:12:28Z	2026-01-02T21:37:26Z
mal-2025-192964	Malicious code in @peter_wilson12091/internal-json-test-parser (npm)	2025-12-30T16:12:03Z	2026-01-02T21:37:26Z
mal-2025-192941	Malicious code in bola511 (npm)	2025-12-26T14:09:11Z	2026-01-02T21:37:26Z
mal-2025-192938	Malicious code in bettermode-icons (npm)	2025-12-25T21:52:38Z	2026-01-02T21:37:26Z
mal-2025-192932	Malicious code in cc-raiesy (npm)	2025-12-25T18:19:57Z	2026-01-02T21:37:26Z
mal-2025-192927	Malicious code in adril7123 (npm)	2025-12-24T17:05:44Z	2026-01-02T21:37:26Z

ID	Description	Published	Updated
wid-sec-w-2025-0416	Wireshark: Schwachstelle ermöglicht Denial of Service	2025-02-19T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-0362	Linux Kernel: Mehrere Schwachstellen	2025-02-12T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-0309	Linux Kernel: Mehrere Schwachstellen	2025-02-10T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2024-3758	Grub: Schwachstelle ermöglicht nicht spezifizierten Angriff	2024-12-29T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2024-3756	Linux Kernel: Mehrere Schwachstellen	2024-12-26T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2024-3575	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-12-02T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2024-3367	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-11-06T23:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2024-1607	Linux Kernel: Mehrere Schwachstellen	2024-07-14T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2023-2552	Grub2: Mehrere Schwachstellen ermöglichen Codeausführung	2023-10-03T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2023-0748	Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff	2023-03-26T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2022-1823	Linux Kernel: Mehrere Schwachstellen	2022-10-23T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2022-1812	Linux Kernel: Mehrere Schwachstellen	2022-10-20T22:00:00.000+00:00	2025-06-16T22:00:00.000+00:00
wid-sec-w-2025-1329	OTRS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-06-15T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-1327	Grafana: Schwachstelle ermöglicht Offenlegung von Informationen	2025-06-15T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-1274	Microsoft Developer Tools: Mehrere Schwachstellen	2025-06-10T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-0626	Red Hat Enterprise Linux (libxslt): Schwachstelle ermöglicht Codeausführung oder Manipulation von Dateien	2025-03-24T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-0294	libtasn1: Schwachstelle ermöglicht Denial of Service	2025-02-06T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-0218	MIT Kerberos: Schwachstelle ermöglicht Denial of Service	2025-01-29T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2024-2033	Red Hat Enterprise Linux (CPython): Schwachstelle ermöglicht Manipulation von Dateien	2024-09-02T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2024-0880	less: Schwachstelle ermöglicht Codeausführung	2024-04-14T22:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2023-3043	Bluetooth Spezifikation: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-11-30T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2023-2810	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2023-11-01T23:00:00.000+00:00	2025-06-15T22:00:00.000+00:00
wid-sec-w-2025-1324	xwiki: Mehrere Schwachstellen	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1322	GIMP: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1320	Tenable Security Nessus: Mehrere Schwachstellen	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1317	xwiki: Schwachstelle ermöglicht SQL Injection	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1316	Dell integrated Dell Remote Access Controller: Schwachstelle ermöglicht Privilegieneskalation	2025-06-12T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1273	Perl: Mehrere Schwachstellen ermöglichen Denial of Service	2025-06-09T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1097	Mozilla Firefox / Thunderbird: Mehrere Schwachstellen	2025-05-18T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00
wid-sec-w-2025-1000	VMware Tools: Schwachstelle ermöglicht Manipulation von Dateien	2025-05-11T22:00:00.000+00:00	2025-06-12T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2023:5869	Red Hat Security Advisory: nodejs:18 security update	2023-10-18T23:16:45+00:00	2026-01-23T21:10:44+00:00
rhsa-2023:5850	Red Hat Security Advisory: nodejs:16 security update	2023-10-18T17:07:48+00:00	2026-01-23T21:10:41+00:00
rhsa-2023:5849	Red Hat Security Advisory: nodejs:18 security update	2023-10-18T16:26:22+00:00	2026-01-23T21:10:41+00:00
rhsa-2023:5841	Red Hat Security Advisory: httpd24-nghttp2 security update	2023-10-18T10:24:57+00:00	2026-01-23T21:10:40+00:00
rhsa-2023:5838	Red Hat Security Advisory: nghttp2 security update	2023-10-18T10:13:32+00:00	2026-01-23T21:10:40+00:00
rhsa-2023:5837	Red Hat Security Advisory: nghttp2 security update	2023-10-18T10:16:42+00:00	2026-01-23T21:10:39+00:00
rhsa-2023:5803	Red Hat Security Advisory: nodejs:16 security update	2023-10-17T16:38:11+00:00	2026-01-23T21:10:37+00:00
rhsa-2023:5802	Red Hat Security Advisory: Migration Toolkit for Runtimes security update	2023-10-17T16:09:29+00:00	2026-01-23T21:10:37+00:00
rhsa-2023:5801	Red Hat Security Advisory: Migration Toolkit for Runtimes security update	2023-10-17T16:59:42+00:00	2026-01-23T21:10:37+00:00
rhsa-2023:5784	Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.5 release and security update	2023-10-17T15:47:19+00:00	2026-01-23T21:10:36+00:00
rhsa-2023:5783	Red Hat Security Advisory: Red Hat JBoss Web Server 5.7.5 release and security update	2023-10-17T15:44:28+00:00	2026-01-23T21:10:36+00:00
rhsa-2023:5780	Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus 2.13.3 security update	2023-10-17T11:42:54+00:00	2026-01-23T21:10:36+00:00
rhsa-2023:5769	Red Hat Security Advisory: nghttp2 security update	2023-10-17T09:27:07+00:00	2026-01-23T21:10:36+00:00
rhsa-2023:5770	Red Hat Security Advisory: nghttp2 security update	2023-10-17T09:23:57+00:00	2026-01-23T21:10:35+00:00
rhsa-2023:5768	Red Hat Security Advisory: nghttp2 security update	2023-10-17T09:24:28+00:00	2026-01-23T21:10:34+00:00
rhsa-2023:5767	Red Hat Security Advisory: nghttp2 security update	2023-10-17T09:23:12+00:00	2026-01-23T21:10:34+00:00
rhsa-2023:5766	Red Hat Security Advisory: nghttp2 security update	2023-10-17T09:19:55+00:00	2026-01-23T21:10:33+00:00
rhsa-2023:5765	Red Hat Security Advisory: nodejs security update	2023-10-17T09:22:17+00:00	2026-01-23T21:10:32+00:00
rhsa-2023:5764	Red Hat Security Advisory: nodejs security update	2023-10-17T09:14:28+00:00	2026-01-23T21:10:32+00:00
rhsa-2023:5749	Red Hat Security Advisory: .NET 7.0 security update	2023-10-16T14:45:49+00:00	2026-01-23T21:10:32+00:00
rhsa-2023:5720	Red Hat Security Advisory: rh-nginx120-nginx security update	2023-10-16T12:22:59+00:00	2026-01-23T21:10:32+00:00
rhsa-2023:5724	Red Hat Security Advisory: Red Hat build of Quarkus security update	2023-10-16T16:36:18+00:00	2026-01-23T21:10:29+00:00
rhsa-2023:5713	Red Hat Security Advisory: nginx:1.22 security update	2023-10-16T09:09:24+00:00	2026-01-23T21:10:28+00:00
rhsa-2023:5716	Red Hat Security Advisory: Red Hat Data Grid 8.4.5 security update	2023-10-16T14:23:26+00:00	2026-01-23T21:10:26+00:00
rhsa-2023:5715	Red Hat Security Advisory: nginx:1.20 security update	2023-10-16T09:07:14+00:00	2026-01-23T21:10:26+00:00
rhsa-2023:5714	Red Hat Security Advisory: nginx security update	2023-10-16T08:59:33+00:00	2026-01-23T21:10:26+00:00
rhsa-2023:5712	Red Hat Security Advisory: nginx:1.20 security update	2023-10-16T09:09:24+00:00	2026-01-23T21:10:25+00:00
rhsa-2023:5711	Red Hat Security Advisory: nginx security update	2023-10-16T09:00:03+00:00	2026-01-23T21:10:25+00:00
rhsa-2023:5710	Red Hat Security Advisory: dotnet6.0 security update	2023-10-16T08:59:31+00:00	2026-01-23T21:10:24+00:00
rhsa-2023:5705	Red Hat Security Advisory: rh-dotnet60-dotnet security, bug fix, and enhancement update	2023-10-16T08:28:38+00:00	2026-01-23T21:10:24+00:00

ID	Description	Published	Updated
icsa-25-153-02	Schneider Electric EcoStruxure Power Build Rapsody	2025-05-13T04:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-140-06	Schneider Electric PrismaSeT Active - Wireless Panel Server	2025-05-13T04:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-037-01	Schneider Electric EcoStruxure Power Monitoring Expert (PME) (Update B)	2024-10-08T04:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-023-05	Schneider Electric EcoStruxure Power Build Rapsody	2025-01-14T00:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-148-02	Siemens SiPass Integrated	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-18	Siemens SCALANCE LPE9403	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-16	Siemens MS/TP Point Pickup Module	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-14	Siemens APOGEE PXC and TALON TC Series	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-13	Siemens SIRIUS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-12	Siemens SIMATIC PCS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-11	Siemens Polarion	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-10	Siemens OZW Web Servers	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-08	Siemens VersiCharge AC Series EV Chargers	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-06	Siemens Teamcenter Visualization	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-04	Siemens Desigo	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-03	Siemens BACnet ATEC Devices	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-02	Siemens INTRALOG WMS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-105-02	Siemens Industrial Edge Device Kit	2025-04-08T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-24-256-06	Siemens Automation License Manager	2024-09-10T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-24-102-04	Siemens RUGGEDCOM APE1808	2024-04-09T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-22-286-12	Siemens APOGEE, TALON and Desigo PXC/PXM Products	2022-10-11T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-21-194-10	Siemens RUGGEDCOM ROS	2021-07-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsma-25-128-01	Pixmeo OsiriX MD	2025-05-08T06:00:00.000000Z	2025-05-08T06:00:00.000000Z
icsa-25-128-01	Horner Automation Cscape	2025-05-08T06:00:00.000000Z	2025-05-08T06:00:00.000000Z
icsa-25-126-03	BrightSign Players	2025-05-06T06:00:00.000000Z	2025-05-08T06:00:00.000000Z
icsma-25-121-01	MicroDicom DICOM Viewer	2025-05-01T06:00:00.000000Z	2025-05-06T06:00:00.000000Z
icsma-25-100-01	INFINITT Healthcare INFINITT PACS	2025-04-10T06:00:00.000000Z	2025-05-06T06:00:00.000000Z
icsa-25-126-02	Milesight UG65-868M-EA	2025-05-06T06:00:00.000000Z	2025-05-06T06:00:00.000000Z
icsa-25-126-01	Optigo Networks ONS NC600	2025-05-06T06:00:00.000000Z	2025-05-06T06:00:00.000000Z
icsa-25-119-02	Delta Electronics ISPSoft	2025-04-29T06:00:00.000000Z	2025-05-06T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-expressway-filewrite-bsFVwueV	Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities	2022-05-18T16:00:00+00:00	2023-01-17T20:24:01+00:00
cisco-sa-sb-rv-rcedos-7hjp74jd	Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Remote Code Execution and Denial of Service Vulnerability	2023-01-11T16:00:00+00:00	2023-01-12T16:07:37+00:00
cisco-sa-sb-rv-rcedos-7HjP74jD	Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Remote Code Execution and Denial of Service Vulnerability	2023-01-11T16:00:00+00:00	2023-01-12T16:07:37+00:00
cisco-sa-rv-cmd-exe-n47kjqle	Cisco Small Business RV160 and RV260 Series VPN Routers Remote Command Execution Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-rv-cmd-exe-n47kJQLE	Cisco Small Business RV160 and RV260 Series VPN Routers Remote Command Execution Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-lldp-memlk-mcoecpt	Cisco Webex Room Phone and Cisco Webex Share Link Layer Discovery Protocol Memory Leak Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-lldp-memlk-McOecPT	Cisco Webex Room Phone and Cisco Webex Share Link Layer Discovery Protocol Memory Leak Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-ip-phone-auth-bypass-psqxzrpr	Cisco IP Phone 7800 and 8800 Series Web Management Interface Authentication Bypass Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-ip-phone-auth-bypass-pSqxZRPR	Cisco IP Phone 7800 and 8800 Series Web Management Interface Authentication Bypass Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-ind-fzyvjjtg	Cisco Industrial Network Director Vulnerabilities	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-ind-fZyVjJtG	Cisco Industrial Network Director Vulnerabilities	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-cxagent-goq9qjqz	Cisco CX Cloud Agent Privilege Escalation Vulnerabilities	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-cxagent-gOq9QjqZ	Cisco CX Cloud Agent Privilege Escalation Vulnerabilities	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-bw-xss-ezqdxqg4	Cisco BroadWorks Application Delivery Platform, Application Server, and Xtended Services Platform Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-bw-xss-EzqDXqG4	Cisco BroadWorks Application Delivery Platform, Application Server, and Xtended Services Platform Cross-Site Scripting Vulnerability	2023-01-11T16:00:00+00:00	2023-01-11T16:00:00+00:00
cisco-sa-20170927-profinet	Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability	2017-09-27T16:00:00+00:00	2022-12-17T05:54:03+00:00
cisco-sa-20170927-dhcp	Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability	2017-09-27T16:00:00+00:00	2022-12-17T05:51:12+00:00
cisco-sa-20170927-ike	Cisco IOS and IOS XE Software Internet Key Exchange Denial of Service Vulnerability	2017-09-27T16:00:00+00:00	2022-12-17T05:27:48+00:00
cisco-sa-20170927-rbip-dos	Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability	2017-09-27T16:00:00+00:00	2022-12-17T04:17:58+00:00
cisco-sa-20171103-bgp	Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial of Service Vulnerability	2017-11-03T16:00:00+00:00	2022-12-16T21:17:38+00:00
cisco-sa-20170927-nat	Cisco IOS Software Network Address Translation Denial of Service Vulnerability	2017-09-27T16:00:00+00:00	2022-12-16T21:17:38+00:00
cisco-sa-20170927-cip	Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerabilities	2017-09-27T16:00:00+00:00	2022-12-16T21:17:37+00:00
cisco-sa-20180328-dhcpr3	Cisco IOS and IOS XE Software DHCP Version 4 Relay Denial of Service Vulnerability	2018-03-28T16:00:00+00:00	2022-12-15T22:19:57+00:00
cisco-sa-20180328-ike-dos	Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability	2018-03-28T16:00:00+00:00	2022-12-15T22:19:56+00:00
cisco-sa-20180328-dos	Cisco IOS Software Integrated Services Module for VPN Denial of Service Vulnerability	2018-03-28T16:00:00+00:00	2022-12-15T22:19:54+00:00
cisco-sa-20180328-dhcpr1	Cisco IOS and IOS XE Software DHCP Version 4 Relay Heap Overflow Denial of Service Vulnerability	2018-03-28T16:00:00+00:00	2022-12-15T22:19:52+00:00
cisco-sa-20180207-rv13x	Cisco RV132W and RV134W Remote Code Execution and Denial of Service Vulnerability	2018-02-07T16:00:00+00:00	2022-12-15T22:19:52+00:00
cisco-sa-20180328-snmp	Cisco IOS Software Simple Network Management Protocol GET MIB Object ID Denial of Service Vulnerability	2018-03-28T16:00:00+00:00	2022-12-15T22:19:51+00:00
cisco-sa-20191106-sbrv-cmd-x	Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Arbitrary Command Execution Vulnerability	2019-11-06T16:00:00+00:00	2022-12-15T22:19:50+00:00
cisco-sa-20180328-slogin	Cisco IOS Software Login Enhancements Login Block Denial of Service Vulnerabilities	2018-03-28T16:00:00+00:00	2022-12-15T22:19:49+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-38660	[ceph] parse_longname(): strrchr() expects NUL-terminated string	2025-08-02T00:00:00.000Z	2025-12-07T01:48:19.000Z
msrc_cve-2025-38584	padata: Fix pd UAF once and for all	2025-08-02T00:00:00.000Z	2025-12-07T01:48:02.000Z
msrc_cve-2024-53219	virtiofs: use pages instead of pointer for kernel direct IO	2024-12-02T00:00:00.000Z	2025-12-07T01:47:58.000Z
msrc_cve-2024-50217	btrfs: fix use-after-free of block device file in __btrfs_free_extra_devids()	2024-11-02T00:00:00.000Z	2025-12-07T01:47:52.000Z
msrc_cve-2025-38585	staging: media: atomisp: Fix stack buffer overflow in gmin_get_var_int()	2025-08-02T00:00:00.000Z	2025-12-07T01:47:45.000Z
msrc_cve-2024-49885	mm, slub: avoid zeroing kmalloc redzone	2024-10-01T07:00:00.000Z	2025-12-07T01:47:43.000Z
msrc_cve-2025-38591	bpf: Reject narrower access to pointer ctx fields	2025-08-02T00:00:00.000Z	2025-12-07T01:47:36.000Z
msrc_cve-2024-49940	l2tp: prevent possible tunnel refcount underflow	2024-10-01T07:00:00.000Z	2025-12-07T01:47:35.000Z
msrc_cve-2025-8961	LibTIFF tiffcrop tiffcrop.c main memory corruption	2025-08-02T00:00:00.000Z	2025-12-07T01:47:27.000Z
msrc_cve-2024-49932	btrfs: don't readahead the relocation inode on RST	2024-10-01T07:00:00.000Z	2025-12-07T01:47:26.000Z
msrc_cve-2024-49888	bpf: Fix a sdiv overflow issue	2024-10-01T07:00:00.000Z	2025-12-07T01:47:17.000Z
msrc_cve-2025-38531	iio: common: st_sensors: Fix use of uninitialize device structs	2025-08-02T00:00:00.000Z	2025-12-07T01:47:16.000Z
msrc_cve-2025-8114	: null pointer dereference in libssh kex session id calculation	2025-07-02T00:00:00.000Z	2025-12-07T01:47:07.000Z
msrc_cve-2025-64329	containerd CRI server: Host memory exhaustion through Attach goroutine leak	2025-11-02T00:00:00.000Z	2025-12-07T01:47:05.000Z
msrc_cve-2024-58266	The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection.	2025-07-02T00:00:00.000Z	2025-12-07T01:46:56.000Z
msrc_cve-2025-21825	bpf: Cancel the running bpf_timer through kworker for PREEMPT_RT	2025-03-02T00:00:00.000Z	2025-12-07T01:46:49.000Z
msrc_cve-2024-49968	ext4: filesystems without casefold feature cannot be mounted with siphash	2024-10-01T07:00:00.000Z	2025-12-07T01:46:42.000Z
msrc_cve-2025-37942	HID: pidff: Make sure to fetch pool before checking SIMULTANEOUS_MAX	2025-05-02T00:00:00.000Z	2025-12-07T01:46:28.000Z
msrc_cve-2024-49971	drm/amd/display: Increase array size of dummy_boolean	2024-10-01T07:00:00.000Z	2025-12-07T01:46:21.000Z
msrc_cve-2025-12464	Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode	2025-10-02T00:00:00.000Z	2025-12-07T01:46:15.000Z
msrc_cve-2024-49945	net/ncsi: Disable the ncsi work before freeing the associated structure	2024-10-01T07:00:00.000Z	2025-12-07T01:46:11.000Z
msrc_cve-2025-6075	Quadratic complexity in os.path.expandvars() with user-controlled template	2025-10-02T00:00:00.000Z	2025-12-07T01:46:03.000Z
msrc_cve-2024-49972	drm/amd/display: Deallocate DML memory if allocation fails	2024-10-01T07:00:00.000Z	2025-12-07T01:46:00.000Z
msrc_cve-2025-40247	drm/msm: Fix pgtable prealloc error path	2025-12-02T00:00:00.000Z	2025-12-07T01:45:55.000Z
msrc_cve-2024-38595	net/mlx5: Fix peer devlink set for SF representor devlink port	2024-06-02T07:00:00.000Z	2025-12-07T01:45:25.000Z
msrc_cve-2025-40099	cifs: parse_dfs_referrals: prevent oob on malformed input	2025-10-02T00:00:00.000Z	2025-12-07T01:45:14.000Z
msrc_cve-2025-40105	vfs: Don't leak disconnected dentries on umount	2025-10-02T00:00:00.000Z	2025-12-07T01:45:03.000Z
msrc_cve-2024-49920	drm/amd/display: Check null pointers before multiple uses	2024-10-01T07:00:00.000Z	2025-12-07T01:44:52.000Z
msrc_cve-2025-40100	btrfs: do not assert we found block group item when creating free space tree	2025-10-02T00:00:00.000Z	2025-12-07T01:44:51.000Z
msrc_cve-2025-46394	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	2025-04-02T00:00:00.000Z	2025-12-07T01:44:46.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-200807-0659	ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS…	2024-07-23T20:10:45.133000Z
var-200704-0225	Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through …	2024-07-23T20:10:45.084000Z
var-201006-1188	Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in …	2024-07-23T20:10:35.248000Z
var-201711-0445	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2024-07-23T20:10:30.264000Z
var-201511-0037	The xmlParseConditionalSections function in parser.c in libxml2 does not properly skip in…	2024-07-23T20:10:29.538000Z
var-200901-0719	Use-after-free vulnerability in the garbage-collection implementation in WebCore in WebKi…	2024-07-23T20:10:28.318000Z
var-200609-1080	WebKit in Apple Mac OS X 10.3.x through 10.3.9 and 10.4 through 10.4.8 allows remote atta…	2024-07-23T20:10:27.537000Z
var-200703-0020	Stack-based buffer overflow in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 allows remot…	2024-07-23T20:10:24.518000Z
var-201411-0450	parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when ent…	2024-07-23T20:10:22.216000Z
var-201806-1469	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2024-07-23T20:09:50.388000Z
var-201211-0168	Use-after-free vulnerability in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0…	2024-07-23T20:09:49.294000Z
var-201812-0273	Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers …	2024-07-23T20:09:48.925000Z
var-201912-0508	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:09:18.614000Z
var-201001-0654	The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial …	2024-07-23T20:08:47.142000Z
var-202203-0034	A carefully crafted request body can cause a read to a random memory area which could cau…	2024-07-23T20:08:45.595000Z
var-201508-0365	The xmlreader in libxml allows remote attackers to cause a denial of service (memory cons…	2024-07-23T20:08:45.504000Z
var-202109-0747	A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could a…	2024-07-23T20:08:29.365000Z
var-201912-0593	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:08:16.158000Z
var-200407-0196	Floating point information leak in the context switch code for Linux 2.4.x only checks th…	2024-07-23T20:08:16.659000Z
var-200704-0224	Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 thro…	2024-07-23T20:08:14.670000Z
var-202203-0072	Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are e…	2024-07-23T20:08:13.500000Z
var-200706-0660	cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabl…	2024-07-23T20:08:13.677000Z
var-200512-0212	Perl in Apple Mac OS X Server 10.3.9 does not properly drop privileges when using the "$<…	2024-07-23T20:08:00.279000Z
var-200704-0216	Integer overflow in the RPC library in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 al…	2024-07-23T20:07:26.135000Z
var-201107-0097	Integer signedness error in psaux/t1decode.c in FreeType before 2.4.6, as used in CoreGra…	2024-07-23T20:07:25.589000Z
var-201912-1863	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-07-23T20:07:23.498000Z
var-201302-0303	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2024-07-23T20:07:23.926000Z
var-201302-0232	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:07:23.855000Z
var-201210-0144	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T20:07:23.613000Z
var-200809-0194	VideoConference in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allows remote attackers…	2024-07-23T20:07:23.438000Z

ID	Description	Published	Updated
jvndb-2020-000022	Multiple vulnerabilities in EasyBlocks IPv6	2020-04-08T16:12+09:00	2020-04-08T16:12+09:00
jvndb-2020-000024	Joomla! plugin "AcyMailing" vulnerable to arbitrary file uploads	2020-04-07T14:49+09:00	2020-04-07T14:49+09:00
jvndb-2020-000021	Multiple Yamaha network devices vulnerable to denial-of-service (DoS)	2020-03-31T17:44+09:00	2020-04-01T18:38+09:00
jvndb-2019-000014	The installer of Microsoft Teams may insecurely load Dynamic Link Libraries	2019-04-02T14:18+09:00	2020-04-01T16:55+09:00
jvndb-2020-002958	Denial-of-service (DoS) vulnerability in Mitsubishi Electric MELSOFT transmission port	2020-03-31T13:37+09:00	2020-04-01T14:45+09:00
jvndb-2020-000907	WL-Enq (WEB Enquete) vulnerable to OS command injection	2020-03-25T09:50+09:00	2020-03-25T09:50+09:00
jvndb-2020-000908	Keijiban Tsumiki vulnerable to OS command injection	2020-03-24T18:14+09:00	2020-03-24T18:14+09:00
jvndb-2020-000900	mailform vulnerable to cross-site scripting	2020-03-24T18:05+09:00	2020-03-24T18:05+09:00
jvndb-2020-000901	mailform vulnerable to PHP code execution	2020-03-24T17:59+09:00	2020-03-24T17:59+09:00
jvndb-2020-000902	Multiple vulnerabilities in Shihonkanri Plus GOOUT	2020-03-24T17:53+09:00	2020-03-24T17:53+09:00
jvndb-2020-000903	Shihonkanri Plus GOOUT vulnerable to OS command injection	2020-03-24T17:47+09:00	2020-03-24T17:47+09:00
jvndb-2020-000904	CuteNews vulnerable to cross-site scripting	2020-03-24T17:42+09:00	2020-03-24T17:42+09:00
jvndb-2020-000905	Cute News vulnerable to PHP code execution	2020-03-24T17:40+09:00	2020-03-24T17:40+09:00
jvndb-2020-002278	Cross-site Scripting Vulnerability in JP1/Performance Management - Manager [Web Console]	2020-03-11T14:16+09:00	2020-03-11T14:16+09:00
jvndb-2020-002219	Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center	2020-03-09T11:23+09:00	2020-03-09T11:23+09:00
jvndb-2020-002220	Improper LDAPS Certificate Validation in Hitachi Ops Center Common Services	2020-03-09T11:21+09:00	2020-03-09T11:21+09:00
jvndb-2020-000013	Multiple Trend Micro products vulnerable to denial-of-service (DoS)	2020-02-14T13:39+09:00	2020-03-06T13:56+09:00
jvndb-2020-000020	Multiple vulnerabilities in OpenBlocks IoT VX2	2020-03-03T17:50+09:00	2020-03-03T17:50+09:00
jvndb-2020-000019	GRANDIT vulnerable to session management	2020-03-02T14:39+09:00	2020-03-02T14:39+09:00
jvndb-2019-000058	Multiple buffer overflow vulnerabilities in multiple Ricoh printers and Multifunction Printers (MFPs)	2019-09-13T14:29+09:00	2020-02-25T17:27+09:00
jvndb-2019-014138	Improper Authentication Vulnerability in RICOH printers	2020-02-25T15:47+09:00	2020-02-25T15:47+09:00
jvndb-2019-014137	Improper Access Control Vulnerability in RICOH printers	2020-02-25T15:44+09:00	2020-02-25T15:44+09:00
jvndb-2019-014437	Privilege escalation vulnerability in multiple RICOH printer drivers	2020-02-25T15:29+09:00	2020-02-25T15:29+09:00
jvndb-2019-014031	Cross-site Request Forgery Vulnerability in RICOH printers	2020-02-25T14:06+09:00	2020-02-25T14:06+09:00
jvndb-2019-014136	Information Disclosure Vulnerability in RICOH printers	2020-02-25T14:02+09:00	2020-02-25T14:02+09:00
jvndb-2020-000016	Multiple OS command injection vulnerabilities in Aterm WF1200C, Aterm WG1200CR, and Aterm WG2600HS	2020-02-19T14:39+09:00	2020-02-19T14:39+09:00
jvndb-2020-000015	Multiple vulnerabilities in Aterm WG2600HS	2020-02-19T14:34+09:00	2020-02-19T14:34+09:00
jvndb-2020-000012	WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery	2020-02-18T13:42+09:00	2020-02-18T13:42+09:00
jvndb-2020-001591	Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000	2020-02-18T12:10+09:00	2020-02-18T12:10+09:00
jvndb-2020-001545	Security information for Hitachi Disk Array Systems	2020-02-14T15:34+09:00	2020-02-14T15:34+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:03283-1	Security update for the Linux Kernel	2025-09-19T17:49:42Z	2025-09-19T17:49:42Z
suse-su-2025:03280-1	Security update for cairo	2025-09-19T17:43:21Z	2025-09-19T17:43:21Z
suse-su-2025:03278-1	Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container	2025-09-19T13:42:08Z	2025-09-19T13:42:08Z
suse-su-2025:03277-1	Security update for bluez	2025-09-19T12:18:50Z	2025-09-19T12:18:50Z
suse-su-2025:03275-1	Security update for mariadb	2025-09-19T12:16:08Z	2025-09-19T12:16:08Z
suse-su-2025:03273-1	Security update for python-h2	2025-09-19T12:12:03Z	2025-09-19T12:12:03Z
suse-su-2025:20718-1	Security update for udisks2	2025-09-19T07:44:21Z	2025-09-19T07:44:21Z
suse-su-2025:03272-1	Security update for the Linux Kernel	2025-09-18T18:51:32Z	2025-09-18T18:51:32Z
suse-su-2025:02844-2	Security update for the Linux Kernel	2025-09-18T13:20:50Z	2025-09-18T13:20:50Z
suse-su-2025:02844-1	Security update for the Linux Kernel	2025-09-18T13:20:50Z	2025-09-18T13:20:50Z
suse-su-2025:03270-1	Security update for krb5	2025-09-18T11:18:08Z	2025-09-18T11:18:08Z
suse-su-2025:03269-1	Security update for bluez	2025-09-18T11:09:45Z	2025-09-18T11:09:45Z
suse-su-2025:03268-1	Security update for curl	2025-09-18T11:08:43Z	2025-09-18T11:08:43Z
suse-su-2025:03267-1	Security update for curl	2025-09-18T11:06:28Z	2025-09-18T11:06:28Z
suse-su-2025:03266-1	Security update for avahi	2025-09-18T10:35:27Z	2025-09-18T10:35:27Z
suse-su-2025:03262-1	Security update for java-1_8_0-ibm	2025-09-18T06:42:05Z	2025-09-18T06:42:05Z
suse-su-2025:03261-1	Security update for cups	2025-09-18T04:35:34Z	2025-09-18T04:35:34Z
suse-su-2025:03260-1	Security update for net-tools	2025-09-18T00:09:50Z	2025-09-18T00:09:50Z
suse-su-2025:03257-1	Security update for raptor	2025-09-17T19:01:57Z	2025-09-17T19:01:57Z
suse-su-2025:20783-1	Security update for sevctl	2025-09-17T11:34:38Z	2025-09-17T11:34:38Z
suse-su-2025:20750-1	Security update for pam	2025-09-17T11:31:17Z	2025-09-17T11:31:17Z
suse-su-2025:03247-1	Security update for nvidia-open-driver-G06-signed	2025-09-17T11:11:37Z	2025-09-17T11:11:37Z
suse-su-2025:03246-1	Security update for nvidia-open-driver-G06-signed	2025-09-17T11:11:22Z	2025-09-17T11:11:22Z
suse-su-2025:03245-1	Security update for net-tools	2025-09-17T10:55:16Z	2025-09-17T10:55:16Z
suse-su-2025:03244-1	Security update for raptor	2025-09-17T10:52:12Z	2025-09-17T10:52:12Z
suse-su-2025:03240-1	Security update for vim	2025-09-16T19:57:09Z	2025-09-16T19:57:09Z
suse-su-2025:03239-1	Security update for expat	2025-09-16T17:04:04Z	2025-09-16T17:04:04Z
suse-su-2025:03237-1	Security update for libavif	2025-09-16T10:05:02Z	2025-09-16T10:05:02Z
suse-su-2025:03236-1	Security update for java-1_8_0-ibm	2025-09-16T09:11:36Z	2025-09-16T09:11:36Z
suse-su-2025:20717-1	Security update for rust-keylime	2025-09-16T07:50:08Z	2025-09-16T07:50:08Z

ID	Description	Published	Updated
opensuse-su-2025:14922-1	chromedriver-134.0.6998.117-1.1 on GA media	2025-03-25T00:00:00Z	2025-03-25T00:00:00Z
opensuse-su-2025:14921-1	argocd-cli-2.14.8-1.1 on GA media	2025-03-25T00:00:00Z	2025-03-25T00:00:00Z
opensuse-su-2025:0103-1	Security update for cadvisor	2025-03-24T17:01:45Z	2025-03-24T17:01:45Z
opensuse-su-2025:14920-1	gitleaks-8.24.2-1.1 on GA media	2025-03-24T00:00:00Z	2025-03-24T00:00:00Z
opensuse-su-2025:14919-1	forgejo-10.0.3-1.1 on GA media	2025-03-24T00:00:00Z	2025-03-24T00:00:00Z
opensuse-su-2025:0101-1	Security update for radare2	2025-03-23T15:01:53Z	2025-03-23T15:01:53Z
opensuse-su-2025:0098-1	Security update for chromium	2025-03-22T10:55:25Z	2025-03-22T10:55:25Z
opensuse-su-2025:14918-1	warewulf4-4.6.0-2.1 on GA media	2025-03-21T00:00:00Z	2025-03-21T00:00:00Z
opensuse-su-2025:14917-1	nodejs-electron-33.4.6-1.1 on GA media	2025-03-21T00:00:00Z	2025-03-21T00:00:00Z
opensuse-su-2025:0094-1	Security update for gitea-tea	2025-03-20T13:01:19Z	2025-03-20T13:01:19Z
opensuse-su-2025:14916-1	xorg-x11-server-21.1.15-3.1 on GA media	2025-03-20T00:00:00Z	2025-03-20T00:00:00Z
opensuse-su-2025:14915-1	tomcat10-10.1.39-1.1 on GA media	2025-03-20T00:00:00Z	2025-03-20T00:00:00Z
opensuse-su-2025:14914-1	python311-joblib-1.4.2-2.1 on GA media	2025-03-20T00:00:00Z	2025-03-20T00:00:00Z
opensuse-su-2025:14913-1	python311-Django-5.1.7-1.1 on GA media	2025-03-20T00:00:00Z	2025-03-20T00:00:00Z
opensuse-su-2025:14912-1	mercurial-6.9.4-1.1 on GA media	2025-03-20T00:00:00Z	2025-03-20T00:00:00Z
opensuse-su-2025:14911-1	tomcat-9.0.102-1.1 on GA media	2025-03-19T00:00:00Z	2025-03-19T00:00:00Z
opensuse-su-2025:14910-1	govulncheck-vulndb-0.0.20250318T181448-1.1 on GA media	2025-03-19T00:00:00Z	2025-03-19T00:00:00Z
opensuse-su-2025:14909-1	apptainer-1.3.6-5.1 on GA media	2025-03-19T00:00:00Z	2025-03-19T00:00:00Z
opensuse-su-2025:14908-1	python311-Django4-4.2.20-1.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14907-1	kured-1.17.1-1.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14906-1	helm-3.17.2-1.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14905-1	crane-0.20.3-2.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14904-1	cadvisor-0.52.1-1.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14903-1	assimp-devel-5.4.3-4.1 on GA media	2025-03-18T00:00:00Z	2025-03-18T00:00:00Z
opensuse-su-2025:14902-1	rime-plum-1.0.3-1.1 on GA media	2025-03-17T00:00:00Z	2025-03-17T00:00:00Z
opensuse-su-2025:14901-1	dcmtk-3.6.9-3.1 on GA media	2025-03-17T00:00:00Z	2025-03-17T00:00:00Z
opensuse-su-2025:14900-1	copacetic-0.10.0-1.1 on GA media	2025-03-17T00:00:00Z	2025-03-17T00:00:00Z
opensuse-su-2025:14899-1	wpa_supplicant-2.11-4.1 on GA media	2025-03-16T00:00:00Z	2025-03-16T00:00:00Z
opensuse-su-2025:14898-1	nethack-3.4.3-6.1 on GA media	2025-03-16T00:00:00Z	2025-03-16T00:00:00Z
opensuse-su-2025:0091-1	Security update for restic	2025-03-15T11:01:16Z	2025-03-15T11:01:16Z

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2025-29306	Huawei HarmonyOS和EMUI组件暴露漏洞	2024-01-23	2025-11-24
cnvd-2025-29305	Huawei HarmonyOS和EMUI参数未校验漏洞（CNVD-2025-29305）	2024-01-23	2025-11-24
cnvd-2025-29304	Huawei HarmonyOS和EMUI参数未校验漏洞	2024-01-23	2025-11-24
cnvd-2025-29303	Huawei HarmonyOS和EMUI数据机密性漏洞	2024-01-23	2025-11-24
cnvd-2025-29302	Huawei HarmonyOS和EMUI可信关系不准确漏洞	2024-01-23	2025-11-24
cnvd-2025-29301	WordPress Live sales notification for WooCommerce plugin缺少授权漏洞	2025-11-20	2025-11-24
cnvd-2025-29300	WordPress Icon List Block plugin服务端请求伪造漏洞	2025-11-20	2025-11-24
cnvd-2025-29299	WordPress Element Pack Addons for Elementor plugin跨站脚本漏洞	2025-11-20	2025-11-24
cnvd-2025-29298	WordPress Cryptocurrency Payment Gateway for WooCommerce plugin未经授权的数据修改漏洞	2025-11-20	2025-11-24
cnvd-2025-29297	WordPress Checkout Files Upload for WooCommerce plugin跨站脚本漏洞	2025-11-20	2025-11-24
cnvd-2025-29296	WordPress Broken Link Checker by AIOSEO plugin缺少授权漏洞	2025-11-20	2025-11-24
cnvd-2025-29295	WordPress AI Engine plugin服务端请求伪造漏洞	2025-11-20	2025-11-24
cnvd-2025-29294	WordPress Community Events plugin SQL注入漏洞	2025-11-21	2025-11-24
cnvd-2025-29293	WordPress Code Snippets plugin代码注入漏洞	2025-11-21	2025-11-24
cnvd-2025-29292	WordPress Booking for Appointments plugin输入验证错误漏洞	2025-11-21	2025-11-24
cnvd-2025-29241	Google Chrome代码问题漏洞（CNVD-2025-29241）	2025-11-18	2025-11-21
cnvd-2025-29240	Google Chrome代码问题漏洞（CNVD-2025-29240）	2025-11-18	2025-11-21
cnvd-2025-29239	Google Chrome代码问题漏洞（CNVD-2025-29239）	2025-11-18	2025-11-21
cnvd-2025-29238	Google Chrome代码问题漏洞（CNVD-2025-29238）	2025-11-18	2025-11-21
cnvd-2025-29237	Google Chrome缓冲区溢出漏洞（CNVD-2025-29237）	2025-11-18	2025-11-21
cnvd-2025-29236	Google Chrome代码问题漏洞（CNVD-2025-29236）	2025-11-21	2025-11-21
cnvd-2025-29235	Google Chrome代码问题漏洞（CNVD-2025-29235）	2025-11-21	2025-11-21
cnvd-2025-29234	Google Chrome代码问题漏洞（CNVD-2025-29234）	2025-11-21	2025-11-21
cnvd-2025-29233	Google Chrome代码问题漏洞（CNVD-2025-29233）	2025-11-21	2025-11-21
cnvd-2025-29232	Google Chrome代码问题漏洞（CNVD-2025-29232）	2025-11-21	2025-11-21
cnvd-2025-29179	IBM Db2存在未明漏洞（CNVD-2025-29179）	2025-11-12	2025-11-21
cnvd-2025-29178	IBM Db2拒绝服务漏洞（CNVD-2025-29178）	2025-11-12	2025-11-21
cnvd-2025-29177	IBM Db2拒绝服务漏洞（CNVD-2025-29177）	2025-11-12	2025-11-21
cnvd-2025-29176	IBM Db2拒绝服务漏洞（CNVD-2025-29176）	2025-11-12	2025-11-21
cnvd-2025-29175	IBM Db2拒绝服务漏洞（CNVD-2025-29175）	2025-11-12	2025-11-21

ID	Description	Published	Updated
CERTFR-2025-AVI-0695	Multiples vulnérabilités dans les produits Palo Alto Networks	2025-08-14T00:00:00.000000	2025-08-14T00:00:00.000000
CERTFR-2025-AVI-0694	Vulnérabilité dans Apache Tomcat	2025-08-14T00:00:00.000000	2025-08-14T00:00:00.000000
CERTFR-2025-AVI-0693	Multiples vulnérabilités dans VMware Tanzu	2025-08-14T00:00:00.000000	2025-08-14T00:00:00.000000
CERTFR-2025-AVI-0692	Multiples vulnérabilités dans Ruby on Rails	2025-08-14T00:00:00.000000	2025-08-14T00:00:00.000000
CERTFR-2025-AVI-0691	Vulnérabilité dans Nginx	2025-08-14T00:00:00.000000	2025-08-14T00:00:00.000000
certfr-2025-avi-0690	Multiples vulnérabilités dans GitLab	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0689	Multiples vulnérabilités dans les produits Microsoft	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0688	Multiples vulnérabilités dans Microsoft Azure	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0687	Multiples vulnérabilités dans Microsoft Windows	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0686	Multiples vulnérabilités dans Microsoft Office	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0685	Multiples vulnérabilités dans Microsoft Edge	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0684	Multiples vulnérabilités dans les produits Intel	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0683	Multiples vulnérabilités dans les produits Ivanti	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0682	Multiples vulnérabilités dans Liferay	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0681	Multiples vulnérabilités dans Google Chrome	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0680	Multiples vulnérabilités dans les produits FoxIT	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0679	Multiples vulnérabilités dans les produits Fortinet	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
certfr-2025-avi-0678	Multiples vulnérabilités dans les produits Adobe	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0690	Multiples vulnérabilités dans GitLab	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0689	Multiples vulnérabilités dans les produits Microsoft	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0688	Multiples vulnérabilités dans Microsoft Azure	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0687	Multiples vulnérabilités dans Microsoft Windows	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0686	Multiples vulnérabilités dans Microsoft Office	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0685	Multiples vulnérabilités dans Microsoft Edge	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0684	Multiples vulnérabilités dans les produits Intel	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0683	Multiples vulnérabilités dans les produits Ivanti	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0682	Multiples vulnérabilités dans Liferay	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0681	Multiples vulnérabilités dans Google Chrome	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0680	Multiples vulnérabilités dans les produits FoxIT	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000
CERTFR-2025-AVI-0679	Multiples vulnérabilités dans les produits Fortinet	2025-08-13T00:00:00.000000	2025-08-13T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated