Recent vulnerabilities

ID	Description	Published	Updated
ghsa-5x99-r8pc-wjj3	Whale browser before 4.35.351.12 allows an attacker to bypass the Same-Origin Policy in a sidebar e…	2025-12-30T03:30:16Z	2025-12-31T18:30:23Z
ghsa-5cqm-hjcp-75c4	Authorization Bypass Through User-Controlled Key vulnerability in Eduardo Villão MyD Delivery allow…	2025-12-31T18:30:23Z	2025-12-31T18:30:23Z
ghsa-3363-w75h-ch2p	Cross-Site Request Forgery (CSRF) vulnerability in Appointify allows Cross Site Request Forgery.Thi…	2025-12-31T18:30:23Z	2025-12-31T18:30:23Z
ghsa-2wcx-prwg-mc24	In NagiosXI 2026R1.0.1 build 1762361101, Dashboard parameters lack proper filtering, allowing any a…	2025-12-29T21:30:24Z	2025-12-31T18:30:23Z
ghsa-r6xg-3mr4-3226	A type confusion in jsish 2.0 allows incorrect control flow during execution of the OP_NEXT opcode.…	2025-12-29T15:30:22Z	2025-12-31T18:30:22Z
ghsa-pg74-76w3-h2pm	File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell.	2025-12-29T15:30:21Z	2025-12-31T18:30:22Z
ghsa-cj5p-mv79-727v	An issue in Fossorial fosrl/pangolin v.1.6.2 and before allows a remote attacker to escalate privil…	2025-12-29T18:30:54Z	2025-12-31T18:30:22Z
ghsa-8qj4-vcg9-jq63	rofl0r/proxychains-ng versions up to and including 4.17 and prior to commit cc005b7 contain a stack…	2025-12-19T00:31:42Z	2025-12-31T18:30:19Z
ghsa-wvmf-999m-w27j	Genymobile/scrcpy versions up to and including 3.3.3 and prior to commit 3e40b24 contain a global b…	2025-12-19T00:31:41Z	2025-12-31T18:30:18Z
ghsa-mc4p-3xcw-5f46	CMSimple 5.15 contains a remote command execution vulnerability that allows authenticated attackers…	2025-12-11T00:30:33Z	2025-12-31T18:30:18Z
ghsa-h7qg-49w9-4cpx	merbanan/rtl_433 versions up to and including 25.02 and prior to commit 25e47f8 contain a stack-bas…	2025-12-19T00:31:42Z	2025-12-31T18:30:18Z
ghsa-xm5g-hxq6-4594	Missing Authorization vulnerability in NewClarity DMCA Protection Badge allows Exploiting Incorrect…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-w672-774w-v28p	Missing Authorization vulnerability in Totalsoft Portfolio Gallery allows Exploiting Incorrectly Co…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-r94r-p2mj-94hp	Insertion of Sensitive Information Into Sent Data vulnerability in Vladimir Statsenko Terms descrip…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-qpj2-4j52-76x3	Missing Authorization vulnerability in Nik Melnik Realbig allows Exploiting Incorrectly Configured …	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-pcwr-hh78-pj54	Missing Authorization vulnerability in nicdark Hotel Booking allows Exploiting Incorrectly Configur…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-j3f6-56pp-mf3x	Missing Authorization vulnerability in 101gen Wawp allows Exploiting Incorrectly Configured Access …	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-h536-w556-w389	Missing Authorization vulnerability in Marco Milesi WP Attachments allows Exploiting Incorrectly Co…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-fxf2-4r6f-c9jr	Missing Authorization vulnerability in Vollstart Serial Codes Generator and Validator with WooComme…	2025-12-31T15:30:25Z	2025-12-31T15:30:26Z
ghsa-98mx-343r-f4mp	Missing Authorization vulnerability in Illia Simple Like Page allows Exploiting Incorrectly Configu…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-8c3v-8qc8-f9h3	Missing Authorization vulnerability in WP Grids EasyTest allows Exploiting Incorrectly Configured A…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-7wgf-hqx6-2fh3	Missing Authorization vulnerability in Quadlayers QuadLayers TikTok Feed allows Exploiting Incorrec…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-56rf-v7jx-hxgf	Authorization Bypass Through User-Controlled Key vulnerability in Jewel Theme Master Addons for Ele…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-4p79-qfrw-w68q	Missing Authorization vulnerability in SaifuMak Add Custom Codes allows Exploiting Incorrectly Conf…	2025-12-31T15:30:26Z	2025-12-31T15:30:26Z
ghsa-x3w4-6mjx-wqrf	Cross-Site Request Forgery (CSRF) vulnerability in Rick Beckman OpenHook allows Cross Site Request …	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z
ghsa-w47j-mh57-m3r9	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z
ghsa-rf4f-7q96-c7hp	Cross-Site Request Forgery (CSRF) vulnerability in A WP Life Contact Form Widget allows Cross Site …	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z
ghsa-mv8j-h3m3-79c2	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z
ghsa-m5jf-m4cj-q3cw	Cross-Site Request Forgery (CSRF) vulnerability in Jayce53 EasyIndex easyindex allows Cross Site Re…	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z
ghsa-jfjc-vhgj-m67h	Missing Authorization vulnerability in Mohammed Kaludi Core Web Vitals & PageSpeed Booster allows E…	2025-12-31T15:30:25Z	2025-12-31T15:30:25Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-15276	7.8 (v3.0)	FontForge SFD File Parsing Deserialization of Untruste…	FontForge	FontForge	2025-12-31T06:59:24.595Z	2025-12-31T16:58:13.207Z
cve-2025-63016	5.3 (v3.1)	WordPress QuadLayers TikTok Feed plugin <= 4.6.4 - Bro…	Quadlayers	QuadLayers TikTok Feed	2025-12-31T15:03:53.532Z	2025-12-31T16:58:08.022Z
cve-2025-63022	5.3 (v3.1)	WordPress Simple Like Page plugin <= 1.5.3 - Broken Ac…	Illia	Simple Like Page	2025-12-31T15:06:37.955Z	2025-12-31T16:58:00.229Z
cve-2025-62141	5.3 (v3.1)	WordPress Wawp plugin <= 4.0.5 - Broken Access Control…	101gen	Wawp	2025-12-31T15:07:45.128Z	2025-12-31T16:57:54.437Z
cve-2025-62139	5.3 (v3.1)	WordPress Terms descriptions plugin <= 3.4.9 - Sensiti…	Vladimir Statsenko	Terms descriptions	2025-12-31T15:08:46.383Z	2025-12-31T16:57:48.865Z
cve-2025-63031	5.3 (v3.1)	WordPress EasyTest plugin <= 1.0.1 - Broken Access Con…	WP Grids	EasyTest	2025-12-31T15:09:28.810Z	2025-12-31T16:57:43.375Z
cve-2025-62755	5.3 (v3.1)	WordPress GS Portfolio for Envato plugin <= 1.4.2 - Br…	GS Plugins	GS Portfolio for Envato	2025-12-31T15:22:00.836Z	2025-12-31T16:57:37.311Z
cve-2025-62092	5.3 (v3.1)	WordPress Wiremo plugin <= 1.4.99 - Broken Access Cont…	Wiremo	Wiremo	2025-12-31T15:22:41.320Z	2025-12-31T16:57:26.782Z
cve-2025-62129	5.3 (v3.1)	WordPress RestroPress plugin <= 3.2.4.2 - Broken Acces…	Magnigenie	RestroPress	2025-12-31T15:23:30.738Z	2025-12-31T16:57:21.801Z
cve-2025-59136	5.3 (v3.1)	WordPress Gerencianet Oficial plugin <= 3.1.3 - Sensit…	Efí Bank	Gerencianet Oficial	2025-12-31T15:24:15.816Z	2025-12-31T16:57:16.730Z
cve-2025-49334	5.3 (v3.1)	WordPress MyD Delivery plugin <= 1.3.7 - Insecure Dire…	Eduardo Villão	MyD Delivery	2025-12-31T15:25:23.165Z	2025-12-31T16:57:11.636Z
cve-2025-15390		PHPGurukul Small CRM edit-user.php authorization	PHPGurukul	Small CRM	2025-12-31T15:32:06.699Z	2025-12-31T16:57:06.281Z
cve-2025-62747	5.3 (v3.1)	WordPress Featured Image Generator plugin <= 1.3.3 - B…	Aum Watcharapon	Featured Image Generator	2025-12-31T15:33:59.438Z	2025-12-31T16:56:59.794Z
cve-2025-49338	5.3 (v3.1)	WordPress Flowbox plugin <= 1.1.5 - Broken Access Cont…	Flowbox	Flowbox	2025-12-31T15:35:54.047Z	2025-12-31T16:56:54.201Z
cve-2025-62126	5.3 (v3.1)	WordPress Varnish/Nginx Proxy Caching plugin <= 1.8.3 …	Razvan Stanga	Varnish/Nginx Proxy Caching	2025-12-31T15:36:42.037Z	2025-12-31T16:56:48.873Z
cve-2025-62079	5.3 (v3.1)	WordPress WP Export Categories & Taxonomies plugin <= …	Damian	WP Export Categories & Taxonomies	2025-12-31T15:37:27.530Z	2025-12-31T16:56:43.297Z
cve-2025-62122	5.3 (v3.1)	WordPress Trash Duplicate and 301 Redirect plugin <= 1…	Solwininfotech	Trash Duplicate and 301 Redirect	2025-12-31T15:38:08.774Z	2025-12-31T16:56:38.364Z
cve-2025-62116	5.3 (v3.1)	WordPress AI Copilot plugin <= 1.4.7 - Broken Access C…	Quadlayers	AI Copilot	2025-12-31T15:39:13.222Z	2025-12-31T16:56:33.268Z
cve-2025-62114	5.3 (v3.1)	WordPress Download Media Library plugin <= 0.2.1 - Sen…	Marcelo Torres	Download Media Library	2025-12-31T15:40:07.221Z	2025-12-31T16:56:28.298Z
cve-2025-62154	4.3 (v3.1)	WordPress AI Content Writing Assistant (Content Writer…	Recorp	AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One	2025-12-31T15:41:50.974Z	2025-12-31T16:56:23.125Z
cve-2025-62150	4.3 (v3.1)	WordPress History Timeline plugin <= 1.0.6 - Broken Ac…	Themesawesome	History Timeline	2025-12-31T15:42:58.777Z	2025-12-31T16:56:18.402Z
cve-2025-62080	4.3 (v3.1)	WordPress Live Shopping & Shoppable Videos For WooComm…	Channelize.io Team	Live Shopping & Shoppable Videos For WooCommerce	2025-12-31T15:44:45.835Z	2025-12-31T16:56:12.852Z
cve-2025-62148	4.3 (v3.1)	WordPress Robots.txt rewrite plugin <= 1.6.1 - Cross S…	Eugen Bobrowski	Robots.txt rewrite	2025-12-31T15:45:54.708Z	2025-12-31T16:56:07.222Z
cve-2025-62143	4.3 (v3.1)	WordPress Post Video Players plugin <= 1.163 - Sensiti…	nicashmu	Post Video Players	2025-12-31T15:49:17.340Z	2025-12-31T16:55:59.696Z
cve-2025-62084	4.3 (v3.1)	WordPress iNext Woo Pincode Checker plugin <= 2.3.1 - …	Imdad Next Web	iNext Woo Pincode Checker	2025-12-31T15:50:01.448Z	2025-12-31T16:55:54.613Z
cve-2025-62089	4.3 (v3.1)	WordPress Mergado Pack plugin <= 4.2.0 - Cross Site Re…	MERGADO	Mergado Pack	2025-12-31T15:51:01.849Z	2025-12-31T16:55:49.621Z
cve-2025-63014	4.3 (v3.1)	WordPress Gmedia Photo Gallery plugin <= 1.24.1 - Cros…	Serhii Pasyuk	Gmedia Photo Gallery	2025-12-31T15:52:00.938Z	2025-12-31T16:55:43.541Z
cve-2025-59130	4.3 (v3.1)	WordPress Appointify plugin <= 1.0.8 - Cross Site Requ…	Appointify	Appointify	2025-12-31T16:06:06.815Z	2025-12-31T16:43:24.387Z
cve-2025-63004	4.3 (v3.1)	WordPress All in One Accessibility plugin <= 1.14 - Br…	Skynet Technologies USA LLC	All in One Accessibility	2025-12-31T16:06:59.389Z	2025-12-31T16:38:31.515Z
cve-2025-49356	4.3 (v3.1)	WordPress Orders Chat for WooCommerce plugin <= 1.2.0 …	Mykola Lukin	Orders Chat for WooCommerce	2025-12-31T16:07:40.281Z	2025-12-31T16:37:29.291Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-69091	N/A	WordPress Demo Importer Plus plugin <= 2.0.8 - Broken …	Kraft Plugins	Demo Importer Plus	2025-12-30T10:47:58.298Z	2025-12-30T10:47:58.298Z
cve-2025-69089	N/A	WordPress Auto Listings plugin <= 2.7.1 - Cross Site S…	autolistings	Auto Listings	2025-12-30T10:47:58.084Z	2025-12-30T10:47:58.084Z
cve-2025-69088	N/A	WordPress Combo Offers WooCommerce plugin <= 4.2 - Cro…	Vidish	Combo Offers WooCommerce	2025-12-30T10:47:57.866Z	2025-12-30T10:47:57.866Z
cve-2025-69034	N/A	WordPress Lekker theme <= 1.8 - Local File Inclusion v…	Mikado-Themes	Lekker	2025-12-30T10:47:57.680Z	2025-12-30T10:47:57.680Z
cve-2025-69033	N/A	WordPress Blog Filter plugin <= 1.7.3 - Cross Site Scr…	A WP Life	Blog Filter	2025-12-30T10:47:57.477Z	2025-12-30T10:47:57.477Z
cve-2025-69032	N/A	WordPress FiveStar theme <= 1.7 - Insecure Direct Obje…	Mikado-Themes	FiveStar	2025-12-30T10:47:57.290Z	2025-12-30T10:47:57.290Z
cve-2025-69031	N/A	WordPress Arcane theme <= 3.6.6 - Broken Access Contro…	Skywarrior	Arcane	2025-12-30T10:47:57.098Z	2025-12-30T10:47:57.098Z
cve-2025-69030	N/A	WordPress Backpack Traveler theme <= 2.10.3 - Insecure…	Mikado-Themes	Backpack Traveler	2025-12-30T10:47:56.911Z	2025-12-30T10:47:56.911Z
cve-2025-69029	N/A	WordPress Struktur theme <= 2.5.1 - Insecure Direct Ob…	Select-Themes	Struktur	2025-12-30T10:47:56.721Z	2025-12-30T10:47:56.721Z
cve-2025-69028	N/A	WordPress weForms plugin <= 1.6.25 - Broken Access Con…	BoldGrid	weForms	2025-12-30T10:47:56.532Z	2025-12-30T10:47:56.532Z
cve-2025-69027	N/A	WordPress Product Delivery Date for WooCommerce – Lite…	tychesoftwares	Product Delivery Date for WooCommerce – Lite	2025-12-30T10:47:56.343Z	2025-12-30T10:47:56.343Z
cve-2025-69026	N/A	WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Ex…	Roxnor	PopupKit	2025-12-30T10:47:56.141Z	2025-12-30T10:47:56.141Z
cve-2025-69025	N/A	WordPress Poptics: AI-Powered Popup Builder for Lead G…	Aethonic	Poptics: AI-Powered Popup Builder for Lead Generation, Conversions, Exit-Intent, Email Opt-ins & WooCommerce Sales	2025-12-30T10:47:55.921Z	2025-12-30T10:47:55.921Z
cve-2025-69024	N/A	WordPress BizPrint plugin <= 4.6.7 - Broken Access Con…	bizswoop	BizPrint	2025-12-30T10:47:55.715Z	2025-12-30T10:47:55.715Z
cve-2025-69023	N/A	WordPress Discussion Board plugin <= 2.5.7 - Broken Ac…	Marketing Fire	Discussion Board	2025-12-30T10:47:55.530Z	2025-12-30T10:47:55.530Z
cve-2025-69022	N/A	WordPress HR Management Lite plugin <= 3.5 - Broken Ac…	Weblizar - WordPress Themes & Plugin	HR Management Lite	2025-12-30T10:47:55.337Z	2025-12-30T10:47:55.337Z
cve-2025-69021	N/A	WordPress Popup box plugin <= 6.0.7 - Cross Site Reque…	Ays Pro	Popup box	2025-12-30T10:47:55.134Z	2025-12-30T10:47:55.134Z
cve-2025-69020	N/A	WordPress Newsletters plugin <= 4.12 - Cross Site Scri…	Tribulant Software	Newsletters	2025-12-30T10:47:54.856Z	2025-12-30T14:16:36.914Z
cve-2025-69019	N/A	WordPress FlippingBook plugin <= 2.0.1 - Cross Site Sc…	FlippingBook	FlippingBook	2025-12-30T10:47:54.668Z	2025-12-30T14:26:03.272Z
cve-2025-69018	N/A	WordPress Web Directory Free plugin <= 1.7.12 - Cross …	Shamalli	Web Directory Free	2025-12-30T10:47:54.463Z	2025-12-30T14:35:28.973Z
cve-2025-69017	N/A	WordPress RestroPress plugin <= 3.2.4.2 - Cross Site S…	Magnigenie	RestroPress	2025-12-30T10:47:54.276Z	2025-12-30T14:28:12.623Z
cve-2025-69016	N/A	WordPress Shortcodes and extra features for Phlox them…	averta	Shortcodes and extra features for Phlox theme	2025-12-30T10:47:54.087Z	2025-12-30T14:30:37.846Z
cve-2025-69015	N/A	WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A…	Automattic	Crowdsignal Forms	2025-12-30T10:47:53.892Z	2025-12-30T14:32:06.209Z
cve-2025-69014	N/A	WordPress Youzify plugin <= 1.3.5 - Server Side Reques…	Youzify	Youzify	2025-12-30T10:47:53.707Z	2025-12-30T13:02:39.578Z
cve-2025-69013	N/A	WordPress Stratum plugin <= 1.6.1 - Broken Access Cont…	jetmonsters	Stratum	2025-12-30T10:47:53.465Z	2025-12-30T13:06:32.023Z
cve-2025-69012	N/A	WordPress Event Organiser plugin <= 3.12.8 - Broken Ac…	Stephen Harris	Event Organiser	2025-12-30T10:47:53.274Z	2025-12-30T14:09:56.619Z
cve-2025-69010	N/A	WordPress Themebeez Toolkit plugin <= 1.3.5 - Broken A…	themebeez	Themebeez Toolkit	2025-12-30T10:47:53.090Z	2025-12-30T13:57:44.160Z
cve-2025-69009	N/A	WordPress Medicalequipment theme <= 1.0.9 - Broken Acc…	kamleshyadav	Medicalequipment	2025-12-30T10:47:52.874Z	2025-12-30T13:34:54.169Z
cve-2025-69008	N/A	WordPress Inboxify Sign Up Form plugin <= 1.0.4 - Cros…	Inboxify	Inboxify Sign Up Form	2025-12-30T10:47:52.689Z	2025-12-30T13:32:43.808Z
cve-2025-69007	N/A	WordPress Popping Sidebars and Widgets Light plugin <=…	OTWthemes	Popping Sidebars and Widgets Light	2025-12-30T10:47:52.485Z	2025-12-30T14:45:00.417Z

ID	Description	Published	Updated
fkie_cve-2025-69027	Missing Authorization vulnerability in tychesoftwares Product Delivery Date for WooCommerce – Lite …	2025-12-30T11:16:01.243	2025-12-31T20:43:05.160
fkie_cve-2025-69026	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Roxnor …	2025-12-30T11:16:01.130	2025-12-31T20:43:05.160
fkie_cve-2025-69025	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Aethoni…	2025-12-30T11:16:01.007	2025-12-31T20:43:05.160
fkie_cve-2025-69024	Missing Authorization vulnerability in bizswoop BizPrint print-google-cloud-print-gcp-woocommerce a…	2025-12-30T11:16:00.880	2025-12-31T20:43:05.160
fkie_cve-2025-69023	Missing Authorization vulnerability in Marketing Fire Discussion Board wp-discussion-board allows E…	2025-12-30T11:16:00.763	2025-12-31T20:43:05.160
fkie_cve-2025-69022	Missing Authorization vulnerability in Weblizar - WordPress Themes & Plugin HR Management Lite …	2025-12-30T11:16:00.643	2025-12-31T20:43:05.160
fkie_cve-2025-69021	Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Popup box ays-popup-box allows Cross Sit…	2025-12-30T11:16:00.517	2025-12-31T20:43:05.160
fkie_cve-2025-69020	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:16:00.393	2025-12-31T20:43:05.160
fkie_cve-2025-69019	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:16:00.260	2025-12-31T20:43:05.160
fkie_cve-2025-69018	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:16:00.130	2025-12-31T20:43:05.160
fkie_cve-2025-69017	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:16:00.017	2025-12-31T20:43:05.160
fkie_cve-2025-69016	Missing Authorization vulnerability in averta Shortcodes and extra features for Phlox theme auxin-e…	2025-12-30T11:15:59.887	2025-12-31T20:43:05.160
fkie_cve-2025-69015	Missing Authorization vulnerability in Automattic Crowdsignal Forms crowdsignal-forms allows Exploi…	2025-12-30T11:15:59.770	2025-12-31T20:43:05.160
fkie_cve-2025-69014	Server-Side Request Forgery (SSRF) vulnerability in Youzify Youzify youzify allows Server Side Requ…	2025-12-30T11:15:59.650	2025-12-31T20:43:05.160
fkie_cve-2025-69013	Missing Authorization vulnerability in jetmonsters Stratum stratum allows Exploiting Incorrectly Co…	2025-12-30T11:15:59.527	2025-12-31T20:43:05.160
fkie_cve-2025-69012	Missing Authorization vulnerability in Stephen Harris Event Organiser event-organiser allows Exploi…	2025-12-30T11:15:59.410	2025-12-31T20:43:05.160
fkie_cve-2025-69010	Missing Authorization vulnerability in themebeez Themebeez Toolkit themebeez-toolkit allows Exploit…	2025-12-30T11:15:59.290	2025-12-31T20:43:05.160
fkie_cve-2025-69009	Missing Authorization vulnerability in kamleshyadav Medicalequipment medicalequipment allows Exploi…	2025-12-30T11:15:59.167	2025-12-31T20:43:05.160
fkie_cve-2025-69008	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:59.053	2025-12-31T20:43:05.160
fkie_cve-2025-69007	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:58.930	2025-12-31T20:43:05.160
fkie_cve-2025-69006	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:58.810	2025-12-31T20:43:05.160
fkie_cve-2025-68998	Cross-Site Request Forgery (CSRF) vulnerability in Heateor Support Heateor Social Login heateor-soc…	2025-12-30T11:15:58.687	2025-12-31T20:43:05.160
fkie_cve-2025-68997	Authorization Bypass Through User-Controlled Key vulnerability in AdvancedCoding wpDiscuz wpdiscuz …	2025-12-30T11:15:58.567	2025-12-31T20:43:05.160
fkie_cve-2025-68996	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-30T11:15:58.450	2025-12-31T20:43:05.160
fkie_cve-2025-68995	Missing Authorization vulnerability in Gal Dubinski My Sticky Elements mystickyelements allows Expl…	2025-12-30T11:15:58.317	2025-12-31T20:43:05.160
fkie_cve-2025-68994	Missing Authorization vulnerability in XforWooCommerce Product Loops for WooCommerce product-loops …	2025-12-30T11:15:58.173	2025-12-31T20:43:05.160
fkie_cve-2025-68993	Missing Authorization vulnerability in XforWooCommerce Share, Print and PDF Products for WooCommerc…	2025-12-30T11:15:58.043	2025-12-31T20:43:05.160
fkie_cve-2025-68992	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:57.927	2025-12-31T20:43:05.160
fkie_cve-2025-68991	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:57.803	2025-12-31T20:43:05.160
fkie_cve-2025-68990	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2025-12-30T11:15:57.690	2025-12-31T20:43:05.160

ID	Description	Package	Published	Updated
pysec-2024-227	Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execu…	transformers	2024-11-22T22:15:06+00:00	2025-02-10T23:22:41.399021+00:00
pysec-2024-226	Pymatgen (Python Materials Genomics) is an open-source Python library for materials analy…	pymatgen	2024-02-21T17:15:09+00:00	2025-02-06T00:34:28.734730+00:00
pysec-2024-225	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2024-02-21T17:15:09+00:00	2025-02-06T00:34:24.427679+00:00
pysec-2024-224	Excessive directory permissions in MLflow leads to local privilege escalation when using …	mlflow	2024-11-25T14:15:06+00:00	2025-02-03T16:23:40.409646+00:00
pysec-2024-27	CrateDB 5.5.1 is contains an authentication bypass vulnerability in the Admin UI componen…	crate	2024-01-30T01:15:00Z	2025-01-30T22:47:57.847403Z
pysec-2019-242	Capstone 3.0.4 has an out-of-bounds vulnerability (SEGV caused by a read memory access) i…	capstone	2019-05-15T14:29:00Z	2025-01-28T17:34:08.578134Z
pysec-2025-2	uniapi version 1.0.7 introduces code that would execute on import of the module and downl…	uniapi		2025-01-24T19:56:53+00:00
pysec-2024-223	Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds …	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:22.060512+00:00
pysec-2024-222	Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Trav…	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:21.994731+00:00
pysec-2024-221	aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd i…	aiosmtpd	2024-03-12T21:15:58+00:00	2025-01-22T16:23:18.042465+00:00
pysec-2024-220	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.972580+00:00
pysec-2024-219	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.897787+00:00
pysec-2024-218	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.803143+00:00
pysec-2024-217	Gradio is an open-source Python package designed for quick prototyping. This is a **data …	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.723816+00:00
pysec-2024-216	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.549944+00:00
pysec-2024-215	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:11+00:00	2025-01-19T22:22:23.471780+00:00
pysec-2024-214	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.399444+00:00
pysec-2024-213	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.310301+00:00
pysec-2024-212	Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add…	apache-airflow	2024-09-07T08:15:11+00:00	2025-01-19T22:22:22.289672+00:00
pysec-2024-211	Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote clien…	waitress	2024-10-29T15:15:12+00:00	2025-01-19T19:19:01.852094+00:00
pysec-2024-210	Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may…	waitress	2024-10-29T15:15:11+00:00	2025-01-19T19:19:01.811922+00:00
pysec-2024-209	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:09+00:00	2025-01-19T19:19:01.689044+00:00
pysec-2024-208	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.647736+00:00
pysec-2024-207	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.605918+00:00
pysec-2024-206	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.566553+00:00
pysec-2024-205	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. When using …	vyper	2024-02-26T20:19:05+00:00	2025-01-19T19:19:01.519824+00:00
pysec-2024-204	TorchGeo Remote Code Execution Vulnerability	torchgeo	2024-11-12T18:15:45+00:00	2025-01-19T19:19:01.299352+00:00
pysec-2024-203	DuckDB is a SQL database management system. In versions 1.0.0 and prior, content in files…	duckdb	2024-07-24T18:15:05+00:00	2025-01-19T19:18:58.299130+00:00
pysec-2024-202	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:07+00:00	2025-01-19T16:22:59.212853+00:00
pysec-2024-201	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:05+00:00	2025-01-19T16:22:59.154645+00:00

ID	Description	Updated
gsd-2024-33766	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.508057Z
gsd-2024-33779	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507854Z
gsd-2024-33792	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507383Z
gsd-2024-33704	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.504657Z
gsd-2024-33758	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.500910Z
gsd-2024-33710	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.499457Z
gsd-2024-33707	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.497095Z
gsd-2024-33781	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.495881Z
gsd-2024-33679	Cross-Site Request Forgery (CSRF) vulnerability in FameThemes FameTheme Demo Importer.Thi…	2024-04-27T05:02:18.492186Z
gsd-2024-33777	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.489805Z
gsd-2024-33743	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488662Z
gsd-2024-33791	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488352Z
gsd-2024-33747	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.485640Z
gsd-2024-33774	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.484899Z
gsd-2024-33734	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.482444Z
gsd-2024-33740	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.479260Z
gsd-2024-33801	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.476298Z
gsd-2024-33682	Cross-Site Request Forgery (CSRF) vulnerability in Cookie Information A/S WP GDPR Complia…	2024-04-27T05:02:18.470225Z
gsd-2024-33709	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.469333Z
gsd-2024-33745	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.468253Z
gsd-2024-33690	Cross-Site Request Forgery (CSRF) vulnerability in Jegstudio Financio.This issue affects …	2024-04-27T05:02:18.467205Z
gsd-2024-33808	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.458232Z
gsd-2024-33767	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.454953Z
gsd-2024-33805	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.453392Z
gsd-2024-33711	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.452695Z
gsd-2024-33790	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.450431Z
gsd-2024-33759	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.447890Z
gsd-2024-33680	Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue…	2024-04-27T05:02:18.444951Z
gsd-2024-33715	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.440563Z
gsd-2024-33748	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.439408Z

ID	Description	Published	Updated
mal-2025-49320	Malicious code in python-requirements-inspector (PyPI)	2025-11-02T23:10:55Z	2025-12-31T02:45:15Z
mal-2025-49310	Malicious code in faker-python (PyPI)	2025-11-02T23:05:33Z	2025-12-31T02:45:15Z
mal-2025-48896	Malicious code in regixtest (PyPI)	2025-10-01T06:38:19Z	2025-12-31T02:45:15Z
mal-2025-48895	Malicious code in netkit-lite (PyPI)	2025-09-26T15:42:58Z	2025-12-31T02:45:15Z
mal-2025-48892	Malicious code in hackerone-app-sdk (PyPI)	2025-09-17T15:17:50Z	2025-12-31T02:45:15Z
mal-2025-48889	Malicious code in cugraph-service-server (PyPI)	2025-09-21T09:56:16Z	2025-12-31T02:45:15Z
mal-2025-47799	Malicious code in python-ledgercommon (PyPI)	2025-08-21T14:59:29Z	2025-12-31T02:45:15Z
mal-2025-47798	Malicious code in python-datetil (PyPI)	2025-08-28T05:31:14Z	2025-12-31T02:45:15Z
mal-2025-47795	Malicious code in pytensorlite (PyPI)	2025-08-17T19:36:01Z	2025-12-31T02:45:15Z
mal-2025-47788	Malicious code in noonutil (PyPI)	2025-08-20T15:39:33Z	2025-12-31T02:45:15Z
mal-2025-47784	Malicious code in license-checker (PyPI)	2025-08-29T18:43:12Z	2025-12-31T02:45:15Z
mal-2025-47783	Malicious code in libgomp (PyPI)	2025-08-15T16:17:26Z	2025-12-31T02:45:15Z
mal-2025-47782	Malicious code in learning-pypi-demo-nisimi (PyPI)	2025-09-03T15:52:06Z	2025-12-31T02:45:15Z
mal-2025-47778	Malicious code in k7eela (PyPI)	2025-08-21T09:05:54Z	2025-12-31T02:45:15Z
mal-2025-47777	Malicious code in k7eel (PyPI)	2025-08-20T10:58:45Z	2025-12-31T02:45:15Z
mal-2025-47764	Malicious code in etherweb3 (PyPI)	2025-08-21T11:21:42Z	2025-12-31T02:45:15Z
mal-2025-47763	Malicious code in enumeratiam (PyPI)	2025-08-25T09:33:08Z	2025-12-31T02:45:15Z
mal-2025-47762	Malicious code in electrum-bch (PyPI)	2025-08-23T11:16:26Z	2025-12-31T02:45:15Z
mal-2025-47756	Malicious code in datetime-zones (PyPI)	2025-09-13T21:46:19Z	2025-12-31T02:45:15Z
mal-2025-47754	Malicious code in consolecolornew (PyPI)	2025-09-12T18:08:12Z	2025-12-31T02:45:15Z
mal-2025-47749	Malicious code in brotli-python (PyPI)	2025-09-07T18:53:07Z	2025-12-31T02:45:15Z
mal-2025-47746	Malicious code in awesome-tools-collection (PyPI)	2025-09-03T15:52:43Z	2025-12-31T02:45:15Z
mal-2025-47452	Malicious code in secmeasure (PyPI)	2025-08-03T08:15:27Z	2025-12-31T02:45:15Z
mal-2025-4222	Malicious code in kms-tls-sdk (PyPI)	2024-07-26T16:53:30Z	2025-12-31T02:45:15Z
mal-2025-4215	Malicious code in discord-boteasy (PyPI)	2024-07-26T16:53:30Z	2025-12-31T02:45:15Z
mal-2025-4213	Malicious code in ctftestsowwy (PyPI)	2024-07-26T16:53:30Z	2025-12-31T02:45:15Z
mal-2025-4207	Malicious code in byted-torch-monitor (PyPI)	2025-04-24T21:02:16Z	2025-12-31T02:45:15Z
mal-2025-41729	Malicious code in raknet-testing-package (PyPI)	2025-08-07T21:53:03Z	2025-12-31T02:45:15Z
mal-2025-41675	Malicious code in flask-tdg-cyber (PyPI)	2025-08-11T15:54:48Z	2025-12-31T02:45:15Z
mal-2025-41666	Malicious code in dsidelib (PyPI)	2025-08-03T16:49:34Z	2025-12-31T02:45:15Z

ID	Description	Published	Updated
wid-sec-w-2025-0507	MariaDB: Mehrere Schwachstellen ermöglichen Denial of Service	2025-03-09T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-0233	Python: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-02-02T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3762	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-12-29T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3528	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-11-21T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3376	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-11-07T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3339	Linux Kernel: Mehrere Schwachstellen	2024-11-05T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3283	Linux-Kernel: Schwachstelle ermöglicht Codeausführung	2024-10-27T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3251	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-10-21T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-1504	Apache HTTP Server: Mehrere Schwachstellen	2024-07-01T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-0801	Apache HTTP Server: Mehrere Schwachstellen ermöglichen Manipulation von Daten	2024-04-04T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2023-2024	Node.js: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2023-08-09T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2022-1354	Red Hat Enterprise Linux: Mehrere Schwachstellen	2021-05-04T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2860	JetBrains TeamCity: Mehrere Schwachstellen	2025-12-16T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2857	Apache Commons Text: Schwachstelle ermöglicht Codeausführung	2025-12-16T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2846	strongSwan (NetworkManager-Plugin): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-14T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2730	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2729	WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2666	vllm und PyTorch: Schwachstelle ermöglicht DoS und potenzielle Codeausführung	2025-11-23T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2651	GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-19T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2643	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2566	Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2518	Red Hat Enterprise Linux (runc): Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-11-09T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2485	cURL (wcurl): Schwachstelle ermöglicht Manipulation von Dateien	2025-11-03T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2468	CPython: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2404	AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität	2025-10-23T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2325	xpdf: Schwachstelle ermöglicht Denial of Service	2025-10-16T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2301	Red Hat Enterprise Linux: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2187	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-01T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2051	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-627195	SSA-627195: Zip Path Traversal Vulnerability in Mendix Studio Pro's Module Installation Process	2025-06-12T00:00:00Z	2025-07-08T00:00:00Z
ssa-626991	SSA-626991: Denial of Service Vulnerability in SIMATIC CN 4100 before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-593272	SSA-593272: SegmentSmack in Interniche IP-Stack based Industrial Devices	2020-04-14T00:00:00Z	2025-07-08T00:00:00Z
ssa-573669	SSA-573669: Multiple Vulnerabilities in TIA Administrator Before V3.0.6	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-446545	SSA-446545: Impact of RegreSSHion (CVE-2024-6387) in Siemens Industrial Products	2024-09-10T00:00:00Z	2025-07-08T00:00:00Z
ssa-364175	SSA-364175: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1	2024-07-09T00:00:00Z	2025-07-08T00:00:00Z
ssa-327438	SSA-327438: Multiple Vulnerabilities in SCALANCE LPE9403	2025-05-13T00:00:00Z	2025-07-08T00:00:00Z
ssa-091753	SSA-091753: Multiple Vulnerabilities in Solid Edge Before SE2025 Update 5	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-078892	SSA-078892: Multiple Vulnerabilities in SINEC NMS Before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-928984	SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-12-16T00:00:00Z	2025-06-10T00:00:00Z
ssa-874353	SSA-874353: Entity Enumeration Vulnerability in Mendix Runtime	2025-04-08T00:00:00Z	2025-06-10T00:00:00Z
ssa-858251	SSA-858251: Authentication Bypass Vulnerabilities in OPC UA	2025-03-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-656895	SSA-656895: Open Redirect Vulnerability in Teamcenter	2025-02-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-633269	SSA-633269: Incorrect Authorization Check Vulnerability in Industrial Communication Devices based on SINEC OS before V3.1	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-041082	SSA-041082: Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18	2025-05-23T00:00:00Z	2025-05-23T00:00:00Z
ssa-552330	SSA-552330: System Configuration Password Reset in Siveillance Video V2024 R1	2025-05-14T00:00:00Z	2025-05-14T00:00:00Z
ssa-935500	SSA-935500: Denial of Service Vulnerability in FTP Server of Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products	2022-10-11T00:00:00Z	2025-05-13T00:00:00Z
ssa-901508	SSA-901508: Multiple Vulnerabilities in INTRALOG WMS Before V5	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-828116	SSA-828116: Denial of Service Vulnerability in BACnet ATEC Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-819629	SSA-819629: Weak Authentication Vulnerability in Industrial Edge Device Kit	2025-04-08T00:00:00Z	2025-05-13T00:00:00Z
ssa-718393	SSA-718393: Partial Denial of Service Vulnerability in APOGEE PXC and TALON TC Series (BACnet) Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-668154	SSA-668154: Denial of Service Vulnerability in MS/TP Point Pickup Module	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-542540	SSA-542540: Out of Bounds Read Vulnerability in Teamcenter Visualization	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-523418	SSA-523418: Information Disclosure Vulnerability in Desigo CC	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-455250	SSA-455250: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.2-h3	2024-04-09T00:00:00Z	2025-05-13T00:00:00Z
ssa-339086	SSA-339086: Insufficient Session Expiration Vulnerability in SIMATIC PCS neo	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-222768	SSA-222768: Multiple Vulnerabilities in SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-162255	SSA-162255: Multiple Vulnerabilities in Polarion Before V2410	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-103653	SSA-103653: Denial-of-Service Vulnerability in Automation License Manager	2024-09-10T00:00:00Z	2025-05-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:3184	Red Hat Security Advisory: podman security update	2025-03-25T20:36:10+00:00	2025-11-29T06:53:44+00:00
rhsa-2025:3266	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T14:25:08+00:00	2025-11-29T06:53:43+00:00
rhsa-2025:3210	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T02:19:46+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3186	Red Hat Security Advisory: podman security update	2025-03-25T20:42:41+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3185	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-03-25T20:37:10+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3175	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-25T18:12:58+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3172	Red Hat Security Advisory: VolSync 0.12.1 security fixes and enhancements for RHEL 9	2025-03-25T19:58:29+00:00	2025-11-29T06:53:38+00:00
rhsa-2025:3165	Red Hat Security Advisory: podman security update	2025-03-25T14:24:49+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3132	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.6	2025-03-26T17:34:00+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3131	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.1.4	2025-03-26T17:39:24+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3069	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.3 security update	2025-03-20T08:37:59+00:00	2025-11-29T06:53:35+00:00
rhsa-2025:3053	Red Hat Security Advisory: Gatekeeper v3.15.4	2025-03-20T04:55:47+00:00	2025-11-29T06:53:33+00:00
rhsa-2025:3068	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 packages and security update	2025-03-25T07:18:49+00:00	2025-11-29T06:53:32+00:00
rhsa-2025:3066	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 bug fix and security update	2025-03-25T06:59:06+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3061	Red Hat Security Advisory: OpenShift Container Platform 4.17.22 packages and security update	2025-03-27T01:12:40+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3052	Red Hat Security Advisory: Gatekeeper v3.18.0	2025-03-20T04:53:19+00:00	2025-11-29T06:53:30+00:00
rhsa-2025:3051	Red Hat Security Advisory: Gatekeeper v3.17.2	2025-03-20T04:38:00+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2933	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T12:53:03+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2903	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T09:37:38+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2652	Red Hat Security Advisory: RHODF-4.18-RHEL-9 enhancement, bug fix and security update	2025-03-11T09:16:21+00:00	2025-11-29T06:53:28+00:00
rhsa-2025:2588	Red Hat Security Advisory: RHOAI 2.18.0 - Red Hat OpenShift AI	2025-03-10T23:41:31+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:2526	Red Hat Security Advisory: ACS 4.5 enhancement update	2025-03-10T15:51:20+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22287	Red Hat Security Advisory: Red Hat Quay 3.9	2025-11-27T14:54:51+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22182	Red Hat Security Advisory: Red Hat Quay 3.10.16	2025-11-26T14:52:57+00:00	2025-11-29T06:53:26+00:00
rhsa-2025:22014	Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.15.2	2025-11-25T05:10:51+00:00	2025-11-29T06:53:25+00:00
rhsa-2025:21704	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20 security, enhancement & bug fix update	2025-11-18T15:13:35+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19594	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T08:51:51+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19566	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T04:48:55+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:19306	Red Hat Security Advisory: OpenShift Container Platform 4.15.59 bug fix and security update	2025-11-06T11:55:24+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:1849	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:47:48+00:00	2025-11-29T06:53:22+00:00

ID	Description	Published	Updated
msrc_cve-2025-66471	urllib3 Streaming API improperly handles highly compressed data	2025-12-02T00:00:00.000Z	2025-12-23T01:38:16.000Z
msrc_cve-2025-66418	urllib3 allows an unbounded number of links in the decompression chain	2025-12-02T00:00:00.000Z	2025-12-23T01:38:10.000Z
msrc_cve-2025-12819	Untrusted search path in auth_query connection in PgBouncer	2025-12-02T00:00:00.000Z	2025-12-23T01:37:37.000Z
msrc_cve-2025-68114	Capstone doesn't check vsnprintf return in SStream_concat, allows stack buffer underflow and overflow	2025-12-02T00:00:00.000Z	2025-12-23T01:37:34.000Z
msrc_cve-2025-68161	Apache Log4j Core: Missing TLS hostname verification in Socket appender	2025-12-02T00:00:00.000Z	2025-12-23T01:37:29.000Z
msrc_cve-2025-59529	simple protocol server ignores accepts unlimited connections and logs failures without limit	2025-12-02T00:00:00.000Z	2025-12-23T01:37:23.000Z
msrc_cve-2025-64437	KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes	2025-11-02T00:00:00.000Z	2025-12-23T01:37:16.000Z
msrc_cve-2025-68390	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:15.000Z
msrc_cve-2025-68384	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64435	KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation	2025-11-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64433	KubeVirt Arbitrary Container File Read	2025-11-02T00:00:00.000Z	2025-12-23T01:37:02.000Z
msrc_cve-2025-38347	f2fs: fix to do sanity check on ino and xnid	2025-07-02T00:00:00.000Z	2025-12-23T01:37:01.000Z
msrc_cve-2025-38331	net: ethernet: cortina: Use TOE/TSO on all TCP	2025-07-02T00:00:00.000Z	2025-12-23T01:36:56.000Z
msrc_cve-2025-64432	KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer	2025-11-02T00:00:00.000Z	2025-12-23T01:36:55.000Z
msrc_cve-2025-38300	crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare()	2025-07-02T00:00:00.000Z	2025-12-23T01:36:50.000Z
msrc_cve-2025-37938	tracing: Verify event formats that have "%*p.."	2025-05-02T00:00:00.000Z	2025-12-23T01:36:45.000Z
msrc_cve-2025-37932	sch_htb: make htb_qlen_notify() idempotent	2025-05-02T00:00:00.000Z	2025-12-23T01:36:40.000Z
msrc_cve-2025-37931	btrfs: adjust subpage bit start based on sectorsize	2025-05-02T00:00:00.000Z	2025-12-23T01:36:34.000Z
msrc_cve-2025-66382	In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.	2025-11-02T00:00:00.000Z	2025-12-23T01:36:29.000Z
msrc_cve-2025-2296	Un-verified kernel bypass Secure Boot mechanism in direct boot mode	2025-12-02T00:00:00.000Z	2025-12-23T01:35:11.000Z
msrc_cve-2025-7424	Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes	2025-07-02T00:00:00.000Z	2025-12-22T14:35:05.000Z
msrc_cve-2025-55753	Apache HTTP Server: mod_md (ACME), unintended retry intervals	2025-12-02T00:00:00.000Z	2025-12-20T14:35:58.000Z
msrc_cve-2025-58098	Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...	2025-12-02T00:00:00.000Z	2025-12-20T14:35:52.000Z
msrc_cve-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-02T00:00:00.000Z	2025-12-20T14:35:45.000Z
msrc_cve-2025-65082	Apache HTTP Server: CGI environment variable override	2025-12-02T00:00:00.000Z	2025-12-20T14:35:39.000Z
msrc_cve-2025-14512	Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow	2025-12-02T00:00:00.000Z	2025-12-20T01:40:40.000Z
msrc_cve-2025-14087	Glib: glib: buffer underflow in gvariant parser leads to heap corruption	2025-12-02T00:00:00.000Z	2025-12-20T01:40:29.000Z
msrc_cve-2025-7068	HDF5 H5FL.c H5FL__malloc memory leak	2025-07-02T00:00:00.000Z	2025-12-20T01:38:05.000Z
msrc_cve-2025-7067	HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow	2025-07-02T00:00:00.000Z	2025-12-20T01:37:56.000Z
msrc_cve-2025-6857	HDF5 H5Gnode.c H5G__node_cmp3 stack-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:44.000Z

ID	Description	Published	Updated
icsa-25-296-01	AutomationDirect Productivity Suite	2025-10-23T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-02	Rockwell Automation Compact GuardLogix 5370	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-01	Rockwell Automation 1783-NATR	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-289-02	Rockwell Automation FactoryTalk Linx	2025-10-16T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-280-01	Delta Electronics DIAScreen	2025-10-07T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-037-02	Schneider Electric EcoStruxure (Update C)	2025-02-06T07:00:00.000000Z	2025-10-23T06:00:00.000000Z
va-25-296-01	Frontier Airlines website publicly available email address validation	2025-10-23T00:00:00Z	2025-10-23T00:00:00Z
va-25-297-01	IBM DOORS Next Generation multiple vulnerabilities	2025-10-22T18:45:47Z	2025-10-22T18:45:47Z
icsma-25-294-01	Oxford Nanopore Technologies MinKNOW	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-06	Raisecomm RAX701-GC Series	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-05	CloudEdge Online Cameras and App	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-24-354-07	Schneider Electric Modicon Controllers (Update A)	2024-12-19T07:00:00.000000Z	2025-10-21T06:00:00.000000Z
va-25-289-01	OPEXUS FOIAXpress unauthenticated administrator password reset	2025-10-16T16:43:55Z	2025-10-16T16:43:55Z
icsa-25-289-04	Rockwell Automation ArmorStart AOP	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-03	Rockwell Automation FactoryTalk ViewPoint	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-01	Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-24-121-01	Delta Electronics CNCSoft-G2 DOPSoft (Update A)	2024-04-30T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-301-01	Schneider Electric EcoStruxure	2025-10-14T07:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-259-01	Schneider Electric Altivar products ATVdPAC module ILC992 InterLink Converter (Update A)	2025-09-09T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-140-08	Schneider Electric Modicon Controllers (Update B)	2025-05-13T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-24-352-04	Schneider Electric Modicon	2024-12-10T05:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-287-01	Rockwell Automation 1715 EtherNet/IP Comms Module	2025-10-14T06:00:00.000000Z	2025-10-14T06:00:00.000000Z
icsa-25-294-04	Siemens RUGGEDCOM ROS Devices	2025-07-08T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-294-03	Siemens SIMATIC S7-1200 CPU V1/V2 Devices	2011-06-10T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-10	Siemens HyperLynx and Industrial Edge App Publisher	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-09	Siemens TeleControl Server Basic	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-08	Siemens SINEC NMS	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-07	Siemens SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-06	Siemens SiPass	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-05	Siemens Solid Edge	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-contcent-insuffacces-ardovhn8	Cisco Unified Contact Center Enterprise Cloud Connect Insufficient Access Control Vulnerability	2025-05-21T16:00:00+00:00	2025-05-21T16:00:00+00:00
cisco-sa-sdwanarbfile-2zkhkzwj	Cisco Catalyst SD-WAN Manager Arbitrary File Creation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-14T20:04:53+00:00
cisco-sa-sdwan-fileoverwrite-uc9txwh	Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability	2025-05-07T16:00:00+00:00	2025-05-08T15:55:57+00:00
cisco-sa-wlc-wncd-p6gvt6hl	Cisco IOS XE Software for WLC Wireless IPv6 Clients Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-multi-arnhm4v6	Cisco IOS XE Software Web-Based Management Interface Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-cmdinj-gvn3oknc	Cisco IOS XE Software Web-Based Management Interface Command Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-xss-xhn8m5jt	Cisco Catalyst SD-WAN Manager Stored Cross-Site Scripting Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-html-inj-gxvtk6zj	Cisco Catalyst SD-WAN Manager Reflected HTML Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-twamp-kv4fhugn	Cisco IOS, IOS XE, and IOS XR Software TWAMP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-snmpv3-qkeyvzsy	Cisco IOS and IOS XE Software SNMPv3 Configuration Restriction Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sisf-dos-zgwt4ddy	Multiple Cisco Products Switch Integrated Security Features DHCPv6 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sdwan-priviesc-wck7bmmt	Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-netconf-nacm-bypass-tgzv9pmq	Cisco IOS XE Software Model-Driven Programmability Authorization Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-multiprod-ikev2-dos-gpctuqv2	Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IKEv2 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ipsgacl-pg6qfzk	Cisco IOS Software on Cisco Catalyst 1000 and 2960L Switches Access Control List Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iox-dos-95fqnf7b	Cisco IOx Application Hosting Environment Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-privesc-su7scvdp	Cisco IOS XE Software Privilege Escalation Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-ikev1-dos-xhk3hzfc	Cisco IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-dhcpsn-dos-xbn8mtks	Cisco IOS XE Software DHCP Snooping Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ios-http-privesc-wcrd5e3	Cisco IOS Software Industrial Ethernet Switch Device Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-user-del-hqxmpudj	Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-cdp-dos-fpeks9k	Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catc-insec-acc-mtt8eheb	Cisco Catalyst Center Insufficient Access Control Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catalyst-tls-pqnd5kej	Cisco Catalyst SD-WAN Manager Certificate Validation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-c2960-3560-sboot-ztqadrhq	Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches Secure Boot Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-bootstrap-kfgxygdh	Cisco IOS XE Software Bootstrap Arbitrary File Write Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-asr903-rsp3-arp-dos-wmfzdvjz	Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers ARP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webex-app-client-rce-ufymmylc	Cisco Webex App Client-Side Remote Code Execution Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-sna-prvesc-4bqmk33z	Cisco Secure Network Analytics Privilege Escalation Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-nd-unenum-2xffh472	Cisco Nexus Dashboard LDAP Username Enumeration Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201605-0465	The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple …	2024-11-29T22:34:09.220000Z
var-200905-0505	Array index error in the insertItemBefore method in WebKit, as used in Apple Safari befor…	2024-11-29T22:34:08.776000Z
var-200705-0688	The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module i…	2024-11-29T22:34:07.786000Z
var-201902-0242	In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishand…	2024-11-29T22:34:07.699000Z
var-200102-0030	The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attack…	2024-11-29T22:34:04.077000Z
var-201503-0388	Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c i…	2024-11-29T22:33:57.803000Z
var-201912-1862	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:33:50.207000Z
var-201310-0353	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a…	2024-11-29T22:33:48.342000Z
var-201801-0036	jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-doma…	2024-11-29T22:33:43.707000Z
var-201112-0047	The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64…	2024-11-29T22:33:43.392000Z
var-202109-1805	Malformed requests may cause the server to dereference a NULL pointer. This issue affects…	2024-11-29T22:33:38.638000Z
var-201111-0129	Use-after-free vulnerability in Google Chrome before 15.0.874.120 allows user-assisted re…	2024-11-29T22:33:38.569000Z
var-200611-0488	Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows r…	2024-11-29T22:32:37.602000Z
var-202001-1866	xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certai…	2024-11-29T22:32:28.603000Z
var-201205-0297	The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial …	2024-11-29T22:32:27.665000Z
var-200701-0517	Untrusted search path vulnerability in writeconfig in Apple Mac OS X 10.4.8 allows local …	2024-11-29T22:32:27.264000Z
var-201503-0206	Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP …	2024-11-29T22:32:24.843000Z
var-201211-0370	Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on …	2024-11-29T22:32:24.606000Z
var-201912-0574	An out-of-bounds read was addressed with improved input validation. plural Apple The prod…	2024-11-29T22:32:23.693000Z
var-202301-0598	Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider…	2024-11-29T22:31:14.574000Z
var-200905-0155	Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denia…	2024-11-29T22:31:14.300000Z
var-200705-0670	The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.1…	2024-11-29T22:31:11.850000Z
var-202108-2221	curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. T…	2024-11-29T22:31:04.937000Z
var-202203-0145	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2024-11-29T22:30:34.594000Z
var-201609-0592	The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remot…	2024-11-29T22:30:34.148000Z
var-201304-0373	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:30:33.711000Z
var-202206-1106	Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an…	2024-11-29T22:30:33.233000Z
var-202009-1442	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker …	2024-11-29T22:30:24.749000Z
var-200707-0675	The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5…	2024-11-29T22:30:21.788000Z
var-202010-1245	A logic issue was addressed with improved state management. This issue is fixed in iOS 13…	2024-11-29T22:30:21.601000Z

ID	Description	Published	Updated
jvndb-2025-000038	UpdateNavi vulnerable to improper restriction of communication channel to intended endpoints	2025-06-12T15:56+09:00	2025-06-12T15:56+09:00
jvndb-2025-000037	Multiple surveillance cameras provided by i-PRO Co., Ltd. vulnerable to cross-site request forgery	2025-06-06T13:56+09:00	2025-06-06T13:56+09:00
jvndb-2025-000036	TimeWorks vulnerable to path traversal	2025-06-03T15:35+09:00	2025-06-03T15:35+09:00
jvndb-2025-000035	Improper file access permission settings in PC Time Tracer	2025-06-03T14:40+09:00	2025-06-03T14:40+09:00
jvndb-2025-000034	Multiple vulnerabilities in wivia 5	2025-05-30T15:57+09:00	2025-05-30T15:57+09:00
jvndb-2025-001238	Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers	2025-01-29T13:41+09:00	2025-05-27T16:06+09:00
jvndb-2025-000032	Mailform Pro CGI generating error messages containing sensitive information	2025-05-26T14:22+09:00	2025-05-26T14:22+09:00
jvndb-2025-000033	Improper pattern file validation in i-FILTER optional feature 'Anti-Virus & Sandbox'	2025-05-23T15:36+09:00	2025-05-23T15:36+09:00
jvndb-2025-005467	Passback vulnerabilities in Canon Production Printers, Office/Small Office Multifunction Printers, and Laser Printers	2025-05-22T15:03+09:00	2025-05-22T15:03+09:00
jvndb-2024-000117	Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor	2024-10-31T16:44+09:00	2025-05-19T17:59+09:00
jvndb-2025-005107	Multiple vulnerabilities in V-SFT	2025-05-16T14:32+09:00	2025-05-16T14:32+09:00
jvndb-2025-005057	Multiple vulnerabilities in I-O DATA network attached hard disk 'HDL-T Series'	2025-05-15T18:27+09:00	2025-05-15T18:27+09:00
jvndb-2025-005050	Multiple vulnerabilities in a-blog cms	2025-05-15T18:11+09:00	2025-05-15T18:11+09:00
jvndb-2025-000031	Pgpool-II vulnerable to authentication bypass by primary weakness	2025-05-15T16:14+09:00	2025-05-15T16:14+09:00
jvndb-2025-004863	Panasonic IR Control Hub vulnerable to Unauthorised firmware loading	2025-05-14T11:30+09:00	2025-05-14T11:30+09:00
jvndb-2025-004671	Multiple vulnerabilities in GL-MT2500 and GL-MT2500A	2025-05-12T17:52+09:00	2025-05-12T17:52+09:00
jvndb-2025-001016	OMRON NJ/NX series vulnerable to path traversal	2025-02-06T18:27+09:00	2025-05-08T17:44+09:00
jvndb-2025-004079	Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS	2025-04-30T11:46+09:00	2025-04-30T11:46+09:00
jvndb-2025-004076	Security Update for Trend Micro Trend Vision One (April 2025)	2025-04-30T10:38+09:00	2025-04-30T10:38+09:00
jvndb-2025-000029	Multiple vulnerabilities in Quick Agent	2025-04-25T13:49+09:00	2025-04-25T13:49+09:00
jvndb-2025-000028	i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key	2025-04-24T13:50+09:00	2025-04-24T13:50+09:00
jvndb-2025-000027	Active! mail vulnerable to stack-based buffer overflow	2025-04-18T16:50+09:00	2025-04-18T16:50+09:00
jvndb-2016-000129	Android OS issue where it is affected by the CRIME attack	2016-07-25T11:15+09:00	2025-04-18T16:36+09:00
jvndb-2025-003213	TP-Link Deco BE65 Pro vulnerable to OS command injection	2025-04-11T13:52+09:00	2025-04-11T13:52+09:00
jvndb-2025-000026	Multiple vulnerabilities in BizRobo!	2025-04-10T15:36+09:00	2025-04-10T15:36+09:00
jvndb-2025-003091	Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (April 2025)	2025-04-09T14:55+09:00	2025-04-09T14:55+09:00
jvndb-2025-002990	Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series'	2025-04-07T17:44+09:00	2025-04-07T17:44+09:00
jvndb-2025-002714	Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers	2025-03-31T16:59+09:00	2025-04-03T15:19+09:00
jvndb-2025-000025	WinRAR vulnerable to the symbolic link based "Mark of the Web" check bypass	2025-04-03T12:29+09:00	2025-04-03T12:29+09:00
jvndb-2025-000022	Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products	2025-04-02T15:12+09:00	2025-04-02T15:12+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated