Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-13917	7 (3.1)	Elevation of Privileges in Web Security Services (WSS) Agent	Broadcom	Symantec Web Security Services Agent	2026-01-28T16:29:59.092Z	2026-01-28T16:43:08.704Z
CVE-2025-68986	9.9 (3.1)	WordPress Miion theme <= 1.2.7 - Arbitrary File Upload…	zozothemes	Miion	2026-01-22T16:52:15.450Z	2026-01-28T16:42:32.633Z
CVE-2026-1522	6.9 (4.0) 5.3 (3.1) 5.3 (3.0)	Open5GS SGWC s5c-handler.c sgwc_s5c_handle_modify_bear…	n/a	Open5GS	2026-01-28T16:32:07.267Z	2026-01-28T16:42:10.044Z
CVE-2026-23553	2.9 (3.1)	x86: incomplete IBPB for vCPU isolation	Xen	Xen	2026-01-28T15:33:44.782Z	2026-01-28T16:41:14.803Z
CVE-2025-68999	8.5 (3.1)	WordPress Happy Addons for Elementor plugin <= 3.20.4 …	HappyMonster	Happy Addons for Elementor	2026-01-22T16:52:15.685Z	2026-01-28T16:40:31.836Z
CVE-2025-8890	9.3 (4.0)	Authenticated RCE in SDMC NE6037 router	SDMC	NE6037	2025-11-27T13:42:53.664Z	2026-01-28T16:39:21.574Z
CVE-2025-69001	5.3 (3.1)	WordPress FluentForm plugin <= 6.1.11 - Arbitrary Shor…	Shahjahan Jewel	FluentForm	2026-01-22T16:52:15.923Z	2026-01-28T16:38:55.020Z
CVE-2025-69002	8.8 (3.1)	WordPress OneLife theme <= 3.9 - PHP Object Injection …	designthemes	OneLife	2026-01-22T16:52:16.108Z	2026-01-28T16:38:13.689Z
CVE-2025-69003	7.1 (3.1)	WordPress KenthaRadio theme <= 2.2.0 - Reflected Cross…	QantumThemes	KenthaRadio	2026-01-22T16:52:16.345Z	2026-01-28T16:37:33.966Z
CVE-2025-69004	8.1 (3.1)	WordPress Bajaar - Highly Customizable WooCommerce Wor…	XpeedStudio	Bajaar - Highly Customizable WooCommerce WordPress Theme	2026-01-22T16:52:16.561Z	2026-01-28T16:36:51.342Z
CVE-2025-69005	8.1 (3.1)	WordPress Search & Go theme <= 2.8 - Local File Inclus…	Elated-Themes	Search & Go	2026-01-22T16:52:16.776Z	2026-01-28T16:36:19.613Z
CVE-2025-28164	5.5 (3.1)	Buffer Overflow vulnerability in libpng 1.6.43-1.…	n/a	n/a	2026-01-27T00:00:00.000Z	2026-01-28T16:35:43.323Z
CVE-2025-69035	8.8 (3.1)	WordPress Dental Care CPT plugin <= 20.2 - PHP Object …	strongholdthemes	Dental Care CPT	2026-01-22T16:52:16.979Z	2026-01-28T16:34:43.097Z
CVE-2025-69036	8.8 (3.1)	WordPress Tech Life CPT plugin <= 16.4 - PHP Object In…	strongholdthemes	Tech Life CPT	2026-01-22T16:52:17.168Z	2026-01-28T16:33:50.975Z
CVE-2025-41351	6 (4.0)	Weak encryption on Funambol's cloud server	Funambol	Cloud Server	2026-01-28T10:43:15.171Z	2026-01-28T16:33:24.426Z
CVE-2025-69038	8.1 (3.1)	WordPress Hyori theme <= 1.3.6 - Local File Inclusion …	goalthemes	Hyori	2026-01-22T16:52:17.563Z	2026-01-28T16:33:12.228Z
CVE-2025-7740	8.8 (4.0)	Use of default credentials vulnerability in Hitachi En…	Hitachi Energy	SuprOS	2026-01-28T09:02:21.430Z	2026-01-28T16:32:25.192Z
CVE-2025-69044	8.1 (3.1)	WordPress Vango theme <= 1.3.3 - Local File Inclusion …	goalthemes	Vango	2026-01-22T16:52:18.806Z	2026-01-28T16:32:23.743Z
CVE-2025-67942	6.5 (3.1)	WordPress Peach Payments Gateway plugin <= 3.3.6 - Bro…	peachpayments	Peach Payments Gateway	2026-01-22T16:51:53.698Z	2026-01-28T16:31:01.023Z
CVE-2020-36980	8.5 (4.0) 7.8 (3.1)	SAntivirus IC 10.0.21.61 - 'SAntivirusIC' Unquoted Ser…	Segurazo	SAntivirus IC	2026-01-27T18:51:04.921Z	2026-01-28T16:30:39.579Z
CVE-2026-22243	8.7 (4.0)	EGroupware has SQL Injection in Nextmatch Filter Processing	EGroupware	egroupware	2026-01-28T16:05:35.641Z	2026-01-28T16:28:24.378Z
CVE-2025-67943	7.1 (3.1)	WordPress My auctions allegro plugin <= 3.6.32 - Cross…	wphocus	My auctions allegro	2026-01-22T16:51:53.901Z	2026-01-28T16:28:13.771Z
CVE-2026-1520	4.8 (4.0) 2.4 (3.1) 2.4 (3.0)	rethinkdb Secondary Index cross site scripting	n/a	rethinkdb	2026-01-28T14:32:06.745Z	2026-01-28T16:27:37.061Z
CVE-2025-67944	9.1 (3.1)	WordPress Nelio AB Testing plugin <= 8.1.8 - Arbitrary…	Nelio Software	Nelio AB Testing	2026-01-22T16:51:54.109Z	2026-01-28T16:22:15.851Z
CVE-2025-67945	9.3 (3.1)	WordPress MailerLite – WooCommerce integration plugin …	MailerLite	MailerLite – WooCommerce integration	2026-01-22T16:51:54.311Z	2026-01-28T16:18:50.045Z
CVE-2025-67946	8.1 (3.1)	WordPress AdForest theme <= 6.0.11 - Local File Inclus…	scriptsbundle	AdForest	2026-01-22T16:51:54.507Z	2026-01-28T16:12:23.731Z
CVE-2026-1521	6.9 (4.0) 5.3 (3.1) 5.3 (3.0)	Open5GS SGWC s5c-handler.c denial of service	n/a	Open5GS	2026-01-28T14:32:10.348Z	2026-01-28T16:12:00.256Z
CVE-2026-0702	7.5 (3.1)	VidShop – Shoppable Videos for WooCommerce <= 1.1.4 - …	wpcreatix	VidShop – Shoppable Videos for WooCommerce	2026-01-28T08:26:55.318Z	2026-01-28T16:10:33.513Z
CVE-2026-1536	5.8 (3.1)	Libsoup: libsoup: http header injection or response sp…	Red Hat	Red Hat Enterprise Linux 10	2026-01-28T15:15:46.708Z	2026-01-28T16:10:16.291Z
CVE-2026-1053	4.4 (3.1)	Ivory Search <= 5.5.13 - Authenticated (Administrator+…	vinod-dalvi	Ivory Search – WordPress Search Plugin	2026-01-28T08:26:55.731Z	2026-01-28T16:09:19.903Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-22259	7.5 (3.1)	Suricata dnp3: unbounded transaction growth	OISF	suricata	2026-01-27T17:13:11.057Z	2026-01-27T18:16:55.422Z
CVE-2021-47767	8.5 (4.0) 7.8 (3.1)	10-Strike Network Inventory Explorer Pro 9.31 - 'srvIn…	10-Strike	Strike Network Inventory Explorer Pro	2026-01-15T15:52:09.919Z	2026-01-15T18:27:09.610Z
CVE-2021-47768	5.3 (4.0) 6.1 (3.1)	ImportExportTools NG 10.0.4 - HTML Injection	thundernest	ImportExportTools NG	2026-01-15T15:52:10.377Z	2026-01-15T18:27:03.728Z
CVE-2026-20047	4.8 (3.1)	Cisco Identity Services Engine Cross-Site Scripting Vu…	Cisco	Cisco Identity Services Engine Software	2026-01-15T16:32:15.578Z	2026-01-16T04:55:52.838Z
CVE-2026-20075	4.8 (3.1)	Cisco Evolved Programmable Network Manager and Cisco P…	Cisco	Cisco Evolved Programmable Network Manager (EPNM)	2026-01-15T16:32:15.838Z	2026-01-15T18:11:54.678Z
CVE-2026-20076	4.8 (3.1)	Cisco Identity Services Engine Stored Cross-Site Scrip…	Cisco	Cisco Identity Services Engine Software	2026-01-15T16:32:03.744Z	2026-01-16T04:55:53.964Z
CVE-2026-23495	4.3 (3.1)	Pimcore's Admin Classic Bundle is Missing Function Lev…	pimcore	pimcore	2026-01-15T16:47:07.114Z	2026-01-15T17:09:32.298Z
CVE-2026-23496	5.4 (3.1)	Pimcore Web2Print Tools Bundle "Favourite Output Chann…	pimcore	pimcore	2026-01-15T16:58:39.431Z	2026-01-15T18:26:33.948Z
CVE-2026-0765	8.8 (3.0)	Open WebUI PIP install_frontmatter_requirements Comman…	Open WebUI	Open WebUI	2026-01-23T03:28:32.185Z	2026-01-24T04:55:37.773Z
CVE-2026-0766	8.8 (3.0)	Open WebUI load_tool_module_by_id Command Injection Re…	Open WebUI	Open WebUI	2026-01-23T03:28:35.773Z	2026-01-24T04:55:36.583Z
CVE-2025-67025	6.1 (3.1)	Cross Site Scripting vulnerability in Anycomment …	n/a	n/a	2026-01-15T00:00:00.000Z	2026-01-15T21:07:24.240Z
CVE-2026-0767	5.3 (3.0)	Open WebUI Cleartext Transmission of Credentials Infor…	Open WebUI	Open WebUI	2026-01-23T03:28:39.523Z	2026-01-23T16:33:51.687Z
CVE-2025-63045	6.5 (3.1)	WordPress Master Slider Pro plugin <= 3.7.12 - Cross S…	averta	Master Slider Pro	2025-12-09T14:52:30.970Z	2026-01-30T17:36:16.361Z
CVE-2022-47425	4.3 (3.1)	WordPress ARMember – Membership Plugin, Content Restri…	Repute Infosystems	ARMember	2025-12-09T16:41:37.058Z	2025-12-09T17:05:20.626Z
CVE-2025-13743	2.4 (4.0)	Expired Personal Access Tokens (PATs) are recorded in …	Docker	Docker Desktop	2025-12-09T20:39:52.071Z	2025-12-10T15:45:17.295Z
CVE-2026-23645	5.3 (4.0)	SiYuan Vulnerable to Stored Cross-Site Scripting (XSS)…	siyuan-note	siyuan	2026-01-16T19:20:06.744Z	2026-01-16T21:37:58.336Z
CVE-2025-67488	7.8 (3.1)	SiYuan: ZipSlip -> Arbitrary File Overwrite -> RCE	siyuan-note	siyuan	2025-12-09T20:32:37.274Z	2025-12-09T21:30:12.799Z
CVE-2025-40700	5.1 (4.0)	Reflected Cross-Site Scripting (XSS) in Governalia by …	IDI Eikon	Governalia	2025-12-02T13:08:55.540Z	2025-12-02T13:26:32.149Z
CVE-2024-50388	9.5 (4.0)	HBS 3 Hybrid Backup Sync	QNAP Systems Inc.	HBS 3 Hybrid Backup Sync	2024-12-06T16:35:07.434Z	2024-12-06T19:59:55.053Z
CVE-2024-13086	5.3 (3.1)	QTS, QuTS hero	QNAP Systems Inc.	QTS	2025-03-07T16:12:39.065Z	2025-03-07T17:55:56.464Z
CVE-2025-66476	7.8 (3.1)	Vim for Windows Uncontrolled Search Path Element Remot…	vim	vim	2025-12-02T21:49:24.672Z	2025-12-05T04:56:29.527Z
CVE-2026-21625	4.8 (4.0)	Extension - stackideas.com - Lack of mime type validat…	Stackideas.com	EasyDiscuss extension for Joomla	2026-01-16T15:06:15.596Z	2026-01-16T15:35:53.746Z
CVE-2025-13751	1.3 (4.0)	Interactive service agent in OpenVPN version 2.5.…	OpenVPN	OpenVPN	2025-12-03T16:22:35.771Z	2025-12-12T13:56:20.684Z
CVE-2026-21624	9.4 (4.0)	Extension - stackideas.com - Persistent XSS in EasyDis…	Stackideas.com	EasyDiscuss extension for Joomla	2026-01-16T15:05:37.172Z	2026-01-16T15:41:11.155Z
CVE-2026-21623	9.4 (4.0)	Extension - stackideas.com - Persistent XSS in EasyDis…	Stackideas.com	EasyDiscuss extension for Joomla	2026-01-16T15:04:36.308Z	2026-01-16T15:38:27.743Z
CVE-2025-63083	5.9 (4.0)	Joomla! Core - [20260102] - XSS vector in the pagebrea…	Joomla! Project	Joomla! CMS	2026-01-06T16:01:15.123Z	2026-01-06T18:56:00.865Z
CVE-2025-33208	8.8 (3.1)	NVIDIA TAO contains a vulnerability where an atta…	NVIDIA	TAO	2025-12-03T18:19:04.324Z	2025-12-03T18:55:47.516Z
CVE-2025-63082	5.9 (4.0)	Joomla! Core - [20260101] - Inadequate content filteri…	Joomla! Project	Joomla! CMS	2026-01-06T16:01:38.720Z	2026-01-06T17:45:21.282Z
CVE-2025-10865	7.8 (3.1)	GPU DDK - DevmemIntGetReservationData does not ref the…	Imagination Technologies	Graphics DDK	2026-01-13T17:26:45.523Z	2026-01-14T14:36:47.473Z
CVE-2025-58409	3.5 (3.1)	GPU DDK - Disguised freelist buffers passed to RGXCrea…	Imagination Technologies	Graphics DDK	2026-01-13T16:37:46.020Z	2026-01-14T15:04:14.357Z

ID	Description	Published	Updated
fkie_cve-2026-20047	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and C…	2026-01-15T17:16:07.160	2026-01-30T19:58:27.947
fkie_cve-2026-20075	A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager…	2026-01-15T17:16:07.337	2026-01-30T19:54:36.580
fkie_cve-2026-20076	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could…	2026-01-15T17:16:07.517	2026-01-30T19:53:59.787
fkie_cve-2026-23495	Pimcore's Admin Classic Bundle provides a Backend UI for Pimcore. Prior to 2.2.3 and 1.7.16, the AP…	2026-01-15T17:16:08.597	2026-01-30T19:51:59.950
fkie_cve-2026-23496	Pimcore Web2Print Tools Bundle adds tools for web-to-print use cases to Pimcore. Prior to 5.2.2 and…	2026-01-15T17:16:08.747	2026-01-30T19:49:56.363
fkie_cve-2026-0765	Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerabili…	2026-01-23T04:16:03.390	2026-01-30T19:48:35.070
fkie_cve-2026-0766	Open WebUI load_tool_module_by_id Command Injection Remote Code Execution Vulnerability. This vulne…	2026-01-23T04:16:03.527	2026-01-30T19:47:56.023
fkie_cve-2025-67025	Cross Site Scripting vulnerability in Anycomment anycomment.io 0.4.4 allows a remote attacker to ex…	2026-01-15T21:16:04.620	2026-01-30T19:42:50.463
fkie_cve-2026-0767	Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnera…	2026-01-23T04:16:03.660	2026-01-30T19:36:59.573
fkie_cve-2025-63045	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-09T16:18:09.747	2026-01-30T19:36:50.487
fkie_cve-2022-47425	Missing Authorization vulnerability in Repute Infosystems ARMember allows Exploiting Incorrectly Co…	2025-12-09T17:15:47.830	2026-01-30T19:36:17.163
fkie_cve-2025-13743	Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to erro…	2025-12-09T21:15:53.500	2026-01-30T19:35:24.140
fkie_cve-2026-23645	SiYuan is self-hosted, open source personal knowledge management software. Prior to 3.5.4-dev2, a S…	2026-01-16T20:15:49.880	2026-01-30T19:32:11.660
fkie_cve-2025-67488	SiYuan is self-hosted, open source personal knowledge management software. Versions 0.0.0-202512021…	2025-12-09T21:16:00.317	2026-01-30T19:30:11.173
fkie_cve-2025-40700	Reflected Cross-Site Scripting (XSS) in IDI Eikon's Governalia. The vulnerability allows an attacke…	2025-12-02T13:15:53.537	2026-01-30T19:13:04.337
fkie_cve-2024-50388	An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If expl…	2024-12-06T17:15:09.373	2026-01-30T19:03:53.217
fkie_cve-2024-13086	An exposure of sensitive information vulnerability has been reported to affect product. If exploite…	2025-03-07T17:15:18.430	2026-01-30T18:54:35.447
fkie_cve-2025-66476	Vim is an open source, command line text editor. Prior to version 9.1.1947, an uncontrolled search …	2025-12-02T22:16:09.940	2026-01-30T18:50:29.877
fkie_cve-2026-21625	User provided uploads to the Easy Discuss component for Joomla aren't properly validated. Uploads a…	2026-01-16T15:15:55.017	2026-01-30T18:45:43.407
fkie_cve-2025-13751	Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on…	2025-12-03T17:15:49.913	2026-01-30T18:43:57.883
fkie_cve-2026-21624	Lack of input filterung leads to a persistent XSS vulnerability in the user avatar text handling of…	2026-01-16T15:15:54.873	2026-01-30T18:43:24.353
fkie_cve-2026-21623	Lack of input filterung leads to a persistent XSS vulnerability in the forum post handling of the E…	2026-01-16T15:15:54.733	2026-01-30T18:42:53.640
fkie_cve-2025-63083	Lack of output escaping leads to a XSS vector in the pagebreak plugin.	2026-01-06T17:15:44.740	2026-01-30T18:41:36.323
fkie_cve-2025-33208	NVIDIA TAO contains a vulnerability where an attacker may cause a resource to be loaded via an unco…	2025-12-03T19:15:55.983	2026-01-30T18:41:29.603
fkie_cve-2025-63082	Lack of input filtering leads to an XSS vector in the HTML filter code related to data URLs in img tags.	2026-01-06T17:15:44.590	2026-01-30T18:41:18.417
fkie_cve-2025-10865	Software installed and run as a non-privileged user may conduct improper GPU system calls to cause …	2026-01-13T18:16:04.433	2026-01-30T18:39:09.417
fkie_cve-2025-58409	Software installed and run as a non-privileged user may conduct improper GPU system calls to subver…	2026-01-13T17:15:57.680	2026-01-30T18:39:02.007
fkie_cve-2025-58411	Software installed and run as a non-privileged user may conduct improper GPU system calls to cause …	2026-01-13T17:15:57.813	2026-01-30T18:38:40.350
fkie_cve-2025-13086	Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7_alpha1 t…	2025-12-03T20:16:24.353	2026-01-30T18:38:13.833
fkie_cve-2025-25176	Intermediate register values of secure workloads can be exfiltrated in workloads scheduled from app…	2026-01-13T17:15:56.753	2026-01-30T18:37:54.833

ID	Severity	Description	Published	Updated
ghsa-r5hj-w659-pg8p	7.5 (3.1)	SolarWinds Web Help Desk was found to be susceptible to a hardcoded credentials vulnerability that,…	2026-01-28T09:30:30Z	2026-01-28T09:30:31Z
ghsa-jpf4-6gr7-rh8q	9.8 (3.1)	SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-jm7r-g967-8pch	9.8 (3.1)	SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-h8c7-c2x8-j8gf	7.2 (3.1)	The AI Engine – The Chatbot and AI Framework for WordPress plugin for WordPress is vulnerable to ar…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-h376-x6h9-h5f3	5.3 (3.1)	The Document Embedder – Embed PDFs, Word, Excel, and Other Files plugin for WordPress is vulnerable…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-cvjc-vrqh-j59p	4.4 (3.1)	The Order Minimum/Maximum Amount Limits for WooCommerce plugin for WordPress is vulnerable to Store…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-cgx8-hg5r-9pwr	8.8 (4.0)	Default credentials vulnerability exists in SuprOS product. If exploited, this could allow an authe…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-6x3m-wxmv-rww9	6.1 (3.1)	Jirafeau normally prevents browser preview for text files due to the possibility that for example S…	2026-01-28T09:30:30Z	2026-01-28T09:30:31Z
ghsa-5gq3-mh83-6m28	9.8 (3.1)	SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabi…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-585q-rrjr-7f52	4.4 (3.1)	The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Stored Cross-Site …	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-2wcq-5jhh-r94q	5.3 (3.1)	The RegistrationMagic plugin for WordPress is vulnerable to Missing Authorization in versions up to…	2026-01-28T09:30:31Z	2026-01-28T09:30:31Z
ghsa-w43j-jwpr-7gj3	6.4 (3.1)	The WPBITS Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-p522-hm8w-vfrr	6.4 (3.1)	The Forms Bridge – Infinite integrations plugin for WordPress is vulnerable to Stored Cross-Site Sc…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-m83h-48rr-jcrh	8.1 (3.1)	SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability tha…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-m59v-w24h-f8g6	7.3 (3.1)	The New User Approve plugin for WordPress is vulnerable to unauthorized access of data and modifica…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-gvwp-rvc7-xjm8	5.3 (3.1)	The Simple calendar for Elementor plugin for WordPress is vulnerable to Missing Authorization in al…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-gmv6-9vw4-mjrf	5.3 (3.1)	The Database for Contact Form 7, WPforms, Elementor forms plugin for WordPress is vulnerable to aut…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-g4qc-jf93-q4fc	6.4 (3.1)	The Interactions – Create Interactive Experiences in the Block Editor plugin for WordPress is vulne…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-9h39-qgm4-fgr8	6.4 (3.1)	The Simple Folio plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_simple…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-87j3-3j5h-4g3m	6.4 (3.1)	The Buy Now Plus – Buy Now buttons for Stripe plugin for WordPress is vulnerable to Stored Cross-Si…	2026-01-28T09:30:30Z	2026-01-28T09:30:30Z
ghsa-xw9f-44rx-4f36	5.3 (3.1)	The Easy Replace Image plugin for WordPress is vulnerable to Missing Authorization in all versions …	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-xw9c-4vrc-64gr		Rejected reason: Not used	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-vpjf-q5q9-w837	7.2 (3.1)	The TableMaster for Elementor plugin for WordPress is vulnerable to Server-Side Request Forgery in …	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-pwc8-wvmv-h77r	4.4 (3.1)	The Appointment Hour Booking – Booking Calendar plugin for WordPress is vulnerable to Stored Cross-…	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-mvhq-2c86-53q7		Rejected reason: Not used	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-h48f-f44x-rv65	6.4 (3.1)	The Target Video Easy Publish plugin for WordPress is vulnerable to Stored Cross-Site Scripting via…	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-h3f4-cj22-95mv		Rejected reason: Not used	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-grwv-j84r-6452		Rejected reason: Not used	2026-01-28T06:30:30Z	2026-01-28T06:30:31Z
ghsa-8pmp-wv7w-98g4		Rejected reason: Not used	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z
ghsa-2qgp-5cvv-jv79		Rejected reason: Not used	2026-01-28T06:30:31Z	2026-01-28T06:30:31Z

ID	Description	Package	Published	Updated
pysec-2020-242	netius prior to 1.17.58 is vulnerable to HTTP Request Smuggling. HTTP pipelining issues a…	netius	2020-05-21T15:15:00Z	2021-11-23T06:07:22.013113Z
pysec-2019-220	In Pallets Jinja before 2.8.1, str.format allows a sandbox escape.	jinja2	2019-04-08T13:29:00Z	2021-11-22T04:57:52.929678Z
pysec-2019-217	In Pallets Jinja before 2.10.1, str.format_map allows a sandbox escape.	jinja2	2019-04-07T00:29:00Z	2021-11-22T04:57:52.862665Z
pysec-2014-97	Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy Digi…	apache-libcloud	2014-01-07T18:55:00Z	2021-11-22T04:57:51.510127Z
pysec-2021-430	django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat…	django-helpdesk	2021-11-13T09:15:00Z	2021-11-19T07:28:03.664110Z
pysec-2021-429	SLO generator allows for loading of YAML files that if crafted in a specific format can a…	slo-generator	2021-10-04T10:15:00Z	2021-11-16T21:20:29.712720Z
pysec-2021-428	nbdime provides tools for diffing and merging of Jupyter Notebooks. In affected versions …	nbdime	2021-11-03T18:15:00Z	2021-11-16T21:20:29.137127Z
pysec-2018-104	python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an informat…	oslo-middleware	2018-05-08T17:29:00Z	2021-11-16T21:20:29.327956Z
pysec-2017-99	Directory traversal vulnerability in Cherry Music before 0.36.0 allows remote authenticat…	cherrymusic	2017-03-27T15:59:00Z	2021-11-16T21:20:28.227902Z
pysec-2017-100	Cross-site scripting (XSS) vulnerability in Cherry Music before 0.36.0 allows remote auth…	cherrymusic	2017-03-27T15:59:00Z	2021-11-16T21:20:28.264266Z
pysec-2013-34	Graphite 0.9.5 through 0.9.10 uses the pickle Python module unsafely, which allows remote…	graphite-web	2013-09-27T10:08:00Z	2021-11-16T21:20:28.715114Z
pysec-2011-24	libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allow…	apache-libcloud	2011-09-12T12:41:00Z	2021-11-16T21:20:27.993612Z
pysec-2021-426	The verify function in the Stark Bank Python ECDSA library (ecdsa-python) 2.0.0 fails to …	starkbank-ecdsa	2021-11-09T22:15:00Z	2021-11-16T03:58:45.828098Z
pysec-2020-267	Red Discord Bot before version 3.4.1 has an unauthorized privilege escalation exploit in …	red-discordbot	2020-10-28T17:15:00Z	2021-11-16T03:58:45.518170Z
pysec-2020-266	Red Discord Bot before versions 3.3.12 and 3.4 has a Remote Code Execution vulnerability …	red-discordbot	2020-08-21T18:15:00Z	2021-11-16T03:58:45.466484Z
pysec-2020-265	In Red Discord Bot before version 3.3.11, a RCE exploit has been discovered in the Trivia…	red-discordbot	2020-08-21T17:15:00Z	2021-11-16T03:58:45.413825Z
pysec-2019-218	libnmap < v0.6.3 is affected by: XML Injection. The impact is: Denial of service (DoS) by…	python-libnmap	2019-07-15T03:15:00Z	2021-11-16T03:58:45.118185Z
pysec-2021-425	Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In version…	matrix-synapse	2021-08-31T17:15:00Z	2021-11-16T03:58:44.571857Z
pysec-2021-424	Matrix is an ecosystem for open federated Instant Messaging and Voice over IP. In version…	matrix-synapse	2021-08-31T16:15:00Z	2021-11-16T03:58:44.500451Z
pysec-2021-423	An issue in Gate One 1.2.0 allows attackers to bypass to the verification check done by t…	gateone	2021-10-06T13:15:00Z	2021-11-16T03:58:44.124463Z
pysec-2020-264	In "I hate money" before version 4.1.5, an authenticated member of one project can modify…	ihatemoney	2020-07-27T18:15:00Z	2021-11-16T03:58:44.236145Z
pysec-2021-422	Bot Framework SDK Information Disclosure Vulnerability	botframework-connector	2021-01-12T20:15:00Z	2021-11-16T03:58:43.637745Z
pysec-2021-421	Babel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (…	babel	2021-10-20T21:15:00Z	2021-11-16T03:58:43.401152Z
pysec-2020-263	A flaw was found in Django REST Framework versions before 3.12.0 and before 3.11.2. When …	djangorestframework	2020-09-30T20:15:00Z	2021-11-16T03:58:43.874175Z
pysec-2020-262	In Airflow versions prior to 1.10.13, when creating a user using airflow CLI, the passwor…	apache-airflow	2020-12-14T10:15:00Z	2021-11-16T03:58:43.269619Z
pysec-2019-216	A malicious admin user could edit the state of objects in the Airflow metadata database t…	apache-airflow	2019-10-30T22:15:00Z	2021-11-16T03:58:43.222984Z
pysec-2019-215	A number of HTTP endpoints in the Airflow webserver (both RBAC and classic) did not have …	apache-airflow	2019-04-10T20:29:00Z	2021-11-16T03:58:43.176949Z
pysec-2019-214	A malicious admin user could edit the state of objects in the Airflow metadata database t…	apache-airflow	2019-04-10T20:29:00Z	2021-11-16T03:58:43.132049Z
pysec-2021-420	TensorFlow is an open source platform for machine learning. In affected versions TensorFl…	tensorflow	2021-11-05T23:15:00Z	2021-11-13T06:52:46.380831Z
pysec-2021-419	TensorFlow is an open source platform for machine learning. In affected versions the `Imm…	tensorflow	2021-11-05T23:15:00Z	2021-11-13T06:52:46.221231Z

ID	Description	Updated
gsd-2024-32519	Missing Authorization vulnerability in GutenGeek GG Woo Feed for WooCommerce.This issue a…	2024-04-16T05:01:54.579723Z
gsd-2024-32518	Missing Authorization vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice.This is…	2024-04-16T05:01:54.681110Z
gsd-2024-32517	Missing Authorization vulnerability in WooCommerce & WordPress Tutorials Custom Thank You…	2024-04-16T05:01:54.595211Z
gsd-2024-32516	Missing Authorization vulnerability in Palscode Multi Currency For WooCommerce.This issue…	2024-04-16T05:01:54.693949Z
gsd-2024-32515	Missing Authorization vulnerability in Qamar Sheeraz, Nasir Ahmad Mega Addons For Element…	2024-04-16T05:01:54.604094Z
gsd-2024-32514	Unrestricted Upload of File with Dangerous Type vulnerability in Poll Maker & Voting Plug…	2024-04-16T05:01:54.724168Z
gsd-2024-32513	Insertion of Sensitive Information into Log File vulnerability in AdTribes.Io Product Fee…	2024-04-16T05:01:54.642958Z
gsd-2024-32512	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.598023Z
gsd-2024-32511	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.618177Z
gsd-2024-32510	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.722313Z
gsd-2024-32509	Missing Authorization vulnerability in Loopus WP Cost Estimation & Payment Forms Builder.…	2024-04-16T05:01:54.587442Z
gsd-2024-32508	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.598484Z
gsd-2024-32507	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577425Z
gsd-2024-32506	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in SoftLab Radio…	2024-04-16T05:01:54.618621Z
gsd-2024-32505	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-16T05:01:54.669312Z
gsd-2024-32504	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.600594Z
gsd-2024-32503	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577229Z
gsd-2024-32502	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.585782Z
gsd-2024-32501	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.689371Z
gsd-2024-32500	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.674785Z
gsd-2024-32499	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.569850Z
gsd-2024-32498	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.604307Z
gsd-2024-32497	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.732027Z
gsd-2024-32496	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.661495Z
gsd-2024-32495	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.577033Z
gsd-2024-32494	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.678491Z
gsd-2024-32493	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.593382Z
gsd-2024-32492	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.742285Z
gsd-2024-32491	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.605646Z
gsd-2024-32490	The format of the source doesn't require a description, click on the link for more details.	2024-04-16T05:01:54.722724Z

ID	Description	Published	Updated
MAL-2025-191712	Malicious code in d1snakegame (PyPI)	2025-10-03T16:11:50Z	2025-12-31T02:45:15Z
MAL-2025-191711	Malicious code in d1n0exploitaaaa (PyPI)	2025-11-14T17:22:10Z	2025-12-31T02:45:15Z
MAL-2025-191709	Malicious code in cti-ctf-challenges (PyPI)	2025-09-09T17:40:01Z	2025-12-31T02:45:15Z
MAL-2025-191708	Malicious code in crto5 (PyPI)	2025-07-14T16:42:19Z	2025-12-31T02:45:15Z
MAL-2025-191704	Malicious code in computestpspeedcomp (PyPI)	2025-02-13T13:18:05Z	2025-12-31T02:45:15Z
MAL-2025-191702	Malicious code in chromifypro (PyPI)	2025-11-07T22:43:23Z	2025-12-31T02:45:15Z
MAL-2025-191699	Malicious code in chat-prompt-logger (PyPI)	2025-11-30T00:34:30Z	2025-12-31T02:45:15Z
MAL-2025-191698	Malicious code in callistopy (PyPI)	2025-07-05T10:23:57Z	2025-12-31T02:45:15Z
MAL-2025-191694	Malicious code in bprintoor (PyPI)	2025-02-13T13:18:05Z	2025-12-31T02:45:15Z
MAL-2025-191689	Malicious code in backtradingbot (PyPI)	2025-07-31T08:37:38Z	2025-12-31T02:45:15Z
MAL-2025-191688	Malicious code in axonify (PyPI)	2025-03-18T09:49:12Z	2025-12-31T02:45:15Z
MAL-2025-191686	Malicious code in aws-enumerateiam (PyPI)	2025-11-18T23:47:36Z	2025-12-31T02:45:15Z
MAL-2025-191681	Malicious code in anothertestproject (PyPI)	2025-10-08T12:45:34Z	2025-12-31T02:45:15Z
MAL-2025-191678	Malicious code in amd-taichi (PyPI)	2025-09-15T14:34:20Z	2025-12-31T02:45:15Z
MAL-2025-191674	Malicious code in aiogram-msgeffect (PyPI)	2025-11-22T16:25:53Z	2025-12-31T02:45:15Z
MAL-2025-191658	Malicious code in richx (PyPI)	2025-10-31T13:39:17Z	2025-12-31T02:45:15Z
MAL-2025-191655	Malicious code in rando0192490 (PyPI)	2025-10-19T16:48:34Z	2025-12-31T02:45:15Z
MAL-2025-191653	Malicious code in ptxcompiler (PyPI)	2025-10-17T15:20:16Z	2025-12-31T02:45:15Z
MAL-2025-191651	Malicious code in my-first-pypi-demo (PyPI)	2025-08-20T16:33:25Z	2025-12-31T02:45:15Z
MAL-2025-191650	Malicious code in musl-dev (PyPI)	2025-10-16T09:20:43Z	2025-12-31T02:45:15Z
MAL-2025-191649	Malicious code in md5-en (PyPI)	2025-10-15T20:24:59Z	2025-12-31T02:45:15Z
MAL-2025-191647	Malicious code in mcp-runcommand-server (PyPI)	2025-10-10T10:05:00Z	2025-12-31T02:45:15Z
MAL-2025-191646	Malicious code in makronlox (PyPI)	2025-10-16T20:06:59Z	2025-12-31T02:45:15Z
MAL-2025-191644	Malicious code in lbank-connector-pythons (PyPI)	2025-10-22T12:45:32Z	2025-12-31T02:45:15Z
MAL-2025-191643	Malicious code in krisp-audio (PyPI)	2025-11-02T16:54:07Z	2025-12-31T02:45:15Z
MAL-2025-191640	Malicious code in install-all-setup (PyPI)	2025-10-29T21:52:42Z	2025-12-31T02:45:15Z
MAL-2025-191636	Malicious code in humunculous591014 (PyPI)	2025-10-19T16:45:19Z	2025-12-31T02:45:15Z
MAL-2025-191634	Malicious code in humunculous5910 (PyPI)	2025-10-19T16:57:22Z	2025-12-31T02:45:15Z
MAL-2025-191631	Malicious code in hexdecpy (PyPI)	2025-10-24T21:59:02Z	2025-12-31T02:45:15Z
MAL-2025-191630	Malicious code in hexdecli (PyPI)	2025-10-25T16:03:26Z	2025-12-31T02:45:15Z

ID	Description	Published	Updated
wid-sec-w-2025-0223	binutils: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-01-29T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-1529	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2024-07-04T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-1144	LibreOffice: Schwachstelle ermöglicht Codeausführung	2024-05-14T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-0518	Golang Go: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-02-29T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-0488	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-02-26T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-0478	Linux Kernel: Mehrere Schwachstellen	2024-02-26T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2024-0121	Oracle Java SE: Mehrere Schwachstellen	2024-01-16T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2023-1238	Red Hat Enterprise Linux: Mehrere Schwachstellen in verschiedenen Komponenten	2023-05-16T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2023-0551	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2023-03-01T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2023-0318	Red Hat Migration Toolkit for Containers: Mehrere Schwachstellen	2023-02-08T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-2242	Oracle Java SE: Mehrere Schwachstellen	2020-10-20T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-2191	Python: Schwachstelle ermöglicht Manipulation von Dateien	2019-10-23T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-2166	Red Hat OpenShift: Mehrere Schwachstellen ermöglichen Denial of Service	2022-11-23T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-2052	Mehrere Red Hat Enterprise Linux Pakete: Mehrere Schwachstellen	2022-11-15T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-2048	Red Hat OpenShift: Schwachstelle gefährdet Vertraulichkeit, Verfügbarkeit und Integrität	2021-05-24T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-1639	Oracle Java SE: Mehrere Schwachstellen	2020-04-14T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-1241	PostgreSQL: Mehrere Schwachstellen	2021-05-13T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-1089	Red Hat OpenShift Container Platform: Mehrere Schwachstellen	2020-03-10T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-0879	Red Hat Enterprise Linux: Mehrere Schwachstellen	2022-08-01T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-0464	Oracle Java SE: Mehrere Schwachstellen	2021-07-20T22:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2022-0230	Linux Kernel: Schwachstelle ermöglicht Manipulation von Dateien	2021-11-25T23:00:00.000+00:00	2025-04-29T22:00:00.000+00:00
wid-sec-w-2025-0899	Redmine.org Redmine: Mehrere Schwachstellen	2025-04-28T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0898	xwiki: Mehrere Schwachstellen	2025-04-28T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0897	Dell Computer: Mehrere Schwachstellen ermöglichen nicht spezifizierte Angriffe	2025-04-28T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0896	Docker Desktop: Schwachstelle ermöglicht Privilegieneskalation	2025-04-28T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0894	Fortra GoAnywhere MFT: Mehrere Schwachstellen	2025-04-28T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0892	Commvault Backup & Recovery: Schwachstelle ermöglicht Codeausführung	2025-04-27T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0858	cPanel/WHM: Mehrere Schwachstellen	2025-04-21T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0854	Broadcom Fabric OS: Schwachstelle ermöglicht Codeausführung als "root"	2025-04-21T22:00:00.000+00:00	2025-04-28T22:00:00.000+00:00
wid-sec-w-2025-0442	Linux Kernel: Schwachstelle ermöglicht Codeausführung	2025-02-25T23:00:00.000+00:00	2025-04-28T22:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2023:7764	Red Hat Security Advisory: buildah security update	2023-12-12T17:29:16+00:00	2026-02-03T21:19:05+00:00
rhsa-2023:7763	Red Hat Security Advisory: runc security update	2023-12-12T17:25:05+00:00	2026-02-03T21:19:05+00:00
rhsa-2023:7681	Red Hat Security Advisory: OpenShift Container Platform 4.14.6 security and extras update	2023-12-12T09:36:20+00:00	2026-02-03T21:18:55+00:00
rhsa-2023:7663	Red Hat Security Advisory: Red Hat OpenShift distributed tracing 3.0.0 operator/operand containers	2023-12-06T05:00:32+00:00	2026-02-03T21:18:54+00:00
rhsa-2023:7517	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update	2023-11-27T19:31:55+00:00	2026-02-03T21:18:44+00:00
rhsa-2023:7197	Red Hat Security Advisory: OpenShift Container Platform 4.15.0 security and extras update	2024-02-27T19:47:37+00:00	2026-02-03T21:18:19+00:00
rhsa-2023:7058	Red Hat Security Advisory: rhc security, bug fix, and enhancement update	2023-11-14T16:13:51+00:00	2026-02-03T21:18:18+00:00
rhsa-2023:6939	Red Hat Security Advisory: container-tools:rhel8 security and bug fix update	2023-11-14T16:03:32+00:00	2026-02-03T21:18:17+00:00
rhsa-2023:6938	Red Hat Security Advisory: container-tools:4.0 security and bug fix update	2023-11-14T15:32:31+00:00	2026-02-03T21:18:13+00:00
rhsa-2023:6420	Red Hat Security Advisory: grafana security and enhancement update	2023-11-07T08:59:06+00:00	2026-02-03T21:17:46+00:00
rhsa-2023:6474	Red Hat Security Advisory: podman security, bug fix, and enhancement update	2023-11-07T08:52:01+00:00	2026-02-03T21:17:44+00:00
rhsa-2023:6402	Red Hat Security Advisory: containernetworking-plugins security and bug fix update	2023-11-07T09:01:07+00:00	2026-02-03T21:17:43+00:00
rhsa-2023:6473	Red Hat Security Advisory: buildah security update	2023-11-07T08:39:45+00:00	2026-02-03T21:17:42+00:00
rhsa-2023:6363	Red Hat Security Advisory: skopeo security update	2023-11-07T08:33:26+00:00	2026-02-03T21:17:39+00:00
rhsa-2023:6346	Red Hat Security Advisory: toolbox security and bug fix update	2023-11-07T09:12:30+00:00	2026-02-03T21:17:38+00:00
rhsa-2023:5447	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.0 security and bug fix update	2023-10-05T01:03:01+00:00	2026-02-03T21:16:18+00:00
rhsa-2023:5407	Red Hat Security Advisory: openshift-gitops-kam security update	2023-09-29T14:15:37+00:00	2026-02-03T21:16:16+00:00
rhsa-2023:5379	Red Hat Security Advisory: Network Observability 1.4.0 for OpenShift	2023-09-28T02:59:49+00:00	2026-02-03T21:16:15+00:00
rhsa-2023:5376	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.3 security and bug fix update	2023-09-27T14:22:37+00:00	2026-02-03T21:16:14+00:00
rhsa-2023:5314	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.6 security and bug fix update	2023-09-20T15:43:10+00:00	2026-02-03T21:16:13+00:00
rhsa-2023:5233	Red Hat Security Advisory: OpenShift Virtualization 4.13.4 security and bug fix update	2023-09-19T11:41:55+00:00	2026-02-03T21:16:11+00:00
rhsa-2023:5008	Red Hat Security Advisory: Red Hat build of MicroShift 4.14.0 security update	2023-10-31T14:23:30+00:00	2026-02-03T21:16:06+00:00
rhsa-2023:4986	Red Hat Security Advisory: Red Hat OpenShift Distributed Tracing 2.9.0 security update	2023-09-06T07:56:11+00:00	2026-02-03T21:16:03+00:00
rhsa-2023:5001	Red Hat Security Advisory: OpenShift Container Platform 4.11.49 bug fix and security update	2023-09-13T05:16:12+00:00	2026-02-03T21:16:00+00:00
rhsa-2023:4983	Red Hat Security Advisory: Red Hat Process Automation Manager 7.13.4 security update	2023-09-05T18:37:03+00:00	2026-02-03T21:15:58+00:00
rhsa-2023:4892	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.12 security and bug fix update	2023-08-31T00:59:09+00:00	2026-02-03T21:15:57+00:00
rhsa-2023:4731	Red Hat Security Advisory: OpenShift Container Platform 4.13.10 security update	2023-08-30T19:20:56+00:00	2026-02-03T21:15:57+00:00
rhsa-2023:4671	Red Hat Security Advisory: OpenShift Container Platform 4.12.30 bug fix and security update	2023-08-23T16:31:07+00:00	2026-02-03T21:15:57+00:00
rhsa-2023:4603	Red Hat Security Advisory: OpenShift Container Platform 4.13.9 bug fix and security update	2023-08-16T00:38:00+00:00	2026-02-03T21:15:56+00:00
rhsa-2023:4664	Red Hat Security Advisory: OpenShift Virtualization 4.13.3 Images security and bug fix update	2023-08-16T14:09:26+00:00	2026-02-03T21:15:54+00:00

ID	Description	Published	Updated
icsa-23-320-07	Siemens OPC UA Modeling Editor (SiOME)	2023-11-14T00:00:00Z	2023-11-14T00:00:00Z
icsa-23-320-06	Siemens SIMATIC PCS neo	2023-11-14T00:00:00Z	2023-11-14T00:00:00Z
icsa-23-320-04	Siemens Mendix Runtime	2023-11-14T00:00:00Z	2023-11-14T00:00:00Z
icsa-23-166-09	Siemens Solid Edge	2023-06-13T00:00:00.000000Z	2023-11-14T00:00:00.000000Z
icsa-22-132-06	Siemens SIMATIC WinCC	2022-05-10T00:00:00.000000Z	2023-11-14T00:00:00.000000Z
icsa-23-313-02	Hitachi Energy eSOMS	2023-11-09T07:00:00.000000Z	2023-11-09T07:00:00.000000Z
icsa-23-313-01	Johnson Controls Quantum HD Unity	2023-11-09T07:00:00.000000Z	2023-11-09T07:00:00.000000Z
icsa-22-333-03	Hitachi Energy MicroSCADA Pro/X SYS600 Products (Update A)	2022-11-29T07:00:00.000000Z	2023-11-09T07:00:00.000000Z
icsa-21-334-02	Mitsubishi Electric MELSEC and MELIPC Series (Update G)	2021-11-30T07:00:00.000000Z	2023-11-09T07:00:00.000000Z
icsa-23-311-01	GE MiCOM S1 Agile	2023-11-07T07:00:00.000000Z	2023-11-07T07:00:00.000000Z
icsa-23-306-06	Schneider Electric SpaceLogic C-Bus Toolkit	2023-11-02T06:00:00.000000Z	2023-11-02T06:00:00.000000Z
icsa-23-306-05	Weintek EasyBuilder Pro	2023-11-02T06:00:00.000000Z	2023-11-02T06:00:00.000000Z
icsa-23-306-04	Franklin Fueling System TS-550	2023-11-02T06:00:00.000000Z	2023-11-02T06:00:00.000000Z
icsa-23-306-01	Red Lion Crimson	2023-11-02T06:00:00.000000Z	2023-11-02T06:00:00.000000Z
icsa-23-304-03	Zavio IP Camera	2023-10-31T06:00:00.000000Z	2023-10-31T06:00:00.000000Z
icsa-23-304-02	INEA ME RTU	2023-10-31T06:00:00.000000Z	2023-10-31T06:00:00.000000Z
icsma-23-194-01	BD Alaris System with Guardrails Suite MX	2023-07-13T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-08	Sielco Radio Link and Analog FM Transmitters	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-07	Sielco PolyEco FM Transmitter	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-06	Rockwell Automation FactoryTalk Services Platform	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-05	Rockwell Automation FactoryTalk View Site Edition	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-04	Rockwell Automation Arena	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-02	Centralite Pearl Thermostat	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-299-01	Dingtian DT-R002	2023-10-26T06:00:00.000000Z	2023-10-26T06:00:00.000000Z
icsa-23-143-02	Hitachi Energy's RTU500 Series Product (UPDATE B)	2023-05-05T06:00:00.000000Z	2023-10-19T06:00:00.000000Z
icsa-23-290-02	Rockwell Automation FactoryTalk Linx	2023-10-17T06:00:00.000000Z	2023-10-17T06:00:00.000000Z
icsa-23-290-01	Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products	2023-10-17T06:00:00.000000Z	2023-10-17T06:00:00.000000Z
icsma-23-285-02	Santesoft Sante FFT Imaging	2023-10-12T06:00:00.000000Z	2023-10-12T06:00:00.000000Z
icsma-23-285-01	Santesoft Sante DICOM Viewer Pro	2023-10-12T06:00:00.000000Z	2023-10-12T06:00:00.000000Z
icsa-23-285-15	Advantech WebAccess	2023-10-12T06:00:00.000000Z	2023-10-12T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-fmc-xss-yt8lnsea	Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fmc-xss-yT8LNSeA	Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fmc-iac-pzdmq4wc	Cisco Firepower Management Center Software Policy Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fmc-iac-pZDMQ4wC	Cisco Firepower Management Center Software Policy Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fdm-xxe-zr7sxpfs	Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fdm-xxe-zR7sxPfs	Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fdm-dos-nfes8xtn	Cisco Firepower Device Manager Software Filesystem Space Exhaustion Denial of Service Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-fdm-dos-nFES8xTN	Cisco Firepower Device Manager Software Filesystem Space Exhaustion Denial of Service Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-vpn-dos-fpbcpecd	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services VPN Denial of Service Vulnerabilities	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-vpn-dos-fpBcpEcD	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services VPN Denial of Service Vulnerabilities	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-sipdos-ggwmmerc	Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software SIP Denial of Service Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-sipdos-GGwmMerC	Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software SIP Denial of Service Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-cmd-inj-selprvg	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-asa-ftd-cmd-inj-SELprvG	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Command Injection Vulnerability	2021-04-28T16:00:00+00:00	2021-04-28T16:00:00+00:00
cisco-sa-vmanage-info-disclos-ggvm9mfu	Cisco SD-WAN vManage Software Information Disclosure Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vmanage-info-disclos-gGvm9Mfu	Cisco SD-WAN vManage Software Information Disclosure Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vmanage-cql-inject-c7z9qqyb	Cisco SD-WAN vManage Cypher Query Language Injection Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vmanage-cql-inject-c7z9QqyB	Cisco SD-WAN vManage Cypher Query Language Injection Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-xml-ext-entity-q6z7uvug	Cisco SD-WAN vManage XML External Entity Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-xml-ext-entity-q6Z7uVUg	Cisco SD-WAN vManage XML External Entity Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-cmdinj-nrhkgfhx	Cisco SD-WAN vManage Command Injection Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-cmdinj-nRHKgfHX	Cisco SD-WAN vManage Command Injection Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-auth-bypass-z3zze5xc	Cisco SD-WAN vManage Authorization Bypass Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-vman-auth-bypass-Z3Zze5XC	Cisco SD-WAN vManage Authorization Bypass Vulnerability	2021-04-21T16:00:00+00:00	2021-04-21T16:00:00+00:00
cisco-sa-xr-cmdinj-vskgherc	Cisco IOS XR Software Command Injection Vulnerability	2021-04-07T16:00:00+00:00	2021-04-15T15:41:32+00:00
cisco-sa-xr-cmdinj-vsKGherc	Cisco IOS XR Software Command Injection Vulnerability	2021-04-07T16:00:00+00:00	2021-04-15T15:41:32+00:00
cisco-sa-anyconnect-dos-55ayyxyr	Cisco AnyConnect Secure Mobility Client Denial of Service Vulnerability	2021-02-24T16:00:00+00:00	2021-04-14T16:14:43+00:00
cisco-sa-anyconnect-dos-55AYyxYr	Cisco AnyConnect Secure Mobility Client Denial of Service Vulnerability	2021-02-24T16:00:00+00:00	2021-04-14T16:14:43+00:00
cisco-sa-xe-fsm-yj8qjbjc	Cisco IOS and IOS XE Software Privilege Escalation Vulnerability	2021-03-24T16:00:00+00:00	2021-04-13T19:22:50+00:00
cisco-sa-XE-FSM-Yj8qJbJc	Cisco IOS and IOS XE Software Privilege Escalation Vulnerability	2021-03-24T16:00:00+00:00	2021-04-13T19:22:50+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2022-0480	A flaw was found in the filelock_init in fs/locks.c function in the Linux kernel. This issue can lead to host memory exhaustion due to memcg not limiting the number of Portable Operating System Interface (POSIX) file locks.	2022-08-02T00:00:00.000Z	2025-10-01T23:11:13.000Z
msrc_cve-2022-0216	A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via the lsi_do_msgout function. This flaw allows a malicious privileged user within the guest to crash the QEMU process on the host, resulting in a denial of service.	2022-08-02T00:00:00.000Z	2025-10-01T23:11:13.000Z
msrc_cve-2021-44038	An issue was discovered in Quagga through 1.2.4. Unsafe chown/chmod operations in the suggested spec file allow users (with control of the non-root-owned directory /etc/quagga) to escalate their privileges to root upon package installation or update.	2021-11-02T00:00:00.000Z	2025-10-01T23:11:12.000Z
msrc_cve-2021-41186	ReDoS vulnerability in parser_apache2	2021-10-02T00:00:00.000Z	2025-10-01T23:11:12.000Z
msrc_cve-2021-3996	A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (like /tmp) or mounted in a world-writable directory. An attacker may use this flaw to cause a denial of service to applications that use the affected filesystems.	2022-08-02T00:00:00.000Z	2025-10-01T23:11:12.000Z
msrc_cve-2021-3995	A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local attacker to unmount FUSE filesystems that belong to certain other users who have a UID that is a prefix of the UID of the attacker in its string form. An attacker may use this flaw to cause a denial of service to applications that use the affected filesystems.	2022-08-02T00:00:00.000Z	2025-10-01T23:11:12.000Z
msrc_cve-2021-3773	A flaw in netfilter could allow a network-connected attacker to infer openvpn connection endpoint information for further use in traditional network attacks.	2022-02-02T00:00:00.000Z	2025-10-01T23:11:11.000Z
msrc_cve-2021-37714	Crafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptions	2021-08-02T00:00:00.000Z	2025-10-01T23:11:11.000Z
msrc_cve-2021-3716	A flaw was found in nbdkit due to to improperly caching plaintext state across the STARTTLS encryption boundary. A MitM attacker could use this flaw to inject a plaintext NBD_OPT_STRUCTURED_REPLY before proxying everything else a client sends to the server, potentially leading the client to terminate the NBD session. The highest threat from this vulnerability is to system availability.	2022-03-02T00:00:00.000Z	2025-10-01T23:11:11.000Z
msrc_cve-2021-3670	MaxQueryDuration not honoured in Samba AD DC LDAP	2022-08-02T00:00:00.000Z	2025-10-01T23:11:11.000Z
msrc_cve-2021-3634	A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secret_hash and the other session_id. Initially, both of them are the same, but after key re-exchange, previous session_id is kept and used as an input to new secret_hash. Historically, both of these buffers had shared length variable, which worked as long as these buffers were same. But the key re-exchange operation can also change the key exchange method, which can be based on hash of different size, eventually creating "secret_hash" of different size than the session_id has. This becomes an issue when the session_id memory is zeroed or when it is used again during second key re-exchange.	2021-08-02T00:00:00.000Z	2025-10-01T23:11:10.000Z
msrc_cve-2021-3571	A flaw was found in the ptp4l program of the linuxptp package. When ptp4l is operating on a little-endian architecture as a PTP transparent clock, a remote attacker could send a crafted one-step sync message to cause an information leak or crash. The highest threat from this vulnerability is to data confidentiality and system availability. This flaw affects linuxptp versions before 3.1.1 and before 2.0.1.	2021-07-02T00:00:00.000Z	2025-10-01T23:11:10.000Z
msrc_cve-2021-3544	Several memory leaks were found in the virtio vhost-user GPU device (vhost-user-gpu) of QEMU in versions up to and including 6.0. They exist in contrib/vhost-user-gpu/vhost-user-gpu.c and contrib/vhost-user-gpu/virgl.c due to improper release of memory (i.e., free) after effective lifetime.	2021-06-02T00:00:00.000Z	2025-10-01T23:11:10.000Z
msrc_cve-2021-3507	A heap buffer overflow was found in the floppy disk emulator of QEMU up to 6.0.0 (including). It could occur in fdctrl_transfer_handler() in hw/block/fdc.c while processing DMA read data transfers from the floppy drive to the guest system. A privileged guest user could use this flaw to crash the QEMU process on the host resulting in DoS scenario, or potential information leakage from the host memory.	2021-05-02T00:00:00.000Z	2025-10-01T23:11:10.000Z
msrc_cve-2021-28543	Varnish varnish-modules before 0.17.1 allows remote attackers to cause a denial of service (daemon restart) in some configurations. This does not affect organizations that only install the Varnish Cache product; however, it is common to install both Varnish Cache and varnish-modules. Specifically, an assertion failure or NULL pointer dereference can be triggered in Varnish Cache through the varnish-modules header.append() and header.copy() functions. For some Varnish Configuration Language (VCL) files, this gives remote clients an opportunity to cause a Varnish Cache restart. A restart reduces overall availability and performance due to an increased number of cache misses, and may cause higher load on backend servers.	2021-03-02T00:00:00.000Z	2025-10-01T23:11:09.000Z
msrc_cve-2021-27367	Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal.	2021-02-02T00:00:00.000Z	2025-10-01T23:11:09.000Z
msrc_cve-2021-25741	Symlink Exchange Can Allow Host Filesystem Access	2021-09-02T00:00:00.000Z	2025-10-01T23:11:09.000Z
msrc_cve-2021-21708	UAF due to php_filter_float() failing	2022-02-02T00:00:00.000Z	2025-10-01T23:11:08.000Z
msrc_cve-2021-21707	Special characters break path parsing in XML functions	2021-11-02T00:00:00.000Z	2025-10-01T23:11:08.000Z
msrc_cve-2021-21705	Incorrect URL validation in FILTER_VALIDATE_URL	2021-10-02T00:00:00.000Z	2025-10-01T23:11:08.000Z
msrc_cve-2021-21704	Multiple vulnerabilities in Firebird client extension	2021-10-02T00:00:00.000Z	2025-10-01T23:11:08.000Z
msrc_cve-2021-21703	PHP-FPM memory access in root process leading to privilege escalation	2021-10-02T00:00:00.000Z	2025-10-01T23:11:07.000Z
msrc_cve-2021-21702	Null Dereference in SoapClient	2021-02-02T00:00:00.000Z	2025-10-01T23:11:07.000Z
msrc_cve-2020-8561	Webhook redirect in kube-apiserver	2021-09-02T00:00:00.000Z	2025-10-01T23:11:07.000Z
msrc_cve-2020-7071	FILTER_VALIDATE_URL accepts URLs with invalid userinfo	2021-02-02T00:00:00.000Z	2025-10-01T23:11:07.000Z
msrc_cve-2020-4041	The filename of uploaded files vulnerable to stored XSS in Bolt CMS	2020-06-02T00:00:00.000Z	2025-10-01T23:11:07.000Z
msrc_cve-2020-4040	CSRF issue on preview pages in Bolt CMS	2020-06-02T00:00:00.000Z	2025-10-01T23:11:06.000Z
msrc_cve-2020-35504	A NULL pointer dereference flaw was found in the SCSI emulation support of QEMU in versions before 6.0.0. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.	2021-05-02T00:00:00.000Z	2025-10-01T23:11:06.000Z
msrc_cve-2020-35503	A NULL pointer dereference flaw was found in the megasas-gen2 SCSI host bus adapter emulation of QEMU in versions before and including 6.0. This issue occurs in the megasas_command_cancelled() callback function while dropping a SCSI request. This flaw allows a privileged guest user to crash the QEMU process on the host, resulting in a denial of service. The highest threat from this vulnerability is to system availability.	2021-06-02T00:00:00.000Z	2025-10-01T23:11:06.000Z
msrc_cve-2020-28925	Bolt before 3.7.2 does not restrict filter options in a Request in the Twig context, and is therefore inconsistent with the "How to Harden Your PHP for Better Security" guidance.	2020-12-02T00:00:00.000Z	2025-10-01T23:11:05.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2024:14347-1	apr-devel-1.7.5-1.1 on GA media	2024-09-19T00:00:00Z	2024-09-19T00:00:00Z
opensuse-su-2024:14346-1	python311-3.11.9-7.1 on GA media	2024-09-18T00:00:00Z	2024-09-18T00:00:00Z
opensuse-su-2024:14345-1	python310-3.10.15-1.1 on GA media	2024-09-18T00:00:00Z	2024-09-18T00:00:00Z
opensuse-su-2024:14344-1	ffmpeg-6-6.1.1-9.1 on GA media	2024-09-18T00:00:00Z	2024-09-18T00:00:00Z
opensuse-su-2024:14343-1	ffmpeg-4-4.4.4-14.1 on GA media	2024-09-18T00:00:00Z	2024-09-18T00:00:00Z
opensuse-su-2024:14342-1	assimp-devel-5.4.3-2.1 on GA media	2024-09-18T00:00:00Z	2024-09-18T00:00:00Z
opensuse-su-2024:0305-1	Security update for gstreamer-plugins-bad	2024-09-17T08:54:10Z	2024-09-17T08:54:10Z
opensuse-su-2024:14341-1	libwireshark18-4.4.0-2.1 on GA media	2024-09-17T00:00:00Z	2024-09-17T00:00:00Z
opensuse-su-2024:14340-1	python38-3.8.20-1.1 on GA media	2024-09-17T00:00:00Z	2024-09-17T00:00:00Z
opensuse-su-2024:14339-1	ffmpeg-5-5.1.4-13.1 on GA media	2024-09-17T00:00:00Z	2024-09-17T00:00:00Z
opensuse-su-2024:0304-1	Security update for htmldoc	2024-09-16T14:01:45Z	2024-09-16T14:01:45Z
opensuse-su-2024:0303-1	Security update for htmldoc	2024-09-16T14:01:42Z	2024-09-16T14:01:42Z
opensuse-su-2024:0302-1	Security update for chromium	2024-09-16T08:29:07Z	2024-09-16T08:29:07Z
opensuse-su-2024:14338-1	wpa_supplicant-2.11-1.1 on GA media	2024-09-13T00:00:00Z	2024-09-13T00:00:00Z
opensuse-su-2024:14337-1	ucode-intel-20240910-1.1 on GA media	2024-09-13T00:00:00Z	2024-09-13T00:00:00Z
opensuse-su-2024:14336-1	ovmf-202405-1.1 on GA media	2024-09-13T00:00:00Z	2024-09-13T00:00:00Z
opensuse-su-2024:14335-1	chromedriver-128.0.6613.137-1.1 on GA media	2024-09-13T00:00:00Z	2024-09-13T00:00:00Z
opensuse-su-2024:14334-1	grype-0.80.1-1.1 on GA media	2024-09-12T00:00:00Z	2024-09-12T00:00:00Z
opensuse-su-2024:14333-1	curl-8.10.0-1.1 on GA media	2024-09-12T00:00:00Z	2024-09-12T00:00:00Z
opensuse-su-2024:0300-1	Security update for ntpd-rs	2024-09-11T10:01:59Z	2024-09-11T10:01:59Z
opensuse-su-2024:14332-1	keepalived-2.3.1+git59.b6681f98-1.1 on GA media	2024-09-11T00:00:00Z	2024-09-11T00:00:00Z
opensuse-su-2024:14331-1	python39-3.9.20-1.1 on GA media	2024-09-10T00:00:00Z	2024-09-10T00:00:00Z
opensuse-su-2024:14330-1	forgejo-8.0.3-1.1 on GA media	2024-09-10T00:00:00Z	2024-09-10T00:00:00Z
opensuse-su-2024:14329-1	assimp-devel-5.4.3-1.1 on GA media	2024-09-10T00:00:00Z	2024-09-10T00:00:00Z
opensuse-su-2024:0294-1	Security update for kanidm	2024-09-09T12:04:21Z	2024-09-09T12:04:21Z
opensuse-su-2024:14328-1	x3270-4.3-4.1 on GA media	2024-09-09T00:00:00Z	2024-09-09T00:00:00Z
opensuse-su-2024:14327-1	python39-3.9.19-8.1 on GA media	2024-09-09T00:00:00Z	2024-09-09T00:00:00Z
opensuse-su-2024:14326-1	python313-3.13.0~rc2-1.1 on GA media	2024-09-09T00:00:00Z	2024-09-09T00:00:00Z
opensuse-su-2024:14325-1	MozillaThunderbird-115.15.0-1.1 on GA media	2024-09-09T00:00:00Z	2024-09-09T00:00:00Z
opensuse-su-2024:14324-1	go1.23-1.23.1-1.1 on GA media	2024-09-08T00:00:00Z	2024-09-08T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
bit-parse-2022-41878	Parse Server Prototype pollution and Injection via Cloud Code Webhooks or Cloud Code Triggers	2024-03-06T11:01:23.072Z	2025-05-20T10:02:07.006Z
bit-parse-2022-39396	Parse Server vulnerable to Remote Code Execution via prototype pollution in MongoDB BSON parser	2024-03-06T11:01:33.483Z	2025-05-20T10:02:07.006Z
bit-parse-2022-39313	Parse Server crashes when receiving file download request with invalid byte range	2024-03-06T11:01:42.508Z	2025-05-20T10:02:07.006Z
bit-parse-2022-39231	Parse Server subject to Improper Authentication allowing Auth adapter app ID validation to be circumvented	2024-03-06T11:01:53.405Z	2025-05-20T10:02:07.006Z
bit-parse-2022-39225	Parse Server subject to Incorrect Resource Transfer Between Spheres	2024-03-06T11:02:05.285Z	2025-05-20T10:02:07.006Z
bit-parse-2022-36079	Parse Server vulnerable to brute force guessing of user sensitive data via search patterns	2024-03-06T11:02:16.472Z	2025-05-20T10:02:07.006Z
bit-parse-2022-31112	Protected fields exposed via LiveQuery in parse-server	2024-03-06T11:02:26.390Z	2025-05-20T10:02:07.006Z
bit-parse-2022-31089	Invalid file request can crashe parse-server	2024-03-06T11:02:37.484Z	2025-05-20T10:02:07.006Z
bit-parse-2022-31083	Authentication bypass in Parse Server Apple Game Center auth adapter	2024-03-06T11:02:46.902Z	2025-05-20T10:02:07.006Z
bit-parse-2022-24901	Authentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter	2024-03-06T11:02:56.971Z	2025-05-20T10:02:07.006Z
bit-parse-2022-24760	Command Injection in Parse server	2024-03-06T11:03:07.513Z	2025-05-20T10:02:07.006Z
bit-parse-2021-41109	LiveQuery publishes user session tokens	2024-03-06T11:03:28.771Z	2025-05-20T10:02:07.006Z
bit-parse-2021-39187	Crash server with query parameter	2024-03-06T11:03:39.683Z	2025-05-20T10:02:07.006Z
bit-parse-2021-39138	New anonymous user session acts as if it's created with password	2024-03-06T11:03:49.289Z	2025-05-20T10:02:07.006Z
bit-parse-2020-5251	Information disclosure in parse-server	2024-03-06T11:04:01.101Z	2025-05-20T10:02:07.006Z
bit-parse-2020-26288	Parse Server stores password in plain text	2024-03-06T11:04:12.712Z	2025-05-20T10:02:07.006Z
bit-parse-2020-15270	Improper session expiration in Parse Server	2024-03-06T11:04:25.404Z	2025-05-20T10:02:07.006Z
bit-oras-2021-21272	zip slip in ORAS	2024-03-06T11:00:05.176Z	2025-05-20T10:02:07.006Z
bit-node-2023-23936	CRLF Injection in Nodejs ‘undici’ via host	2024-03-06T11:01:51.693Z	2025-05-20T10:02:07.006Z
bit-node-2022-0778	Infinite loop in BN_mod_sqrt() reachable when parsing certificates	2024-03-06T11:04:37.785Z	2025-05-20T10:02:07.006Z
bit-node-2021-4044	Invalid handling of X509_verify_cert() internal errors in libssl	2024-03-06T11:05:16.488Z	2025-05-20T10:02:07.006Z
bit-node-2021-3450	CA certificate check bypass with X509_V_FLAG_X509_STRICT	2024-03-06T11:05:36.509Z	2025-05-20T10:02:07.006Z
bit-node-2021-3449	NULL pointer deref in signature_algorithms processing	2024-03-06T11:05:44.892Z	2025-05-20T10:02:07.006Z
bit-node-2021-23840	Integer overflow in CipherUpdate	2024-03-06T11:05:55.584Z	2025-05-20T10:02:07.006Z
bit-node-2020-1971	EDIPARTYNAME NULL pointer dereference	2024-03-06T11:08:41.389Z	2025-05-20T10:02:07.006Z
bit-node-2020-11080	Denial of service in nghttp2	2024-03-06T11:08:52.092Z	2025-05-20T10:02:07.006Z
bit-nginx-2024-35200	NGINX HTTP/3 QUIC vulnerability	2024-06-04T09:49:17.615Z	2025-05-20T10:02:07.006Z
bit-nginx-2024-34161	NGINX HTTP/3 QUIC vulnerability	2024-06-04T09:49:32.908Z	2025-05-20T10:02:07.006Z
bit-nginx-2024-32760	NGINX HTTP/3 QUIC vulnerability	2024-06-04T09:49:48.003Z	2025-05-20T10:02:07.006Z
bit-nginx-2024-31079	NGINX HTTP/3 QUIC vulnerability	2024-06-04T09:50:02.910Z	2025-05-20T10:02:07.006Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-200110-0169	OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers t…	2024-05-29T08:55:04.788000Z
var-200411-0123	SQL injection vulnerability in the "public message" capability (public_message) for Php-N…	2024-05-28T18:32:13.773000Z
var-200411-0029	SQL injection vulnerability in PHP-Nuke 6.9 and earlier, and possibly 7.x, allows remote …	2024-05-28T18:21:34.508000Z
var-200403-0063	Cross-site scripting (XSS) vulnerability in the Management Service for Symantec Gateway S…	2024-05-28T18:21:34.719000Z
var-200403-0061	Symantec FireWall/VPN Appliance model 200 records a cleartext password for the password a…	2024-05-28T18:17:17.844000Z
var-200403-0072	FreeBSD 5.1 and earlier, and Mac OS X before 10.3.4, allows remote attackers to cause a d…	2024-05-28T18:13:33.411000Z
var-200411-0122	Cross-site scripting (XSS) vulnerability in modules.php for Php-Nuke 6.x-7.1.0 allows rem…	2024-05-28T18:12:38.272000Z
var-200609-0988	The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.…	2024-05-27T22:18:41.589000Z
var-202405-0216	A vulnerability has been identified in Simcenter Nastran 2306 (All versions), Simcenter N…	2024-05-25T23:13:11.966000Z
var-202405-1812	TP-LINK AC1350 is a router from China's TP-LINK company. TP-LINK AC1350 has a security v…	2024-05-25T23:08:56.284000Z
var-202403-1720	A command injection vulnerability exists in the cgibin binary in DIR-845L router firmware…	2024-05-25T23:08:56.670000Z
var-202405-0205	A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affecte…	2024-05-25T23:06:15.330000Z
var-202405-0204	A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affecte…	2024-05-25T23:06:15.348000Z
var-202405-0203	A vulnerability has been identified in SIMATIC CN 4100 (All versions < V3.0). The affecte…	2024-05-25T23:06:15.364000Z
var-200609-1114	Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.…	2024-05-25T22:24:46.235000Z
var-202304-1903	FINS (Factory Interface Network Service) is a message communication protocol, which is de…	2024-05-25T20:34:12.982000Z
var-200609-0998	OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows attackers t…	2024-05-25T20:18:12.504000Z
var-202404-2093	A vulnerability classified as critical has been found in Tenda i22 1.0.0.3(4687). This af…	2024-05-25T01:45:36.710000Z
var-202403-2416	A improper neutralization of special elements used in an sql command ('sql injection') in…	2024-05-25T01:44:07.145000Z
var-202404-0214	A vulnerability classified as critical was found in Tenda TX9 22.03.02.10. This vulnerabi…	2024-05-25T01:42:29.301000Z
var-200402-0018	Multiple vulnerabilities in the H.323 protocol implementation for Nortel Networks Busines…	2024-05-25T01:33:23.856000Z
var-202404-0347	A vulnerability, which was classified as critical, has been found in Tenda TX9 22.03.02.1…	2024-05-25T01:29:54.322000Z
var-202404-0242	A vulnerability classified as critical has been found in Tenda TX9 22.03.02.10. This affe…	2024-05-25T01:29:54.341000Z
var-202403-2869	DIR-845L router <= v1.01KRb03 has an Unauthenticated remote code execution vulnerability …	2024-05-25T01:29:54.482000Z
var-202401-1842	IBM Security Access Manager Appliance (IBM Security Verify Access Appliance 10.0.0.0 thro…	2024-05-25T01:24:49.002000Z
var-202306-1994	Improper Limitation of a Pathname to a Restricted Directory vulnerability in NEC Corporat…	2024-05-25T01:18:49.560000Z
var-202306-1993	Improper Neutralization of Special Elements used in an OS Command vulnerability in NEC Co…	2024-05-25T01:18:49.534000Z
var-202306-1992	Improper Limitation of a Pathname to a Restricted Directory vulnerability in NEC Corporat…	2024-05-25T01:18:49.612000Z
var-202306-1991	Improper Neutralization of Input During Web Page Generation vulnerability in NEC Corporat…	2024-05-25T01:18:49.586000Z
var-200609-1209	Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.…	2024-05-24T22:28:34.807000Z

ID	Description	Published	Updated
jvndb-2015-000301	BBS X102 vulnerable to cross-site scripting	2015-09-03T15:00+09:00	2015-09-09T14:02+09:00
jvndb-2015-000128	OpenDocMan vulnerable to cross-site scripting	2015-09-04T18:13+09:00	2015-09-09T14:02+09:00
jvndb-2015-000127	ELPhoneBtnV6 ActiveX control vulnerable to buffer overflow	2015-09-07T13:38+09:00	2015-09-09T14:02+09:00
jvndb-2015-000123	NScripter vulnerable to buffer overflow	2015-09-02T15:46+09:00	2015-09-09T14:02+09:00
jvndb-2015-000122	desknet's NEO vulnerable to directory traversal	2015-09-01T12:36+09:00	2015-09-09T14:02+09:00
jvndb-2015-000121	Twit BBS vulnerable to cross-site scripting	2015-09-01T14:18+09:00	2015-09-09T14:02+09:00
jvndb-2015-000119	File Encryption Software "ED" where encrypted data may be easier to decipher when files of small size are encrypted	2015-08-27T15:03+09:00	2015-09-02T17:57+09:00
jvndb-2015-000117	Multiple I-O DATA LAN routers vulnerable in UPnP functionality	2015-08-18T15:21+09:00	2015-08-28T17:29+09:00
jvndb-2015-000118	Apache Tapestry deserializes untrusted data	2015-08-20T15:53+09:00	2015-08-26T17:51+09:00
jvndb-2015-000113	Photo Gallery CMS for PC, smartphone and feature phone (Free) vulnerable to cross-site scripting	2015-08-12T15:13+09:00	2015-08-26T17:38+09:00
jvndb-2015-000114	Photo Gallery CMS for PC, smartphone and feature phone (Free) vulnerable to cross-site request forgery	2015-08-12T15:13+09:00	2015-08-26T17:28+09:00
jvndb-2015-000009	NP-BBRM vulnerable in UPnP functionality	2015-01-26T13:42+09:00	2015-08-18T14:36+09:00
jvndb-2015-000112	Microsoft Office discloses a file path of a local file	2015-08-12T15:13+09:00	2015-08-12T15:13+09:00
jvndb-2013-003469	Apache Struts vulnerable to remote command execution	2013-09-06T14:12+09:00	2015-08-11T15:19+09:00
jvndb-2015-000110	Yodobashi App for Android vulnerable to arbitrary Java method execution	2015-08-07T13:50+09:00	2015-08-11T12:22+09:00
jvndb-2014-000107	SLFileManager for Android vulnerable to directory traversal	2014-09-25T14:52+09:00	2015-07-31T16:30+09:00
jvndb-2015-000109	yoyaku_v41 vulnerable to OS command injection	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000108	yoyaku_v41 vulnerable to authentication bypass	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000107	yoyaku_v41 vulnerable to arbitrary file creation	2015-07-29T14:58+09:00	2015-07-30T15:14+09:00
jvndb-2015-000106	Gazou BBS plus vulnerability in file upload processing	2015-07-28T13:47+09:00	2015-07-30T15:14+09:00
jvndb-2015-000103	Welcart vulnerable to cross-site scripting	2015-07-24T14:33+09:00	2015-07-28T17:51+09:00
jvndb-2015-000104	Research Artisan Lite vulnerable to cross-site scripting	2015-07-24T14:36+09:00	2015-07-28T17:29+09:00
jvndb-2015-000105	Research Artisan Lite does not properly perform authentication	2015-07-24T14:46+09:00	2015-07-28T17:22+09:00
jvndb-2015-000098	acmailer vulnerable to directory traversal	2015-07-15T15:53+09:00	2015-07-27T15:12+09:00
jvndb-2015-000099	Thetis vulnerable to SQL injection	2015-07-15T15:54+09:00	2015-07-27T15:07+09:00
jvndb-2014-007612	Welcart vulnerable to SQL injection	2015-07-24T14:52+09:00	2015-07-24T14:52+09:00
jvndb-2015-000088	Ruby on Rails library Paperclip vulnerable to cross-site scripting	2015-06-18T14:14+09:00	2015-07-14T18:15+09:00
jvndb-2015-000097	Simple Oekaki BBS vulnerability where arbitrary files may be deleted	2015-07-10T13:57+09:00	2015-07-14T18:11+09:00
jvndb-2015-000096	Simple Oekaki BBS vulnerable to cross-site scripting	2015-07-10T13:57+09:00	2015-07-14T18:09+09:00
jvndb-2015-000094	Cacti vulnerable to cross-site scripting	2015-07-09T14:41+09:00	2015-07-14T18:03+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:02600-1	Security update for nvidia-open-driver-G06-signed	2025-08-01T20:15:45Z	2025-08-01T20:15:45Z
suse-su-2025:02350-1	Security update for kubernetes1.28	2025-08-01T16:07:53Z	2025-08-01T16:07:53Z
suse-su-2025:02350-2	Security update for kubernetes1.28	2025-08-01T16:07:50Z	2025-08-01T16:07:50Z
suse-su-2025:02597-1	Security update for python310	2025-08-01T15:14:29Z	2025-08-01T15:14:29Z
suse-su-2025:02595-1	Security update for gnutls	2025-08-01T15:14:01Z	2025-08-01T15:14:01Z
suse-su-2025:02594-1	Security update for valkey	2025-08-01T15:13:19Z	2025-08-01T15:13:19Z
suse-su-2025:02593-1	Security update for valkey	2025-08-01T15:13:06Z	2025-08-01T15:13:06Z
suse-su-2025:02592-1	Security update for cosign	2025-08-01T14:44:01Z	2025-08-01T14:44:01Z
suse-su-2025:02589-1	Security update for gnutls	2025-08-01T13:06:31Z	2025-08-01T13:06:31Z
suse-su-2025:02588-1	Security update for the Linux Kernel	2025-08-01T12:35:26Z	2025-08-01T12:35:26Z
suse-su-2025:20539-1	Security update for python311	2025-08-01T10:21:35Z	2025-08-01T10:21:35Z
suse-su-2025:20530-1	Security update for opensc	2025-08-01T09:26:53Z	2025-08-01T09:26:53Z
suse-su-2025:02464-2	Security update for libgcrypt	2025-08-01T09:17:59Z	2025-08-01T09:17:59Z
suse-su-2025:02586-1	Security update for rav1e	2025-08-01T08:49:06Z	2025-08-01T08:49:06Z
suse-su-2025:20543-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20542-1	Security update for kernel-livepatch-MICRO-6-0_Update_5	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20541-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20529-1	Security update for kernel-livepatch-MICRO-6-0_Update_6	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20528-1	Security update for kernel-livepatch-MICRO-6-0_Update_5	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20527-1	Security update for kernel-livepatch-MICRO-6-0_Update_4	2025-08-01T08:37:43Z	2025-08-01T08:37:43Z
suse-su-2025:20540-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-08-01T08:37:39Z	2025-08-01T08:37:39Z
suse-su-2025:20526-1	Security update for kernel-livepatch-MICRO-6-0_Update_3	2025-08-01T08:37:39Z	2025-08-01T08:37:39Z
suse-su-2025:20525-1	Security update for kernel-livepatch-MICRO-6-0_Update_2	2025-08-01T08:37:39Z	2025-08-01T08:37:39Z
suse-su-2025:20548-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-08-01T07:30:37Z	2025-08-01T07:30:37Z
suse-su-2025:20524-1	Security update for kernel-livepatch-MICRO-6-0-RT_Update_6	2025-08-01T07:30:37Z	2025-08-01T07:30:37Z
suse-su-2025:02583-1	Security update for gnutls	2025-07-31T16:04:45Z	2025-07-31T16:04:45Z
suse-su-2025:02536-1	Security update for boost	2025-07-31T14:44:56Z	2025-07-31T14:44:56Z
suse-su-2025:02581-1	Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container	2025-07-31T12:34:43Z	2025-07-31T12:34:43Z
suse-su-2025:02579-1	Security update for redis	2025-07-31T11:38:07Z	2025-07-31T11:38:07Z
suse-su-2025:02575-1	Security update for nvidia-open-driver-G06-signed	2025-07-31T10:34:38Z	2025-07-31T10:34:38Z

ID	Description	Published	Updated
cnvd-2025-29078	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4信息泄露漏洞（CNVD-2025-29078）	2025-11-05	2025-11-20
cnvd-2025-29077	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4信息泄露漏洞	2025-11-05	2025-11-20
cnvd-2025-29076	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞（CNVD-2025-29076）	2025-11-05	2025-11-20
cnvd-2025-29075	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞（CNVD-2025-29075）	2025-11-05	2025-11-20
cnvd-2025-29074	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4拒绝服务漏洞（CNVD-2025-29074）	2025-11-05	2025-11-20
cnvd-2025-29073	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4拒绝服务漏洞（CNVD-2025-29073）	2025-11-05	2025-11-20
cnvd-2025-29072	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞（CNVD-2025-29072）	2025-11-05	2025-11-20
cnvd-2025-29071	Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4存在未明漏洞（CNVD-2025-29071）	2025-11-05	2025-11-20
cnvd-2025-28950	Simple Cafe Ordering System portal.php文件SQL注入漏洞	2025-08-20	2025-11-20
cnvd-2025-28949	Simple Cafe Ordering System login.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28948	Simple Cafe Ordering System add_to_cart文件跨站脚本漏洞	2025-11-18	2025-11-20
cnvd-2025-28947	Simple Cafe Ordering System addmem.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28946	Student Information System searchquery.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28944	Student Information System /index.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28943	Student Information System register.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28942	Student Information System /editprofile.php文件SQL注入漏洞	2025-11-18	2025-11-20
cnvd-2025-28941	Student Information System register.php跨站脚本漏洞	2025-11-18	2025-11-20
cnvd-2025-28940	Student Information System editprofile.php文件跨站脚本漏洞	2025-11-18	2025-11-20
cnvd-2025-28838	WordPress Payments Braintree For WooCommerce plugin授权绕过漏洞	2025-11-14	2025-11-20
cnvd-2025-28837	WordPress Easy Email Subscription plugin跨站脚本漏洞	2025-11-14	2025-11-20
cnvd-2025-28836	WordPress Asgaros Forum plugin跨站请求伪造漏洞	2025-11-14	2025-11-20
cnvd-2025-28835	WordPress Theater for WordPress plugin缺少授权漏洞	2025-11-18	2025-11-20
cnvd-2025-28834	WordPress Survey Maker plugin缺少能力检查漏洞	2025-11-18	2025-11-20
cnvd-2025-28833	WordPress Survey Maker plugin缺少授权漏洞	2025-11-18	2025-11-20
cnvd-2025-28832	WordPress Survey Maker plugin未授权访问漏洞	2025-11-18	2025-11-20
cnvd-2025-28831	WordPress SureForms plugin信息泄露漏洞	2025-11-18	2025-11-20
cnvd-2025-28830	WordPress Save as PDF Button plugin跨站脚本漏洞	2025-11-18	2025-11-20
cnvd-2025-28829	WordPress quicq plugin缺少能力检查漏洞	2025-11-18	2025-11-20
cnvd-2025-28828	WordPress Qi Blocks plugin跨站脚本漏洞	2025-11-18	2025-11-20
cnvd-2025-28827	WordPress Popup addon for Ninja Forms plugin跨站脚本漏洞	2025-11-18	2025-11-20

ID	Description	Published	Updated
certfr-2025-avi-0259	Multiples vulnérabilités dans les produits Fortinet	2025-04-01T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-AVI-0261	Multiples vulnérabilités dans Microsoft Azure	2025-04-01T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-AVI-0260	Multiples vulnérabilités dans Zabbix	2025-04-01T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-AVI-0259	Multiples vulnérabilités dans les produits Fortinet	2025-04-01T00:00:00.000000	2025-04-01T00:00:00.000000
certfr-2025-avi-0257	Vulnérabilité dans Synology Mail Server	2025-03-31T00:00:00.000000	2025-03-31T00:00:00.000000
certfr-2025-avi-0256	Multiples vulnérabilités dans Broadcom VMware Tanzu Greenplum	2025-03-31T00:00:00.000000	2025-03-31T00:00:00.000000
CERTFR-2025-AVI-0257	Vulnérabilité dans Synology Mail Server	2025-03-31T00:00:00.000000	2025-03-31T00:00:00.000000
CERTFR-2025-AVI-0256	Multiples vulnérabilités dans Broadcom VMware Tanzu Greenplum	2025-03-31T00:00:00.000000	2025-03-31T00:00:00.000000
certfr-2025-avi-0255	Multiples vulnérabilités dans les produits IBM	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0254	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0253	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0252	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0251	Vulnérabilité dans Mozilla Firefox	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0250	Multiples vulnérabilités dans StormShield Network Security	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0255	Multiples vulnérabilités dans les produits IBM	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0254	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0253	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0252	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0251	Vulnérabilité dans Mozilla Firefox	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
CERTFR-2025-AVI-0250	Multiples vulnérabilités dans StormShield Network Security	2025-03-28T00:00:00.000000	2025-03-28T00:00:00.000000
certfr-2025-avi-0249	Vulnérabilité dans StormShield Network Security	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0248	Multiples vulnérabilités dans GitLab	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0247	Vulnérabilité dans Microsoft Edge	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0246	Vulnérabilité dans Mitel MiContact Center Business	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0245	Multiples vulnérabilités dans les produits Splunk	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0244	Vulnérabilité dans Exim	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
certfr-2025-avi-0243	Multiples vulnérabilités dans VMware Tanzu Gemfire	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
CERTFR-2025-AVI-0249	Vulnérabilité dans StormShield Network Security	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
CERTFR-2025-AVI-0248	Multiples vulnérabilités dans GitLab	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000
CERTFR-2025-AVI-0247	Vulnérabilité dans Microsoft Edge	2025-03-27T00:00:00.000000	2025-03-27T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated