Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2025-11187
N/A
Improper validation of PBMAC1 parameters in PKCS#12 MA… OpenSSL
 OpenSSL
 2026-01-27T15:59:41.681Z 2026-01-29T14:48:29.161Z
CVE-2026-1587
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
Open5GS SGWC s11-handler.c sgwc_s11_handle_modify_bear… n/a
 Open5GS
 2026-01-29T12:32:08.109Z 2026-01-29T14:46:26.399Z
CVE-2025-28162
5.5 (3.1)
Buffer Overflow vulnerability in libpng 1.6.43-1.… n/a
 n/a
 2026-01-27T00:00:00.000Z 2026-01-29T14:45:03.126Z
CVE-2026-1588
5.1 (4.0)
2.7 (3.1)
2.7 (3.0)
jishenghua jshERP installByPath install path traversal jishenghua
 jshERP
 2026-01-29T13:32:06.240Z 2026-01-29T14:29:46.680Z
CVE-2026-24769
8.5 (4.0)
NocoDB Vulnerable to Stored Cross-Site Scripting via S… nocodb
 nocodb
 2026-01-28T20:36:23.859Z 2026-01-29T14:02:12.813Z
CVE-2022-50898
8.6 (4.0)
8.8 (3.1)
NanoCMS 0.4 - Remote Code Execution (RCE) (Authenticated) kalyan02
 NanoCMS
 2026-01-13T22:51:44.934Z 2026-01-29T13:43:59.758Z
CVE-2025-41084
5.1 (4.0)
Stored Cross-Site Scripting (XSS) in Sesame web application SESAME LABS S.L
 Sesame
 2026-01-20T09:14:40.629Z 2026-01-29T11:33:18.995Z
CVE-2024-4447
9.9 (3.1)
In the System → Maintenance tool, the Logged User… dotCMS
 dotCMS core
 2024-07-26T02:02:32.506Z 2026-01-29T10:25:19.929Z
CVE-2026-24858
9.4 (3.1)
An Authentication Bypass Using an Alternate Path … Fortinet
 FortiProxy
 2026-01-27T19:18:23.591Z 2026-01-29T09:36:15.433Z
CVE-2025-33220
7.8 (3.1)
NVIDIA vGPU software contains a vulnerability in … NVIDIA
 GeForce
 2026-01-28T17:48:40.752Z 2026-01-29T04:55:53.558Z
CVE-2025-33219
7.8 (3.1)
NVIDIA Display Driver for Linux contains a vulner… NVIDIA
 GeForce
 2026-01-28T17:48:07.106Z 2026-01-29T04:55:52.440Z
CVE-2025-33218
7.8 (3.1)
NVIDIA GPU Display Driver for Windows contains a … NVIDIA
 GeForce
 2026-01-28T17:47:25.322Z 2026-01-29T04:55:51.373Z
CVE-2025-33217
7.8 (3.1)
NVIDIA Display Driver for Windows contains a vuln… NVIDIA
 GeForce
 2026-01-28T17:46:41.741Z 2026-01-29T04:55:50.215Z
CVE-2025-13918
6.7 (3.1)
Elevation of Privileges in Symantec Endpoint Protectio… Broadcom
 Symantec Endpoint Protection Windows Client
 2026-01-28T16:35:43.684Z 2026-01-29T04:55:49.047Z
CVE-2025-40553
9.8 (3.1)
SolarWinds Web Help Desk Deserialization of Untrusted … SolarWinds
 Web Help Desk
 2026-01-28T07:35:41.825Z 2026-01-29T04:55:44.341Z
CVE-2025-40554
9.8 (3.1)
SolarWinds Web Help Desk Authentication Bypass Vulnerability SolarWinds
 Web Help Desk
 2026-01-28T07:36:50.177Z 2026-01-29T04:55:43.242Z
CVE-2025-67616
8.1 (3.1)
WordPress Mella theme <= 1.2.29 - Local File Inclusion… BZOTheme
 Mella
 2026-01-22T16:51:51.660Z 2026-01-29T01:15:42.088Z
CVE-2025-67617
9.8 (3.1)
WordPress Consult Aid theme <= 1.4.3 - PHP Object Inje… themeton
 Consult Aid
 2026-01-22T16:51:51.873Z 2026-01-29T01:14:09.745Z
CVE-2025-67615
8.1 (3.1)
WordPress Myour theme <= 1.5.1 - Local File Inclusion … bslthemes
 Myour
 2026-01-22T16:51:51.412Z 2026-01-29T01:13:15.045Z
CVE-2025-66143
5.4 (3.1)
WordPress Crumber plugin <= 1.0.10 - Broken Access Con… merkulove
 Crumber
 2026-01-22T16:51:50.950Z 2026-01-29T01:12:19.617Z
CVE-2025-66142
5.4 (3.1)
WordPress Comparimager for Elementor plugin <= 1.0.1 -… merkulove
 Comparimager for Elementor
 2026-01-22T16:51:50.767Z 2026-01-29T01:11:33.821Z
CVE-2025-66141
5.4 (3.1)
WordPress Scroller plugin <= 2.0.2 - Broken Access Con… merkulove
 Scroller
 2026-01-22T16:51:50.559Z 2026-01-29T01:10:46.778Z
CVE-2025-67619
8.8 (3.1)
WordPress Kids Heaven theme <= 3.2 - PHP Object Inject… designthemes
 Kids Heaven
 2026-01-22T16:51:52.055Z 2026-01-29T01:09:45.164Z
CVE-2025-66139
5.4 (3.1)
WordPress Audier For Elementor plugin <= 1.0.9 - Broke… merkulove
 Audier For Elementor
 2026-01-22T16:51:50.099Z 2026-01-29T01:08:51.396Z
CVE-2025-67614
7.1 (3.1)
WordPress TheNa theme <= 1.5.5 - Reflected Cross Site … foreverpinetree
 TheNa
 2026-01-22T16:51:51.190Z 2026-01-29T01:08:08.706Z
CVE-2025-67626
4.3 (3.1)
WordPress WP SEO Search plugin <= 1.1 - Cross Site Req… Angel Costa
 WP SEO Search
 2026-01-22T16:51:52.454Z 2026-01-29T01:06:54.487Z
CVE-2025-67620
7.1 (3.1)
WordPress Anon theme <= 2.2.10 - Reflected Cross Site … CleverSoft
 Anon
 2026-01-22T16:51:52.273Z 2026-01-29T01:05:11.215Z
CVE-2025-67947
7.1 (3.1)
WordPress AdForest Elementor plugin <= 3.0.11 - Cross … scriptsbundle
 AdForest Elementor
 2026-01-22T16:51:54.712Z 2026-01-29T01:04:29.713Z
CVE-2025-67949
7.1 (3.1)
WordPress Hostiko theme < 94.3.6 - Cross Site Scriptin… designingmedia
 Hostiko
 2026-01-22T16:51:54.975Z 2026-01-29T01:03:13.132Z
CVE-2025-67952
7.1 (3.1)
WordPress Grand Tour theme < 5.6.2 - Cross Site Script… ThemeGoods
 Grand Tour
 2026-01-22T16:51:55.230Z 2026-01-29T01:02:24.298Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-21962
10 (3.1)
Vulnerability in the Oracle HTTP Server, Oracle W… Oracle Corporation
 Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in
 2026-01-20T21:56:32.665Z 2026-02-02T23:05:30.157Z
CVE-2025-69517
8.8 (3.1)
An HTML injection vulnerability in Amidaware Inc … n/a
 n/a
 2026-01-28T00:00:00.000Z 2026-02-02T18:55:17.651Z
CVE-2025-67540
6.5 (3.1)
WordPress Animation Addons for Elementor plugin <= 2.4… Wealcoder
 Animation Addons for Elementor
 2025-12-09T14:14:05.024Z 2026-02-02T19:24:52.384Z
CVE-2025-66079
6.5 (3.1)
WordPress Gutenverse Form plugin <= 2.2.0 - Broken Acc… Jegstudio
 Gutenverse Form
 2025-11-21T12:29:57.227Z 2026-02-02T19:25:50.906Z
CVE-2025-66071
5.3 (3.1)
WordPress Custom Order Numbers for WooCommerce plugin … tychesoftwares
 Custom Order Numbers for WooCommerce
 2025-11-21T12:29:56.210Z 2026-02-02T19:28:05.613Z
CVE-2025-45160
5.4 (3.1)
A HTML injection vulnerability exists in the file… n/a
 n/a
 2026-01-29T00:00:00.000Z 2026-02-02T19:37:09.721Z
CVE-2025-22381
8.2 (3.1)
Aggie 2.6.1 has a Host Header injection vulnerabi… n/a
 n/a
 2025-10-16T00:00:00.000Z 2026-02-02T19:25:32.737Z
CVE-2025-11468
5.7 (4.0)
Folding email comments of unfoldable characters doesn'… Python Software Foundation
 CPython
 2026-01-20T21:09:11.229Z 2026-02-03T21:51:18.754Z
CVE-2026-1535
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
code-projects Online Music Site AdminReply.php sql injection code-projects
 Online Music Site
 2026-01-28T21:02:09.430Z 2026-01-28T21:29:19.423Z
CVE-2026-1534
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
code-projects Online Music Site AdminEditUser.php sql … code-projects
 Online Music Site
 2026-01-28T21:02:07.552Z 2026-01-28T21:25:58.336Z
CVE-2026-22218
7.1 (4.0)
Chainlit < 2.9.4 Arbitrary File Read via /project/element Chainlit
 Chainlit
 2026-01-19T23:14:52.969Z 2026-01-21T19:42:24.327Z
CVE-2026-22219
8.3 (4.0)
Chainlit < 2.9.4 SQLAlchemy Data Layer SSRF via /proje… Chainlit
 Chainlit
 2026-01-19T23:15:08.897Z 2026-01-20T18:41:46.632Z
CVE-2026-1593
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode Society Management System edit_expenses_q… itsourcecode
 Society Management System
 2026-01-29T14:32:06.560Z 2026-01-29T16:43:13.740Z
CVE-2026-1594
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode Society Management System add_expenses.ph… itsourcecode
 Society Management System
 2026-01-29T14:32:08.929Z 2026-01-29T16:42:57.773Z
CVE-2026-1595
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode Society Management System edit_student_qu… itsourcecode
 Society Management System
 2026-01-29T15:32:08.118Z 2026-01-29T21:30:34.042Z
CVE-2026-23625
8.7 (3.1)
OpenProject has stored XSS regression using attachment… opf
 openproject
 2026-01-19T17:41:41.803Z 2026-01-20T15:10:58.947Z
CVE-2026-23646
6.5 (3.1)
OpenProject users can delete other user's session, cau… opf
 openproject
 2026-01-19T17:48:03.082Z 2026-01-20T14:54:40.162Z
CVE-2026-23721
4.3 (3.1)
OpenProject users with "View Members" permission in an… opf
 openproject
 2026-01-19T17:52:35.307Z 2026-01-20T14:51:21.936Z
CVE-2025-69198
6 (4.0)
Pterodactyl's improper resource locking allows raced q… pterodactyl
 panel
 2026-01-19T19:05:38.530Z 2026-01-20T20:05:30.610Z
CVE-2025-69199
8.3 (4.0)
Pterodactyl Wings's websocket endpoints have no visibl… pterodactyl
 panel
 2026-01-19T19:17:53.569Z 2026-01-20T20:05:22.699Z
CVE-2026-21696
8.3 (4.0)
Endless reprocessing/reupload of activity log data due… pterodactyl
 wings
 2026-01-19T19:25:43.283Z 2026-01-20T17:27:48.498Z
CVE-2026-1176
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode School Management System index.php sql in… itsourcecode
 School Management System
 2026-01-19T21:02:07.529Z 2026-01-21T20:59:11.687Z
CVE-2025-69820
6 (3.1)
Directory Traversal vulnerability in Beam beta9 v… n/a
 n/a
 2026-01-22T00:00:00.000Z 2026-01-28T14:40:20.538Z
CVE-2026-23961
5.3 (3.1)
Mastodon may allow a remote suspension bypass mastodon
 mastodon
 2026-01-22T01:47:36.828Z 2026-01-22T21:38:52.885Z
CVE-2026-23962
7.5 (3.1)
Mastodon vulnerable to Denial of Service from a single… mastodon
 mastodon
 2026-01-22T01:51:37.430Z 2026-01-22T21:35:41.343Z
CVE-2026-23963
4.3 (3.1)
Mastodon missing length limits on list names, filter n… mastodon
 mastodon
 2026-01-22T01:53:49.887Z 2026-01-22T17:32:13.067Z
CVE-2025-69821
7.4 (3.1)
An issue in Beat XP VEGA Smartwatch (Firmware Ver… n/a
 n/a
 2026-01-22T00:00:00.000Z 2026-01-22T16:12:50.212Z
CVE-2026-23964
6.5 (3.1)
Mastodon has insufficient access control to push notif… mastodon
 mastodon
 2026-01-22T01:55:29.904Z 2026-01-22T17:02:23.614Z
CVE-2025-69822
7.4 (3.1)
An issue in Atomberg Atomberg Erica Smart Fan Fir… n/a
 n/a
 2026-01-22T00:00:00.000Z 2026-01-22T16:09:34.142Z
CVE-2025-56589
7.5 (3.1)
A Local File Inclusion (LFI) and a Server-Side Re… n/a
 n/a
 2026-01-22T00:00:00.000Z 2026-01-26T18:55:29.116Z
ID Description Published Updated
fkie_cve-2020-36947 LibreNMS 1.46 contains an authenticated SQL injection vulnerability in the MAC accounting graph end… 2026-01-27T16:16:12.040 2026-02-02T19:48:55.727
fkie_cve-2025-69564 code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php… 2026-01-27T17:16:10.063 2026-02-02T19:46:38.523
fkie_cve-2026-1521 A security flaw has been discovered in Open5GS up to 2.7.6. This affects the function sgwc_s5c_hand… 2026-01-28T15:16:17.493 2026-02-02T19:44:26.477
fkie_cve-2026-1545 A weakness has been identified in itsourcecode School Management System 1.0. The affected element i… 2026-01-28T22:15:55.470 2026-02-02T19:41:32.603
fkie_cve-2025-12776 The Report Builder component of the application stores user input directly in a web page and displa… 2026-01-07T22:15:43.030 2026-02-02T19:32:01.800
fkie_cve-2025-13151 Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size o… 2026-01-07T22:15:43.200 2026-02-02T19:27:23.070
fkie_cve-2026-1551 A weakness has been identified in itsourcecode School Management System 1.0. This affects an unknow… 2026-01-29T00:16:08.450 2026-02-02T19:26:59.780
fkie_cve-2026-1589 A vulnerability was determined in itsourcecode School Management System 1.0. This affects an unknow… 2026-01-29T15:16:13.050 2026-02-02T19:25:56.550
fkie_cve-2026-1590 A vulnerability was identified in itsourcecode School Management System 1.0. This impacts an unknow… 2026-01-29T15:16:13.350 2026-02-02T19:25:13.073
fkie_cve-2026-1522 A weakness has been identified in Open5GS up to 2.7.6. This vulnerability affects the function sgwc… 2026-01-28T17:16:15.330 2026-02-02T19:23:51.507
fkie_cve-2025-62224 User interface (ui) misrepresentation of critical information in Microsoft Edge for Android allows … 2026-01-07T23:15:44.407 2026-02-02T19:21:20.177
fkie_cve-2026-21859 Mailpit is an email testing tool and API for developers. Versions 1.28.0 and below have a Server-Si… 2026-01-08T00:16:00.150 2026-02-02T19:16:52.987
fkie_cve-2020-36962 Tendenci 12.3.1 contains a CSV formula injection vulnerability in the contact form message field th… 2026-01-28T18:16:46.277 2026-02-02T19:13:52.203
fkie_cve-2026-21869 llama.cpp is an inference of several LLM models in C/C++. In commits 55d4206c8 and prior, the n_dis… 2026-01-08T00:16:00.297 2026-02-02T19:12:36.020
fkie_cve-2026-21896 Kirby is an open-source content management system. From versions 5.0.0 to 5.2.1, Kirby is missing p… 2026-01-08T18:15:59.593 2026-02-02T19:02:51.850
fkie_cve-2026-0858 Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored … 2026-01-16T05:16:16.117 2026-02-02T18:52:02.240
fkie_cve-2026-1586 A flaw has been found in Open5GS up to 2.7.5. Impacted is the function ogs_gtp2_f_teid_to_ip of the… 2026-01-29T13:15:53.113 2026-02-02T18:43:23.160
fkie_cve-2026-22795 Issue summary: An invalid or NULL pointer dereference can happen in an application processing a mal… 2026-01-27T16:16:35.430 2026-02-02T18:41:14.917
fkie_cve-2026-22796 Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS#7… 2026-01-27T16:16:35.543 2026-02-02T18:40:27.467
fkie_cve-2026-1587 A vulnerability has been found in Open5GS up to 2.7.6. The affected element is the function sgwc_s1… 2026-01-29T13:15:53.717 2026-02-02T18:40:02.970
fkie_cve-2025-11187 Issue summary: PBMAC1 parameters in PKCS#12 files are missing validation which can trigger a stack-… 2026-01-27T16:16:14.093 2026-02-02T18:39:21.740
fkie_cve-2025-15467 Issue summary: Parsing CMS AuthEnvelopedData message with maliciously crafted AEAD parameters can t… 2026-01-27T16:16:14.257 2026-02-02T18:38:55.073
fkie_cve-2026-21973 Vulnerability in the Oracle FLEXCUBE Investor Servicing product of Oracle Financial Services Applic… 2026-01-20T22:16:00.460 2026-02-02T18:38:25.583
fkie_cve-2025-15468 Issue summary: If an application using the SSL_CIPHER_find() function in a QUIC protocol client or … 2026-01-27T16:16:14.400 2026-02-02T18:38:00.947
fkie_cve-2025-57681 The WorklogPRO - Timesheets for Jira plugin in Jira Data Center before version 4.23.6-jira10 and be… 2026-01-21T17:16:05.330 2026-02-02T18:37:51.730
fkie_cve-2025-15469 Issue summary: The 'openssl dgst' command-line tool silently truncates input data to 16MB when usin… 2026-01-27T16:16:14.523 2026-02-02T18:37:39.313
fkie_cve-2025-66199 Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large… 2026-01-27T16:16:15.777 2026-02-02T18:37:19.613
fkie_cve-2025-68160 Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter wh… 2026-01-27T16:16:15.900 2026-02-02T18:36:57.727
fkie_cve-2025-34467 ZwiiCMS versions prior to 13.7.00 contain a denial-of-service vulnerability in multiple administrat… 2025-12-31T19:15:43.753 2026-02-02T18:36:13.617
fkie_cve-2025-69418 Issue summary: When using the low-level OCB API directly with AES-NI or<br>other hardware-accelerat… 2026-01-27T16:16:33.253 2026-02-02T18:36:03.557
ID Severity Description Published Updated
ghsa-h3px-p99h-9f2w
9.8 (3.1)
code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /insertmessage.ph… 2026-01-27T18:32:17Z 2026-01-28T21:31:20Z
ghsa-9hp9-m3m3-mp2v
7.5 (3.1)
Mitigation bypass in the Privacy: Anti-Tracking component. This vulnerability affects Firefox < 147.0.2. 2026-01-27T18:32:16Z 2026-01-28T21:31:20Z
ghsa-8pgr-h8jj-q62w
9.8 (3.1)
code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via … 2026-01-27T18:32:17Z 2026-01-28T21:31:20Z
ghsa-7prc-fr4v-836v
9.8 (3.1)
code-projects Mobile Shop Management System 1.0 is vulnerable to File Upload in /ExAddProduct.php. 2026-01-27T18:32:16Z 2026-01-28T21:31:20Z
ghsa-6c9g-6gr7-3mm5
9.8 (3.1)
code-projects Computer Book Store 1.0 is vulnerable to File Upload in admin_add.php. 2026-01-27T18:32:17Z 2026-01-28T21:31:20Z
ghsa-46gc-wc69-mw4h
8.8 (3.1)
8.7 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) allow account passwo… 2026-01-26T18:31:31Z 2026-01-28T21:31:20Z
ghsa-w69g-qrmr-3cf2
6.5 (3.1)
2.1 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) fail to include the … 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-vw2m-ppwv-6g52
7.5 (3.1)
8.2 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) disclose sensitive a… 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-p4q3-78m7-rm2f
6.5 (3.1)
7.1 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) display stored user … 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-j73p-m2g8-wpgm
9.8 (3.1)
9.2 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) do not enforce rate … 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-f3h8-6qj8-rp34
5.5 (3.1)
4.8 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) serve sensitive admi… 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-5rh5-q22h-69wj
4.3 (3.1)
5.1 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) lack cross-site requ… 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-4pfw-2gcp-q7h8
5.4 (3.1)
5.1 (4.0)
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain a stored cro… 2026-01-26T18:31:31Z 2026-01-28T21:31:19Z
ghsa-rm5m-fjmr-4hwj
6.5 (3.1)
Missing Authorization vulnerability in Chris Simmons WP BackItUp wp-backitup allows Exploiting Inco… 2026-01-22T18:30:35Z 2026-01-28T21:31:18Z
ghsa-hcj7-c9m7-w5g2
9.8 (3.1)
Unrestricted Upload of File with Dangerous Type vulnerability in garidium g-FFL Checkout g-ffl-chec… 2026-01-22T18:30:34Z 2026-01-28T21:31:18Z
ghsa-7r22-q5hv-pc72
7.3 (3.1)
Incorrect Privilege Assignment vulnerability in Themefic Hydra Booking hydra-booking allows Privile… 2026-01-22T18:30:35Z 2026-01-28T21:31:18Z
ghsa-4224-439j-q3pp
6.5 (3.1)
Missing Authorization vulnerability in cardpaysolutions Payment Gateway Authorize.Net CIM for WooCo… 2026-01-22T18:30:34Z 2026-01-28T21:31:18Z
ghsa-36jg-fqm9-hv24
6.5 (3.1)
Missing Authorization vulnerability in WANotifier WANotifier notifier allows Exploiting Incorrectly… 2026-01-22T18:30:34Z 2026-01-28T21:31:18Z
ghsa-x87w-5wj7-8cwc
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-01-22T18:30:33Z 2026-01-28T21:31:17Z
ghsa-v2hq-hpvp-pm2v
8.1 (3.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2026-01-22T18:30:33Z 2026-01-28T21:31:17Z
ghsa-v265-mq78-w999
6.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-05-14T18:30:49Z 2026-01-28T21:31:17Z
ghsa-j392-f58p-c38q
9.8 (3.1)
Missing Authorization vulnerability in ThemeMove Makeaholic allows Exploiting Incorrectly Configure… 2026-01-28T21:31:17Z 2026-01-28T21:31:17Z
ghsa-hxcg-77v3-qx52
5.9 (3.1)
If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server… 2025-11-12T18:31:25Z 2026-01-28T21:31:17Z
ghsa-h3vg-292w-9x2c
5.3 (3.1)
Improper authorization in Smart suggestions prior to SMR Apr-2023 Release 1 in Android 13 and 4.1.0… 2026-01-28T21:31:17Z 2026-01-28T21:31:17Z
ghsa-9rmh-gmj9-rv2m
9.9 (3.1)
Unrestricted Upload of File with Dangerous Type vulnerability in InspiryThemes Real Homes CRM realh… 2026-01-22T18:30:34Z 2026-01-28T21:31:17Z
ghsa-6jv6-w2pq-vr7g
6.5 (3.1)
Missing Authorization vulnerability in Tickera Tickera tickera-event-ticketing-system allows Exploi… 2026-01-22T18:30:33Z 2026-01-28T21:31:17Z
ghsa-26cj-fq73-4g9h
5.5 (3.1)
Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-202… 2026-01-28T21:31:17Z 2026-01-28T21:31:17Z
ghsa-86hp-xrhj-fhpq
8.8 (3.1)
TYPO3 Vulnerable to Insecure Deserialization 2022-05-24T22:00:13Z 2026-01-28T21:28:48Z
ghsa-rvxj-7f72-mhrx
8.7 (4.0)
EGroupware has SQL Injection in Nextmatch Filter Processing 2026-01-28T20:39:27Z 2026-01-28T20:39:27Z
ghsa-xcvv-2phh-wm85
7.8 (3.1)
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest c… 2026-01-28T18:30:49Z 2026-01-28T18:30:49Z
ID Severity Description Package Published Updated
pysec-2021-389
TensorFlow is an open source platform for machine learning. In affected versions the Kera… tensorflow 2021-11-05T20:15:00Z 2021-11-13T06:52:41.665281Z
pysec-2018-81
In ansible it was found that inventory variables are loaded from current working director… ansible 2018-07-02T13:29:00Z 2021-11-11T23:46:36.679476Z
pysec-2020-100
It was found that python-rsa is vulnerable to Bleichenbacher timing attacks. An attacker … rsa 2020-11-12T14:15:00Z 2021-11-11T23:07:45.968611Z
pysec-2021-388
The parseXML function in Easy-XML 0.5.0 was discovered to have a XML External Entity (XXE… easy-xml 2021-10-31T20:15:00Z 2021-11-11T13:06:47.875432Z
pysec-2021-387
An issue was discovered in Dask (aka python-dask) through 2021.09.1. Single machine Dask … dask 2021-10-26T11:15:00Z 2021-11-11T13:06:47.756280Z
pysec-2014-21
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket re… ipython 2014-08-07T11:13:00Z 2021-11-10T21:26:51.333186Z
pysec-2021-386
JupyterHub is an open source multi-user server for Jupyter notebooks. In affected version… jupyterhub 2021-11-04T18:15:00Z 2021-11-10T19:23:06.087408Z
pysec-2021-385
EnroCrypt is a Python module for encryption and hashing. Prior to version 1.1.4, EnroCryp… enrocrypt 2021-11-08T15:15:00Z 2021-11-09T21:27:02.006228Z
pysec-2021-384
FirstUseAuthenticator is a JupyterHub authenticator that helps new users set their passwo… jupyterhub-firstuseauthenticator 2021-10-28T20:15:00Z 2021-11-03T14:26:52.434933Z
pysec-2021-383
Nameko through 2.13.0 can be tricked into performing arbitrary code execution when deseri… nameko 2021-10-26T13:15:00Z 2021-10-29T05:27:28.492888Z
pysec-2021-382
qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with … qutebrowser 2021-10-21T18:15:00Z 2021-10-28T05:27:07.120992Z
pysec-2021-381
Rasa is an open source machine learning framework to automate text-and voice-based conver… rasa 2021-10-21T21:15:00Z 2021-10-24T23:24:39.410729Z
pysec-2021-380
Ops CLI version 2.0.4 (and earlier) is affected by a Deserialization of Untrusted Data vu… ops-cli 2021-10-15T15:15:00Z 2021-10-24T23:24:39.018050Z
pysec-2021-379
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… omero-figure 2021-10-14T16:15:00Z 2021-10-24T23:24:38.547709Z
pysec-2021-378
Apache Superset up to and including 1.3.0 when configured with ENABLE_TEMPLATE_PROCESSING… apache-superset 2021-10-18T15:15:00Z 2021-10-24T23:24:36.552552Z
pysec-2021-377
Apache Superset up to and including 1.1 does not sanitize titles correctly on the Explore… apache-superset 2021-10-18T15:15:00Z 2021-10-24T23:24:36.503366Z
pysec-2021-376
python-tuf is a Python reference implementation of The Update Framework (TUF). In both cl… tuf 2021-10-19T18:15:00Z 2021-10-22T22:29:45.339771Z
pysec-2021-375
Cobbler before 3.3.0 allows authorization bypass for modification of settings. cobbler 2021-10-04T06:15:00Z 2021-10-19T21:47:31.769581Z
pysec-2021-374
Cobbler before 3.3.0 allows arbitrary file write operations via upload_log_data. cobbler 2021-10-04T06:15:00Z 2021-10-19T21:47:31.730339Z
pysec-2021-373
Cobbler before 3.3.0 allows log poisoning, and resultant Remote Code Execution, via an XM… cobbler 2021-10-04T06:15:00Z 2021-10-19T21:47:31.690816Z
pysec-2021-372
OMERO.web provides a web based client and plugin infrastructure. In versions prior to 5.1… omero-web 2021-10-14T16:15:00Z 2021-10-17T22:58:18.538383Z
pysec-2021-332
This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive … sqlite-web 2021-09-08T11:15:00Z 2021-10-14T13:17:51.118876Z
pysec-2021-368
Zope is an open-source web application server. Zope versions prior to versions 4.6.3 and … zope 2021-08-02T22:15:00Z 2021-10-12T02:55:36.218662Z
pysec-2018-59
The safe_eval function in trytond in Tryton before 2.4.15, 2.6.x before 2.6.14, 2.8.x bef… trytond 2018-04-12T15:29:00Z 2021-10-12T02:55:35.904690Z
pysec-2016-13
file_open in Tryton before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before… trytond 2016-09-07T19:28:00Z 2021-10-12T02:55:35.639640Z
pysec-2016-12
Tryton 3.x before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before 3.8.8, a… trytond 2016-09-07T19:28:00Z 2021-10-12T02:55:35.373801Z
pysec-2021-370
Zope is an open-source web application server. Zope versions prior to versions 4.6.3 and … accesscontrol 2021-08-02T22:15:00Z 2021-10-12T02:55:32.357329Z
pysec-2020-3
An Improper Output Neutralization for Logs flaw was found in Ansible when using the uri m… ansible 2020-09-11T18:15:00Z 2021-10-11T15:32:06.056476Z
pysec-2021-369
The Unicorn framework before 0.36.1 for Django allows XSS via a component. NOTE: this iss… django-unicorn 2021-10-11T01:15:00Z 2021-10-11T05:26:07.255634Z
pysec-2021-366
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions external fu… vyper 2021-10-05T23:15:00Z 2021-10-11T01:16:43.215640Z
ID Description Updated
gsd-2024-3754 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.656561Z
gsd-2024-3753 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.780508Z
gsd-2024-3752 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.596882Z
gsd-2024-3751 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.831999Z
gsd-2024-3750 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.822279Z
gsd-2024-3749 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.658377Z
gsd-2024-3748 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.758378Z
gsd-2024-3747 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.846656Z
gsd-2024-3746 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.923340Z
gsd-2024-3745 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.718576Z
gsd-2024-3744 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.857174Z
gsd-2024-3743 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.819455Z
gsd-2024-3742 Electrolink transmitters store credentials in clear-text. Use of these credentials could… 2024-04-13T05:02:35.605193Z
gsd-2024-3741 Electrolink transmitters are vulnerable to an authentication bypass vulnerability affect… 2024-04-13T05:02:35.720347Z
gsd-2024-3740 A vulnerability, which was classified as critical, has been found in cym1102 nginxWebUI u… 2024-04-13T05:02:35.671075Z
gsd-2024-3739 A vulnerability classified as critical was found in cym1102 nginxWebUI up to 3.9.9. This … 2024-04-13T05:02:35.630864Z
gsd-2024-3738 A vulnerability classified as critical has been found in cym1102 nginxWebUI up to 3.9.9. … 2024-04-13T05:02:35.904583Z
gsd-2024-3737 A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been rated as critica… 2024-04-13T05:02:35.886735Z
gsd-2024-3736 A vulnerability was found in cym1102 nginxWebUI up to 3.9.9. It has been declared as prob… 2024-04-13T05:02:35.634751Z
gsd-2024-3735 A vulnerability was found in Smart Office up to 20240405. It has been classified as probl… 2024-04-13T05:02:35.674146Z
gsd-2024-3734 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.755944Z
gsd-2024-3733 The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerc… 2024-04-13T05:02:35.736845Z
gsd-2024-3732 The GeoDirectory – WordPress Business Directory Plugin, or Classified Directory plugin fo… 2024-04-13T05:02:35.705171Z
gsd-2024-3731 The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cros… 2024-04-13T05:02:35.925459Z
gsd-2024-3730 The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting v… 2024-04-13T05:02:35.771433Z
gsd-2024-3729 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.637594Z
gsd-2024-3728 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.685143Z
gsd-2024-3727 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.817240Z
gsd-2024-3726 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.849832Z
gsd-2024-3725 The format of the source doesn't require a description, click on the link for more details. 2024-04-13T05:02:35.790122Z
ID Description Published Updated
MAL-2024-9938 Malicious code in aiotrans (PyPI) 2024-08-14T22:01:30Z 2025-12-31T02:45:15Z
MAL-2024-9937 Malicious code in aiohttp-libscss (PyPI) 2024-08-10T13:21:32Z 2025-12-31T02:45:15Z
MAL-2024-9271 Malicious code in lab-3-package-438d82fc (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-9266 Malicious code in innostage (PyPI) 2024-10-07T13:23:16Z 2025-12-31T02:45:15Z
MAL-2024-8927 Malicious code in artifact-lab-3-package-db7d716a (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-8914 Malicious code in artifact-lab-3-package-4c04b1a2 (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-8044 Malicious code in artifact-lab-3-package-2b6a4744 (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-8023 Malicious code in artifact-lab-3-package-b6920ef4 (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-8017 Malicious code in artifact-lab-3-package-392c6acd (PyPI) 2024-08-10T23:05:21Z 2025-12-31T02:45:15Z
MAL-2024-5721 Malicious code in pyhttpproxifier (PyPI) 2024-06-25T13:40:09Z 2025-12-31T02:45:15Z
MAL-2024-5357 Malicious code in me-dheeraj-moye-moye (PyPI) 2024-06-25T13:37:11Z 2025-12-31T02:45:15Z
MAL-2024-5326 Malicious code in libsocks5 (PyPI) 2024-06-25T13:36:56Z 2025-12-31T02:45:15Z
MAL-2024-12342 Malicious code in rwoka (PyPI) 2024-12-14T16:26:57Z 2025-12-31T02:45:15Z
MAL-2024-12338 Malicious code in requesr (PyPI) 2024-12-24T18:09:49Z 2025-12-31T02:45:15Z
MAL-2024-12336 Malicious code in raydium (PyPI) 2024-07-03T17:04:18Z 2025-12-31T02:45:15Z
MAL-2024-12326 Malicious code in pitest117 (PyPI) 2024-08-23T22:55:41Z 2025-12-31T02:45:15Z
MAL-2024-12320 Malicious code in osint-tool (PyPI) 2024-10-02T07:55:07Z 2025-12-31T02:45:15Z
MAL-2024-12317 Malicious code in oe-extract-idss (PyPI) 2024-07-26T16:53:30Z 2025-12-31T02:45:15Z
MAL-2024-12316 Malicious code in oe-extract-ids (PyPI) 2024-07-26T16:53:30Z 2025-12-31T02:45:15Z
MAL-2024-12309 Malicious code in my-service-manager (PyPI) 2024-12-01T16:55:36Z 2025-12-31T02:45:15Z
MAL-2024-12308 Malicious code in my-main-manager (PyPI) 2024-12-01T16:55:36Z 2025-12-31T02:45:15Z
MAL-2024-12303 Malicious code in maliciouspackage (PyPI) 2024-10-15T16:27:48Z 2025-12-31T02:45:15Z
MAL-2024-12297 Malicious code in jupsolhelp (PyPI) 2024-08-10T16:25:59Z 2025-12-31T02:45:15Z
MAL-2024-12292 Malicious code in instaread (PyPI) 2024-10-06T11:51:02Z 2025-12-31T02:45:15Z
MAL-2024-12290 Malicious code in ibmodules (PyPI) 2024-08-23T22:55:41Z 2025-12-31T02:45:15Z
MAL-2024-12287 Malicious code in hmac2 (PyPI) 2024-10-30T18:55:55Z 2025-12-31T02:45:15Z
MAL-2024-12284 Malicious code in hello-world-installer-test (PyPI) 2024-07-26T16:53:30Z 2025-12-31T02:45:15Z
MAL-2024-12281 Malicious code in hack-test (PyPI) 2024-08-23T22:55:41Z 2025-12-31T02:45:15Z
MAL-2024-12275 Malicious code in genz-translator (PyPI) 2024-12-03T18:03:25Z 2025-12-31T02:45:15Z
MAL-2024-12266 Malicious code in evil-select-pkg (PyPI) 2024-09-24T06:57:51Z 2025-12-31T02:45:15Z
ID Description Published Updated
wid-sec-w-2025-0873 xwiki: Mehrere Schwachstellen ermöglichen SQL-Injection 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0872 Trellix Endpoint Security: Schwachstelle ermöglicht Denial of Service 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0871 CODESYS: Schwachstelle ermöglicht Offenlegung von Informationen 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0870 Hitachi Ops Center: Mehrere Schwachstellen ermöglichen Offenlegung von informationen 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0869 VMware Tanzu Spring Security: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0868 PyTorch: Schwachstelle ermöglicht Codeausführung 2025-04-22T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0864 Ruby: Schwachstelle ermöglicht Man-in-the-Middle Angriff 2013-06-27T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0657 Erlang/OTP: Schwachstelle ermöglicht Denial of Service 2025-03-30T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0579 Mattermost Server: Mehrere Schwachstellen 2025-03-17T23:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0495 Synology DiskStation Manager: Schwachstelle ermöglicht Offenlegung von Informationen 2025-03-05T23:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2024-1605 Fabasoft Folio: Schwachstelle ermöglicht Codeausführung 2024-07-11T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2024-1216 GitLab: Mehrere Schwachstellen 2024-05-21T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2024-1151 Mozilla Firefox, Firefox ESR und Thunderbird: Mehrere Schwachstellen 2024-05-14T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2024-1020 bluez: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2024-05-02T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2023-3209 bluez: Mehrere Schwachstellen 2023-12-21T23:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2023-3197 bluez: Mehrere Schwachstellen 2023-12-20T23:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2023-2461 Ruby: Schwachstelle ermöglicht Codeausführung 2021-05-02T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2023-1590 Ruby: Schwachstelle ermöglicht Denial of Service 2023-06-28T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2023-1231 WordPress: Mehrere Schwachstellen 2023-05-16T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2022-2173 Ruby: Schwachstelle ermöglicht Manipulation von Dateien 2022-11-24T23:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2022-1305 Ruby: Mehrere Schwachstellen 2021-07-07T22:00:00.000+00:00 2025-04-22T22:00:00.000+00:00
wid-sec-w-2025-0863 Microsoft GitHub Enterprise: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0862 Moodle: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0860 Liferay Portal und Liferay DXP: Schwachstelle ermöglicht Cross-Site Scripting 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0859 Tenable Security Nessus: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0857 PyTorch: Schwachstelle ermöglicht Codeausführung 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0855 Zyxel Firewall: Mehrere Schwachstellen ermöglichen Privilegieneskalation 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0852 IBM Maximo Asset Management: Schwachstelle ermöglicht Offenlegung von Informationen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0851 OpenText Enterprise Security Manager: Schwachstelle ermöglicht Darstellen falscher Informationen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
wid-sec-w-2025-0850 IBM Power Hardware Management Console: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2025-04-21T22:00:00.000+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2024:7941 Red Hat Security Advisory: OpenShift Container Platform 4.13.z security update 2024-10-16T20:30:11+00:00 2026-02-03T21:38:25+00:00
rhsa-2024:7187 Red Hat Security Advisory: OpenShift Container Platform 4.14.38 security update 2024-10-03T11:24:56+00:00 2026-02-03T21:38:13+00:00
rhsa-2024:7182 Red Hat Security Advisory: OpenShift Container Platform 4.15.35 packages and security update 2024-10-02T06:08:52+00:00 2026-02-03T21:38:13+00:00
rhsa-2024:7179 Red Hat Security Advisory: OpenShift Container Platform 4.15.35 bug fix and security update 2024-10-02T05:49:45+00:00 2026-02-03T21:38:12+00:00
rhsa-2024:7174 Red Hat Security Advisory: OpenShift Container Platform 4.16.15 bug fix and security update 2024-10-02T05:27:44+00:00 2026-02-03T21:38:12+00:00
rhsa-2024:6824 Red Hat Security Advisory: OpenShift Container Platform 4.16.14 security update 2024-09-24T15:28:01+00:00 2026-02-03T21:38:05+00:00
rhsa-2024:6818 Red Hat Security Advisory: OpenShift Container Platform 4.15.34 bug fix and security update 2024-09-25T13:59:31+00:00 2026-02-03T21:38:05+00:00
rhsa-2024:6708 Red Hat Security Advisory: ACS 4.5 enhancement and security update 2024-09-16T18:26:56+00:00 2026-02-03T21:38:04+00:00
rhsa-2024:6687 Red Hat Security Advisory: OpenShift Container Platform 4.16.13 bug fix and security update 2024-09-19T05:38:53+00:00 2026-02-03T21:38:03+00:00
rhsa-2024:6210 Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.4 security update 2024-09-03T10:05:02+00:00 2026-02-03T21:38:03+00:00
rhsa-2024:6667 Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.16.0 release 2024-09-12T21:30:49+00:00 2026-02-03T21:38:01+00:00
rhsa-2024:6209 Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.10 security update 2024-09-03T10:04:55+00:00 2026-02-03T21:37:57+00:00
rhsa-2024:6186 Red Hat Security Advisory: containernetworking-plugins security update 2024-09-03T19:57:55+00:00 2026-02-03T21:37:57+00:00
rhsa-2024:6195 Red Hat Security Advisory: skopeo security update 2024-09-03T09:23:32+00:00 2026-02-03T21:37:56+00:00
rhsa-2024:6194 Red Hat Security Advisory: podman security update 2024-09-03T20:00:45+00:00 2026-02-03T21:37:56+00:00
rhsa-2024:6189 Red Hat Security Advisory: buildah security update 2024-09-03T09:11:32+00:00 2026-02-03T21:37:55+00:00
rhsa-2024:6188 Red Hat Security Advisory: runc security update 2024-09-03T18:57:44+00:00 2026-02-03T21:37:54+00:00
rhsa-2024:6187 Red Hat Security Advisory: gvisor-tap-vsock security update 2024-09-03T08:16:59+00:00 2026-02-03T21:37:54+00:00
rhsa-2024:6122 Red Hat Security Advisory: OpenShift Container Platform 4.18.1 bug fix and security update 2025-02-25T04:38:13+00:00 2026-02-03T21:37:53+00:00
rhsa-2024:6054 Red Hat Security Advisory: ACS 4.4 enhancement and security update 2024-08-29T18:30:41+00:00 2026-02-03T21:37:51+00:00
rhsa-2024:5951 Red Hat Security Advisory: OpenShift Virtualization 4.15.5 Images 2024-08-28T16:28:45+00:00 2026-02-03T21:37:51+00:00
rhsa-2024:5808 Red Hat Security Advisory: OpenShift Container Platform 4.12.64 security update 2024-08-29T03:07:50+00:00 2026-02-03T21:37:50+00:00
rhsa-2024:5446 Red Hat Security Advisory: OpenShift Container Platform 4.13.48 packages and security update 2024-08-22T12:20:05+00:00 2026-02-03T21:37:48+00:00
rhsa-2024:5444 Red Hat Security Advisory: OpenShift Container Platform 4.13.48 bug fix and security update 2024-08-22T11:42:26+00:00 2026-02-03T21:37:47+00:00
rhsa-2024:5442 Red Hat Security Advisory: OpenShift Container Platform 4.15.28 packages and security update 2024-08-22T12:02:45+00:00 2026-02-03T21:37:47+00:00
rhsa-2024:5439 Red Hat Security Advisory: OpenShift Container Platform 4.15.28 bug fix and security update 2024-08-22T11:42:04+00:00 2026-02-03T21:37:43+00:00
rhsa-2024:5436 Red Hat Security Advisory: OpenShift Container Platform 4.14.35 security update 2024-08-22T12:00:30+00:00 2026-02-03T21:37:42+00:00
rhsa-2024:5422 Red Hat Security Advisory: OpenShift Container Platform 4.16.8 bug fix and security update 2024-08-20T15:21:42+00:00 2026-02-03T21:37:41+00:00
rhsa-2024:5294 Red Hat Security Advisory: jose security update 2024-08-13T15:37:20+00:00 2026-02-03T21:37:40+00:00
rhsa-2024:5202 Red Hat Security Advisory: OpenShift Container Platform 4.12.63 packages and security update 2024-08-19T03:55:38+00:00 2026-02-03T21:37:39+00:00
ID Description Published Updated
icsa-23-024-02 SOCOMEC MODULYS GP (UPDATE A) 2023-01-24T07:00:00.000000Z 2023-09-26T06:00:00.000000Z
icsa-23-264-06 Rockwell Automation FactoryTalk View Machine Edition 2023-09-21T06:00:00.000000Z 2023-09-21T06:00:00.000000Z
icsa-23-264-05 Rockwell Automation Connected Components Workbench 2023-09-21T06:00:00.000000Z 2023-09-21T06:00:00.000000Z
icsa-23-264-04 Rockwell Automation Select Logix Communication Modules 2023-09-21T06:00:00.000000Z 2023-09-21T06:00:00.000000Z
icsa-23-264-03 Delta Electronics DIAScreen 2023-09-21T06:00:00.000000Z 2023-09-21T06:00:00.000000Z
icsa-23-264-01 Real Time Automation 460 Series 2023-09-21T06:00:00.000000Z 2023-09-21T06:00:00.000000Z
icsa-23-262-05 Omron CJ/CS/CP Series 2023-09-19T06:00:00.000000Z 2023-09-19T06:00:00.000000Z
icsa-23-262-04 Omron Engineering Software 2023-09-19T06:00:00.000000Z 2023-09-19T06:00:00.000000Z
icsa-23-262-03 Omron Engineering Software Zip-Slip 2023-09-19T06:00:00.000000Z 2023-09-19T06:00:00.000000Z
icsa-23-257-07 Rockwell Automation Pavilion8 2023-09-14T06:00:00.000000Z 2023-09-14T06:00:00.000000Z
icsa-23-262-01 Siemens SIMATIC PCS neo Administration Console 2023-09-14T00:00:00Z 2023-09-14T00:00:00Z
icsa-23-255-02 Fujitsu Software Infrastructure Manager 2023-09-12T06:00:00.000000Z 2023-09-12T06:00:00.000000Z
icsa-23-255-01 Hitachi Energy Lumada APM Edge 2023-09-12T06:00:00.000000Z 2023-09-12T06:00:00.000000Z
icsa-23-257-04 Siemens RUGGEDCOM APE1808 Products 2023-09-12T00:00:00Z 2023-09-12T00:00:00Z
icsa-23-047-08 Siemens RUGGEDCOM APE1808 2023-02-14T00:00:00.000000Z 2023-09-12T00:00:00.000000Z
icsa-23-250-03 Socomec MOD3GP-SY-120K 2023-09-07T06:00:00.000000Z 2023-09-07T06:00:00.000000Z
icsa-23-250-02 Phoenix Contact TC ROUTER and TC CLOUD CLIENT 2023-09-07T06:00:00.000000Z 2023-09-07T06:00:00.000000Z
icsa-23-250-01 Dover Fueling Solutions MAGLINK LX Console 2023-09-07T06:00:00.000000Z 2023-09-07T06:00:00.000000Z
icsa-23-157-01 Delta Electronics CNCSoft-B DOPSoft 2023-06-06T06:00:00.000000Z 2023-09-07T06:00:00.000000Z
icsma-23-248-01 Softneta MedDream PACS Premium 2023-09-05T06:00:00.000000Z 2023-09-05T06:00:00.000000Z
icsa-23-248-01 Fujitsu Limited Real-time Video Transmission Gear "IP series" 2023-09-05T06:00:00.000000Z 2023-09-05T06:00:00.000000Z
icsa-23-243-04 Digi RealPort Protocol 2023-08-31T06:00:00.000000Z 2023-08-31T06:00:00.000000Z
icsa-23-243-02 GE Digital CIMPLICITY 2023-08-31T06:00:00.000000Z 2023-08-31T06:00:00.000000Z
icsa-23-243-01 ARDEREG Sistemas SCADA 2023-08-31T06:00:00.000000Z 2023-08-31T06:00:00.000000Z
icsa-23-241-01 PTC Codebeamer 2023-08-29T06:00:00.000000Z 2023-08-29T06:00:00.000000Z
icsa-23-236-06 Rockwell Automation Select Distributed I/O Communication Modules 2023-08-24T06:00:00.000000Z 2023-08-24T06:00:00.000000Z
icsa-23-236-05 CODESYS Development System 2023-08-24T06:00:00.000000Z 2023-08-24T06:00:00.000000Z
icsa-23-236-04 CODESYS Development System 2023-08-24T06:00:00.000000Z 2023-08-24T06:00:00.000000Z
icsa-23-236-03 CODESYS Development System 2023-08-24T06:00:00.000000Z 2023-08-24T06:00:00.000000Z
icsa-23-236-02 OPTO 22 SNAP PAC S1 2023-08-24T06:00:00.000000Z 2023-08-24T06:00:00.000000Z
ID Description Published Updated
cisco-sa-iox-pt-hWGcPf7g Cisco IOx Application Environment Path Traversal Vulnerability 2021-03-24T16:00:00+00:00 2021-03-30T22:12:35+00:00
cisco-sa-cisco-jabber-pwrtattc Cisco Jabber Desktop and Mobile Client Software Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-25T13:44:34+00:00
cisco-sa-cisco-jabber-PWrTATTC Cisco Jabber Desktop and Mobile Client Software Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-25T13:44:34+00:00
cisco-sa-xesdwpinj-v4weeqzu Cisco IOS XE SD-WAN Software Parameter Injection Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xesdwpinj-V4weeqzU Cisco IOS XE SD-WAN Software Parameter Injection Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xesdwcinj-t68ppw7m Cisco IOS XE SD-WAN Software Command Injection Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xesdwcinj-t68PPW7m Cisco IOS XE SD-WAN Software Command Injection Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-webui-dos-z9yqyqan Cisco IOS XE Software Web UI Denial of Service Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-webui-dos-z9yqYQAn Cisco IOS XE Software Web UI Denial of Service Vulnerabilities 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-sap-oplbze68 Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-ofp-6nezgn7b Cisco IOS XE Software Local Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-blkh-ouvrnf2s Cisco IOS XE Software Active Debug Code Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-xe-ace-75k3brwe Cisco IOS XE Software Arbitrary Code Execution Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-sdwan-esc-rsnvvtf9 Cisco IOS XE SD-WAN Software Console Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-sdwan-esc-rSNVvTf9 Cisco IOS XE SD-WAN Software Console Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-sdwan-clipriv-9to2qgvp Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-sdwan-clipriv-9TO2QGVp Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-ncs520-tcp-zpzzoxb Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-ncs520-tcp-ZpzzOxB Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iox-dos-4fgcjh6 Cisco IOx Application Framework Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iox-dos-4Fgcjh6 Cisco IOx Application Framework Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iox-cmdinj-rksurghg Cisco IOx for IOS XE Software Command Injection Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iox-cmdinj-RkSURGHG Cisco IOx for IOS XE Software Command Injection Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwpathtrav-nsrue2mt Cisco IOS XE SD-WAN Software Path Traversal Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwpathtrav-nsrue2Mt Cisco IOS XE SD-WAN Software Path Traversal Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwdos-4zeeec9w Cisco IOS XE SD-WAN Software vDaemon Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwdos-4zeEeC9w Cisco IOS XE SD-WAN Software vDaemon Denial of Service Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwarbcmdexec-sspomur3 Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-sdwarbcmdexec-sspOMUr3 Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
cisco-sa-iosxe-romvar-cmd-inj-n56fybrw Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability 2021-03-24T16:00:00+00:00 2021-03-24T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2017-6832 Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. 2017-03-02T00:00:00.000Z 2025-10-01T23:10:58.000Z
msrc_cve-2017-6831 Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. 2017-03-02T00:00:00.000Z 2025-10-01T23:10:57.000Z
msrc_cve-2017-6830 Heap-based buffer overflow in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service 2017-03-02T00:00:00.000Z 2025-10-01T23:10:57.000Z
msrc_cve-2017-6829 The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file. 2017-03-02T00:00:00.000Z 2025-10-01T23:10:57.000Z
msrc_cve-2017-6828 Heap-based buffer overflow in audiofile allows remote attackers to have unspecified impact 2017-03-02T00:00:00.000Z 2025-10-01T23:10:57.000Z
msrc_cve-2017-6827 Heap-based buffer overflow in audiofile allows remote attackers to have unspecified impact via a crafted audio file 2017-03-02T00:00:00.000Z 2025-10-01T23:10:56.000Z
msrc_cve-2017-5836 The plist_free_data function libplist allows attackers to cause a denial of service 2017-03-02T00:00:00.000Z 2025-10-01T23:10:56.000Z
msrc_cve-2017-5835 libplist allows attackers to cause a denial of service (large memory allocation and crash) via vectors involving an offset size of zero. 2017-03-02T00:00:00.000Z 2025-10-01T23:10:56.000Z
msrc_cve-2017-5834 The parse_dict_node function in bplist.c in libplist allows attackers to cause a denial of service 2017-03-02T00:00:00.000Z 2025-10-01T23:10:56.000Z
msrc_cve-2017-18640 The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564. 2019-12-02T00:00:00.000Z 2025-10-01T23:10:55.000Z
msrc_cve-2017-16754 Bolt before 3.3.6 does not properly restrict access to _profiler routes 2017-11-02T00:00:00.000Z 2025-10-01T23:10:55.000Z
msrc_cve-2017-14176 Bazaar through 2.7.0, when Subprocess SSH is used, allows remote attackers to execute arbitrary commands 2017-11-02T00:00:00.000Z 2025-10-01T23:10:55.000Z
msrc_cve-2017-12613 When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month field value in Apache Portable Runtime APR 1.6.2 and prior, out of bounds memory may be accessed in converting this value to an apr_time_exp_t value, potentially revealing the contents of a different static heap value or resulting in program termination, and may represent an information disclosure or denial of service vulnerability to applications which call these APR functions with unvalidated external input. 2017-10-02T00:00:00.000Z 2025-10-01T23:10:55.000Z
msrc_cve-2017-11548 The _tokenize_matrix function in audio_out.c in Xiph.Org libao 1.2.0 allows remote attackers to cause a denial of service 2017-07-02T00:00:00.000Z 2025-10-01T23:10:54.000Z
msrc_cve-2016-4912 The _xrealloc function in xlsp_xmalloc.c in OpenSLP 2.0.0 allows remote attackers to cause a denial of service 2017-03-02T00:00:00.000Z 2025-10-01T23:10:54.000Z
msrc_cve-2016-2568 pkexec, when used with --user nonpriv, allows local users to escape to the parent session 2017-02-02T00:00:00.000Z 2025-10-01T23:10:54.000Z
msrc_cve-2016-1000104 A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07. 2019-12-02T00:00:00.000Z 2025-10-01T23:10:54.000Z
msrc_cve-2015-7309 The theme editor in Bolt allows remote authenticated users to execute arbitrary code by renaming a crafted file 2015-09-02T00:00:00.000Z 2025-10-01T23:10:53.000Z
msrc_cve-2015-2704 realmd allows remote attackers to inject arbitrary configurations in to sssd.conf and smb.conf 2015-05-02T00:00:00.000Z 2025-10-01T23:10:53.000Z
msrc_cve-2013-7381 libnotify before 1.0.4 for Node.js allows remote attackers to execute arbitrary commands via unspecified characters in a call to libnotify.notify. 2020-02-02T00:00:00.000Z 2025-10-01T23:10:53.000Z
msrc_cve-2012-3381 sfcb in sblim-sfcb places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. 2012-08-02T00:00:00.000Z 2025-10-01T23:10:53.000Z
msrc_cve-2012-2653 arpwatch 2.1a15, as used by Red Hat, Debian, Fedora, and possibly others, does not properly drop supplementary groups, which might allow attackers to gain root privileges by leveraging other vulnerabilities in the daemon. 2012-07-02T00:00:00.000Z 2025-10-01T23:10:52.000Z
msrc_cve-2011-5244 Multiple off-by-one errors in the (1) token and (2) linetoken functions in backend/dvi/mdvi-lib/afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics (AFM) file, different vulnerabilities than CVE-2010-2642 and CVE-2011-0433. 2012-11-02T00:00:00.000Z 2025-10-01T23:10:52.000Z
msrc_cve-2011-4966 modules/rlm_unix/rlm_unix.c in FreeRADIUS before 2.2.0, when unix mode is enabled for user authentication, does not properly check the password expiration in /etc/shadow, which allows remote authenticated users to authenticate using an expired password. 2013-03-02T00:00:00.000Z 2025-10-01T23:10:52.000Z
msrc_cve-2011-1429 Mutt does not verify that the smtps server hostname matches the domain name of the subject of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL SMTP server via an arbitrary certificate, a different vulnerability than CVE-2009-3766. 2011-03-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2011-0433 Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics (AFM) file, a different vulnerability than CVE-2010-2642. 2012-11-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2010-2642 Heap-based buffer overflow in the AFM font parser in the dvi-backend component in Evince 2.32 and earlier, teTeX 3.0, t1lib 5.1.2, and possibly other products allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted font in conjunction with a DVI file that is processed by the thumbnailer. 2011-01-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2007-6353 Integer overflow in exif.cpp in exiv2 library allows context-dependent attackers to execute arbitrary code via a crafted EXIF file that triggers a heap-based buffer overflow. 2007-12-02T00:00:00.000Z 2025-10-01T23:10:51.000Z
msrc_cve-2007-3205 The parse_str function in (1) PHP, (2) Hardened-PHP, and (3) Suhosin, when called without a second parameter, might allow remote attackers to overwrite arbitrary variables by specifying variable names and values in the string to be parsed. NOTE: it is not clear whether this is a design limitation of the function or a bug in PHP, although it is likely to be regarded as a bug in Hardened-PHP and Suhosin. 2007-06-02T00:00:00.000Z 2025-10-01T23:10:50.000Z
msrc_cve-2007-1397 Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings. 2007-03-02T00:00:00.000Z 2025-10-01T23:10:50.000Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2024:14300-1 python312-3.12.5-2.1 on GA media 2024-08-30T00:00:00Z 2024-08-30T00:00:00Z
opensuse-su-2024:14299-1 python311-3.11.9-7.1 on GA media 2024-08-30T00:00:00Z 2024-08-30T00:00:00Z
opensuse-su-2024:14298-1 python310-3.10.14-7.1 on GA media 2024-08-30T00:00:00Z 2024-08-30T00:00:00Z
opensuse-su-2024:14297-1 python39-3.9.19-7.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14296-1 python38-3.8.19-8.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14295-1 python312-3.12.5-1.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14294-1 python310-setuptools-72.1.0-1.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14293-1 python310-Flask-Cors-4.0.1-1.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14292-1 kubernetes1.28-apiserver-1.28.13-2.1 on GA media 2024-08-29T00:00:00Z 2024-08-29T00:00:00Z
opensuse-su-2024:14291-1 perl-App-cpanminus-1.7047-2.1 on GA media 2024-08-27T00:00:00Z 2024-08-27T00:00:00Z
opensuse-su-2024:14290-1 ffmpeg-5-5.1.4-11.1 on GA media 2024-08-27T00:00:00Z 2024-08-27T00:00:00Z
opensuse-su-2024:14289-1 element-web-1.11.75-1.1 on GA media 2024-08-27T00:00:00Z 2024-08-27T00:00:00Z
opensuse-su-2024:14288-1 element-desktop-1.11.75-1.1 on GA media 2024-08-27T00:00:00Z 2024-08-27T00:00:00Z
opensuse-su-2024:14287-1 forgejo-runner-3.5.1-1.1 on GA media 2024-08-25T00:00:00Z 2024-08-25T00:00:00Z
opensuse-su-2024:0258-2 Security update for chromium 2024-08-23T09:15:52Z 2024-08-23T09:15:52Z
opensuse-su-2024:0258-1 Security update for chromium 2024-08-23T09:15:52Z 2024-08-23T09:15:52Z
opensuse-su-2024:14286-1 frr-10.0.1-2.1 on GA media 2024-08-23T00:00:00Z 2024-08-23T00:00:00Z
opensuse-su-2024:14285-1 chromedriver-128.0.6613.84-1.1 on GA media 2024-08-23T00:00:00Z 2024-08-23T00:00:00Z
opensuse-su-2024:14284-1 libvte-2_91-0-0.76.3-3.1 on GA media 2024-08-22T00:00:00Z 2024-08-22T00:00:00Z
opensuse-su-2024:0257-1 Security update for roundcubemail 2024-08-21T11:35:59Z 2024-08-21T11:35:59Z
opensuse-su-2024:14283-1 xen-4.19.0_02-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14282-1 velociraptor-0.7.0.4.git97.675e45f9-12.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14281-1 libtiff-devel-32bit-4.6.0-5.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14280-1 python310-aiohttp-3.10.5-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14279-1 python-WebOb-doc-1.8.8-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14278-1 libpodofo-devel-0.10.3-2.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14277-1 osc-1.9.0-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14276-1 nodejs-electron-30.4.0-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14275-1 flatpak-1.15.10-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
opensuse-su-2024:14274-1 dovecot23-2.3.21.1-1.1 on GA media 2024-08-20T00:00:00Z 2024-08-20T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-moodle-2024-25982 Msa-24-0005: csrf risk in language import utility 2024-03-31T18:22:12.259Z 2025-05-20T10:02:07.006Z
bit-moodle-2024-25981 Msa-24-0004: forum export did not respect activity group settings 2024-03-31T18:22:20.962Z 2025-05-20T10:02:07.006Z
bit-moodle-2024-25980 Msa-24-0003: h5p attempts report did not respect activity group settings 2024-03-31T18:22:30.148Z 2025-05-20T10:02:07.006Z
bit-moodle-2024-25979 Msa-24-0002: forum search accepted random parameters in its url 2024-03-31T18:22:42.352Z 2025-05-20T10:02:07.006Z
bit-moodle-2024-25978 Msa-24-0001: denial of service risk in file picker unzip functionality 2024-03-31T18:22:52.148Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5551 Moodle: forum summary report shows students from other groups when in separate groups mode 2024-03-06T10:56:40.764Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5550 Moodle: rce due to lfi risk in some misconfigured shared hosting environments 2024-03-06T10:56:51.095Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5549 Moodle: insufficient capability checks when updating the parent of a course category 2024-03-06T10:57:00.585Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5548 Moodle: cache poisoning risk with endpoint revision numbers 2024-03-06T10:57:10.388Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5547 Moodle: xss risk when previewing data in course upload tool 2024-03-06T10:57:21.193Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5546 Moodle: stored xss in quiz grading report via user id number 2024-03-06T10:57:30.894Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5545 Moodle: auto-populated h5p author name causes a potential information leak 2024-03-06T10:57:40.178Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5544 Moodle: stored xss and potential idor risk in wiki comments 2024-03-06T10:57:50.082Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5543 Moodle: duplicating a bigbluebutton activity assigns the same meeting id 2024-03-06T10:57:59.204Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5542 Moodle: students can view other users in "only see own membership" groups 2024-03-06T10:58:09.570Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5541 Moodle: xss risk when using csv grade import method 2024-03-06T10:58:18.062Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5540 Moodle: authenticated remote code execution risk in imscp 2024-03-06T10:58:27.676Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5539 Moodle: authenticated remote code execution risk in lesson 2024-03-06T10:58:37.093Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-35133 Moodle: ssrf risk due to insufficient check on the curl blocked hosts 2024-03-06T10:58:57.190Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-35132 Moodle: minor sql injection risk on mnet sso access control page 2024-03-06T10:59:08.929Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-35131 Moodle: xss risk on groups page 2024-03-06T10:59:19.194Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-30944 Moodle: minor sql injection risk in external wiki method for listing pages 2024-03-06T10:59:29.074Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-30943 Moodle: tinymce loaders susceptible to arbitrary folder creation 2024-03-06T10:59:39.012Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28336 Moodle: teacher can access names of users they do not have permission to access 2024-03-06T10:59:47.976Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28335 Moodle: csrf risk in resetting all templates of a database activity 2024-03-06T10:59:55.273Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28334 Moodle: users' name enumeration possible via idor on learning plans page 2024-03-06T11:00:05.402Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28333 Moodle: pix helper potential mustache code injection risk 2024-03-06T11:00:15.007Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28332 Moodle: algebra filter xss when filter is misconfigured 2024-03-06T11:00:21.482Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28331 Moodle: xss risk when outputting database activity filter data 2024-03-06T11:00:32.094Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-28330 Moodle: authenticated arbitrary file read through malformed backup file 2024-03-06T11:00:43.602Z 2025-05-20T10:02:07.006Z
ID Description Published Updated
ID Description Published Updated
ID Description Updated
var-201011-0242 Unspecified vulnerability in Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102… 2024-05-18T20:15:08.216000Z
var-201011-0229 Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Lin… 2024-05-18T19:41:06.082000Z
var-202405-1111 D-Link DIR-845L router <=v1.01KRb03 is vulnerable to Cross Site Scripting (XSS) via /htdo… 2024-05-18T19:18:57.276000Z
var-200212-0445 NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus 2002 allows r… 2024-05-17T23:13:09.530000Z
var-201806-0643 A remote attacker can bypass the System Manager Mode on the Canon LBP6030w web interface … 2024-05-17T23:12:46.827000Z
var-201908-0922 On ShapeShift KeepKey devices, a side channel for the row-based OLED display was found. T… 2024-05-17T23:12:42.272000Z
var-201905-1276 Samsung S9+, S10, and XCover 4 P(9.0) devices can become temporarily inoperable because o… 2024-05-17T23:12:42.466000Z
var-202009-0817 webinc/js/info.php on D-Link DIR-816L 2.06.B09_BETA and DIR-803 1.04.B02 devices allows X… 2024-05-17T23:12:39.331000Z
var-202004-0537 In IQrouter through 3.3.1, the Lua function diag_set_password in the web-panel allows rem… 2024-05-17T23:12:39.768000Z
var-202003-0211 Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. … 2024-05-17T23:12:39.913000Z
var-202108-0935 Null Pointer Dereference vulnerability exists in D-Link DSL-2740R UK_1.01, which could le… 2024-05-17T23:12:38.462000Z
var-202205-1875 Nginx NJS v0.7.3 was discovered to contain a stack overflow in the function njs_default_m… 2024-05-17T23:12:37.516000Z
var-202212-2302 A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as… 2024-05-17T23:12:36.503000Z
var-202304-2242 A vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been declared as probl… 2024-05-17T23:12:35.310000Z
var-202304-2200 A vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been classified as pro… 2024-05-17T23:12:35.337000Z
var-202401-1127 A vulnerability was found in Tenda i6 1.0.0.9(3857). It has been classified as critical. … 2024-05-17T23:12:33.019000Z
var-202401-1085 A vulnerability, which was classified as critical, was found in Tenda i6 1.0.0.9(3857). T… 2024-05-17T23:12:33.057000Z
var-202401-1064 A vulnerability was found in Tenda i6 1.0.0.9(3857) and classified as critical. This issu… 2024-05-17T23:12:33.078000Z
var-202401-0959 A vulnerability classified as critical was found in D-Link DAP-1360, DIR-300, DIR-615, DI… 2024-05-17T23:12:33.116000Z
var-202401-0541 A vulnerability has been found in Tenda W9 1.0.0.7(4456) and classified as critical. This… 2024-05-17T23:12:33.186000Z
var-202310-0498 D-Link (Non-US) DSL-2750U N300 ADSL2+ and (Non-US) DSL-2730U N150 ADSL2+ are vulnerable t… 2024-05-17T23:12:33.877000Z
var-202403-0791 A vulnerability classified as critical has been found in Tenda AC15 15.03.20_multi. Affec… 2024-05-17T23:12:32.619000Z
var-202401-1251 A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as crit… 2024-05-17T23:12:32.999000Z
var-201708-1535 An issue was discovered in SMA Solar Technology products. If a user simultaneously has Su… 2024-05-17T23:12:17.098000Z
var-202304-2342 A vulnerability was found in Netgear SRX5308 up to 4.3.5-3 and classified as problematic.… 2024-05-17T23:12:06.383000Z
var-202306-2154 A vulnerability was found in Ruijie RG-BCR860 2.5.13 and classified as critical. This iss… 2024-05-17T23:12:05.648000Z
var-202306-1065 A stored cross-site scripting (XSS) vulnerability in the urlFilterList function of Asus R… 2024-05-17T23:12:05.742000Z
var-202401-0480 A vulnerability classified as critical was found in Totolink X2000R_V2 2.0.0-B20230727.10… 2024-05-17T23:12:04.160000Z
var-202403-0865 A vulnerability has been found in Tenda AC15 15.03.05.18/15.03.20_multi and classified as… 2024-05-17T23:12:03.521000Z
var-202401-1150 A vulnerability was found in Tenda AC10U 15.03.06.49_multi_TDE01. It has been declared as… 2024-05-17T23:12:03.997000Z
ID Description Published Updated
jvndb-2015-000066 BGA32.DLL and QBga32.DLL contain multiple vulnerabilities 2015-05-19T13:40+09:00 2015-05-22T14:26+09:00
jvndb-2014-000113 FileMaker Pro vulnerable to cross-site scripting 2014-09-18T20:36+09:00 2015-05-22T11:37+09:00
jvndb-2013-000049 FileMaker Pro vulnerable to cross-site scripting 2013-05-31T15:43+09:00 2015-05-22T11:34+09:00
jvndb-2015-002706 Information Disclosure Vulnerability in JP1/Integrated Management - Universal CMDB 2015-05-21T16:37+09:00 2015-05-21T16:37+09:00
jvndb-2015-002705 Problem with directory permissions in JP1/Automatic Operation 2015-05-21T16:36+09:00 2015-05-21T16:36+09:00
jvndb-2015-000016 Smartphone Passbook for Android information management vulnerability 2015-02-13T14:33+09:00 2015-05-21T10:05+09:00
jvndb-2015-000063 MailDealer vulnerable to cross-site scripting 2015-05-12T14:07+09:00 2015-05-12T14:07+09:00
jvndb-2014-000045 Apache Struts vulnerable to ClassLoader manipulation 2014-04-25T15:37+09:00 2015-05-08T18:01+09:00
jvndb-2015-000062 EasyCTF vulnerable to session management 2015-05-01T14:00+09:00 2015-05-07T16:03+09:00
jvndb-2015-000061 EasyCTF vulnerable to cross-site scripting 2015-05-01T13:49+09:00 2015-05-07T16:02+09:00
jvndb-2015-000060 EasyCTF vulnerable to arbitrary file creation 2015-05-01T13:37+09:00 2015-05-07T16:00+09:00
jvndb-2015-000054 TransmitMail vulnerable to cross-site scripting 2015-04-23T13:47+09:00 2015-04-27T16:13+09:00
jvndb-2015-000055 TransmitMail vulnerable to directory traversal 2015-04-23T14:12+09:00 2015-04-27T16:12+09:00
jvndb-2015-000051 Lhaplus vulnerable to remote code execution 2015-04-09T13:59+09:00 2015-04-16T18:00+09:00
jvndb-2015-000050 Lhaplus vulnerable to directory traversal 2015-04-09T13:57+09:00 2015-04-16T18:00+09:00
jvndb-2015-001959 JBoss RichFaces vulnerable to remote Java code execution 2015-04-14T13:24+09:00 2015-04-14T13:24+09:00
jvndb-2015-000047 bBlog vulnerable to cross-site request forgery 2015-04-07T12:12+09:00 2015-04-09T14:05+09:00
jvndb-2015-000017 Saurus CMS Community Edition vulnerable to cross-site scripting 2015-02-17T14:20+09:00 2015-04-08T15:20+09:00
jvndb-2015-000018 C-BOARD Moyuku vulnerable to arbitrary file creation 2015-02-17T14:21+09:00 2015-04-07T17:57+09:00
jvndb-2015-000048 Maruo Editor vulnerable to buffer overflow 2015-04-02T12:30+09:00 2015-04-07T17:28+09:00
jvndb-2015-000046 All in One SEO Pack information management vulnerability 2015-03-31T13:48+09:00 2015-04-07T17:27+09:00
jvndb-2015-000044 WordPress theme flashy vulnerable to cross-site scripting 2015-03-26T14:04+09:00 2015-04-07T17:25+09:00
jvndb-2015-000043 Fumy Teacher's Schedule Board vulnerable to cross-site scripting 2015-03-26T14:00+09:00 2015-04-07T17:25+09:00
jvndb-2015-000045 Android OS may behave as an open resolver 2015-03-27T14:12+09:00 2015-03-27T14:12+09:00
jvndb-2015-000041 MP Form Mail CGI eCommerce edition vulnerable to code injection 2015-03-20T12:30+09:00 2015-03-24T15:11+09:00
jvndb-2015-000039 eXtplorer vulnerable to cross-site scripting 2015-03-17T13:41+09:00 2015-03-20T14:30+09:00
jvndb-2015-000037 All In One WP Security & Firewall vulnerable to SQL injection 2015-03-06T13:45+09:00 2015-03-11T17:55+09:00
jvndb-2015-000038 All In One WP Security & Firewall vulnerable to cross-site request forgery 2015-03-06T13:46+09:00 2015-03-11T17:42+09:00
jvndb-2015-000036 Maroyaka Relay Novel vulnerable to cross-site scripting 2015-03-04T14:49+09:00 2015-03-06T15:30+09:00
jvndb-2015-000035 Maroyaka Image Album vulnerable to cross-site scripting 2015-03-04T14:49+09:00 2015-03-06T15:21+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:02537-1 Security update for the Linux Kernel 2025-07-28T15:09:33Z 2025-07-28T15:09:33Z
suse-su-2025:20533-1 Security update for pam-config 2025-07-28T14:34:42Z 2025-07-28T14:34:42Z
suse-su-2025:20532-1 Security update for perl 2025-07-28T14:33:40Z 2025-07-28T14:33:40Z
suse-su-2025:20510-1 Security update for docker 2025-07-28T14:33:11Z 2025-07-28T14:33:11Z
suse-su-2025:20509-1 Security update for jbigkit 2025-07-28T14:28:22Z 2025-07-28T14:28:22Z
suse-su-2025:02534-1 Security update for salt 2025-07-28T12:45:29Z 2025-07-28T12:45:29Z
suse-su-2025:02531-1 Security update for MozillaFirefox 2025-07-28T06:04:33Z 2025-07-28T06:04:33Z
suse-su-2025:02530-1 Security update for qemu 2025-07-25T22:20:33Z 2025-07-25T22:20:33Z
suse-su-2025:02529-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLE 2025-07-25T17:35:29Z 2025-07-25T17:35:29Z
suse-su-2025:02528-1 Security update for polkit 2025-07-25T14:36:19Z 2025-07-25T14:36:19Z
suse-su-2025:02527-1 Security update for polkit 2025-07-25T14:34:26Z 2025-07-25T14:34:26Z
suse-su-2025:02525-1 Security update for polkit 2025-07-25T13:28:46Z 2025-07-25T13:28:46Z
suse-su-2025:02523-1 Security update for python 2025-07-25T09:47:46Z 2025-07-25T09:47:46Z
suse-su-2025:02522-1 Security update for libarchive 2025-07-25T09:04:20Z 2025-07-25T09:04:20Z
suse-su-2025:02521-1 Security update for gnutls 2025-07-25T09:04:14Z 2025-07-25T09:04:14Z
suse-su-2025:02520-1 Security update for gnutls 2025-07-25T09:04:08Z 2025-07-25T09:04:08Z
suse-su-2025:02516-1 Security update for ovmf 2025-07-24T20:17:11Z 2025-07-24T20:17:11Z
suse-su-2025:02514-1 Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP6) 2025-07-24T18:04:14Z 2025-07-24T18:04:14Z
suse-su-2025:20508-1 Security update for glib2 2025-07-24T11:51:08Z 2025-07-24T11:51:08Z
suse-su-2025:20507-1 Security update for gstreamer-plugins-base 2025-07-24T11:46:58Z 2025-07-24T11:46:58Z
suse-su-2025:20506-1 Security update for jq 2025-07-24T11:41:34Z 2025-07-24T11:41:34Z
suse-su-2025:20531-1 Security update for python-requests 2025-07-24T11:31:36Z 2025-07-24T11:31:36Z
suse-su-2025:02511-1 Security update for ImageMagick 2025-07-24T09:10:14Z 2025-07-24T09:10:14Z
suse-su-2025:02510-1 Security update for ImageMagick 2025-07-24T09:10:02Z 2025-07-24T09:10:02Z
suse-su-2025:02507-1 Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5) 2025-07-24T06:50:40Z 2025-07-24T06:50:40Z
suse-su-2025:20487-1 Security update for salt 2025-07-23T13:41:40Z 2025-07-23T13:41:40Z
suse-su-2025:20504-1 Security update 5.0.5 for Multi-Linux Manager Client Tools, Salt and Salt Bundle 2025-07-23T13:34:01Z 2025-07-23T13:34:01Z
suse-su-2025:02502-1 Security update for salt 2025-07-23T12:48:03Z 2025-07-23T12:48:03Z
suse-su-2025:02501-1 Security update for salt 2025-07-23T12:47:18Z 2025-07-23T12:47:18Z
suse-su-2025:02500-1 Security update for salt 2025-07-23T12:46:43Z 2025-07-23T12:46:43Z
ID Description Published Updated
cnvd-2025-28856 Tenda AX3 SetFirewallCfg缓冲区溢出漏洞 2023-03-28 2025-11-19
cnvd-2025-28855 Tenda AC18 setUsbUnload函数命令注入漏洞 2023-05-08 2025-11-19
cnvd-2025-28854 Tenda AX3 form_fast_setting_wifi_set函数堆栈缓冲区溢出漏洞 2023-08-29 2025-11-19
cnvd-2025-28853 Tenda AC18 fromAddressNat函数堆栈缓冲区溢出漏洞 2024-03-14 2025-11-19
cnvd-2025-28852 Tenda AC18 AddressNat函数栈缓冲区溢出漏洞 2024-03-14 2025-11-19
cnvd-2025-28851 Tenda AX3 saveParentControlInfo函数缓冲区溢出漏洞 2025-08-26 2025-11-19
cnvd-2025-28850 Tenda AX3 fromSetSysTime函数缓冲区溢出漏洞 2025-08-26 2025-11-19
cnvd-2025-28849 Tenda AX3 fromAdvSetMacMtuWan函数缓冲区溢出漏洞 2025-08-26 2025-11-19
cnvd-2025-28848 Tenda W12硬编码漏洞 2025-09-04 2025-11-19
cnvd-2025-28847 Tenda W12空指针取消引用漏洞 2025-10-15 2025-11-19
cnvd-2025-28846 Tenda AX3 fromSetWifiGusetBasic函数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28845 Tenda AX3 wlSetExternParameter函数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28844 Tenda AX3 get_parentControl_list_Info函数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28843 Tenda AX3 saveParentControlInfo函数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28842 Tenda AX-1803 SetSysTimeCfg函数栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28841 Tenda AX-1803 sub_4F55C函数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28840 Tenda AC18 ssid参数跨站脚本漏洞 2025-11-14 2025-11-19
cnvd-2025-28839 Tenda AC18 guestSsid参数堆栈缓冲区溢出漏洞 2025-11-14 2025-11-19
cnvd-2025-28823 Student Record System admin-profile.php文件跨站脚本漏洞 2025-11-18 2025-11-19
cnvd-2025-28822 Student Record System register.php文件SQL注入漏洞 2025-11-18 2025-11-19
cnvd-2025-28821 Student Record System password-recovery.php文件SQL注入漏洞 2025-11-18 2025-11-19
cnvd-2025-28820 Student Record System change-password.php文件SQL注入漏洞 2025-11-18 2025-11-19
cnvd-2025-28819 Student Record System admin-profile.php文件SQL注入漏洞 2025-11-18 2025-11-19
cnvd-2025-28818 Student Record System add-subject.php文件SQL注入漏洞 2025-11-18 2025-11-19
cnvd-2025-28797 D-Link DIR-816L缓冲区溢出漏洞 2025-11-18 2025-11-19
cnvd-2025-28796 D-Link DIR-816L缓冲区溢出漏洞 2025-11-18 2025-11-19
cnvd-2025-28795 D-Link DIR-816L缓冲区溢出漏洞 2025-11-18 2025-11-19
cnvd-2025-28794 D-Link DIR-823G拒绝服务漏洞 2025-11-18 2025-11-19
cnvd-2025-28732 WordPress插件Chart Expert跨站脚本漏洞 2025-11-14 2025-11-19
cnvd-2025-28731 WordPress插件Auto Amazon Links – Amazon Associates Affiliate任意文件读取漏洞 2025-11-14 2025-11-19
ID Description Published Updated
certfr-2025-avi-0234 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
certfr-2025-avi-0233 Multiples vulnérabilités dans les produits IBM 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
certfr-2025-avi-0232 Vulnérabilité dans Liferay 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
certfr-2025-avi-0231 Vulnérabilité dans Microsoft Office 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
certfr-2025-avi-0230 Vulnérabilité dans Tenable Nessus Agent 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0235 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0234 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0233 Multiples vulnérabilités dans les produits IBM 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0232 Vulnérabilité dans Liferay 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0231 Vulnérabilité dans Microsoft Office 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
CERTFR-2025-AVI-0230 Vulnérabilité dans Tenable Nessus Agent 2025-03-21T00:00:00.000000 2025-03-21T00:00:00.000000
certfr-2025-avi-0229 Vulnérabilité dans Veeam Backup & Replication 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
certfr-2025-avi-0228 Multiples vulnérabilités dans Spring Security 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
certfr-2025-avi-0227 Vulnérabilité dans Liferay 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
certfr-2025-avi-0226 Vulnérabilité dans Google Chrome 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
certfr-2025-avi-0225 Vulnérabilité dans Drupal 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
CERTFR-2025-AVI-0229 Vulnérabilité dans Veeam Backup & Replication 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
CERTFR-2025-AVI-0228 Multiples vulnérabilités dans Spring Security 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
CERTFR-2025-AVI-0227 Vulnérabilité dans Liferay 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
CERTFR-2025-AVI-0226 Vulnérabilité dans Google Chrome 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
CERTFR-2025-AVI-0225 Vulnérabilité dans Drupal 2025-03-20T00:00:00.000000 2025-03-20T00:00:00.000000
certfr-2025-avi-0224 Multiples vulnérabilités dans les produits Synology 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
certfr-2025-avi-0223 Multiples vulnérabilités dans Suricata 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
certfr-2025-avi-0222 Vulnérabilité dans MongoDB C Driver 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
certfr-2025-avi-0221 Multiples vulnérabilités dans HPE Aruba Networking AOS-CX 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
certfr-2025-avi-0219 Multiples vulnérabilités dans GLPI 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
certfr-2025-avi-0218 Multiples vulnérabilités dans Atlassian Jira 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
CERTFR-2025-AVI-0224 Multiples vulnérabilités dans les produits Synology 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
CERTFR-2025-AVI-0223 Multiples vulnérabilités dans Suricata 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
CERTFR-2025-AVI-0222 Vulnérabilité dans MongoDB C Driver 2025-03-19T00:00:00.000000 2025-03-19T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated