Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-53132 |
7.8 (3.1)
|
Win32k Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:11.377Z | 2026-02-26T17:49:15.770Z |
| CVE-2025-48581 |
8.4 (3.1)
|
In VerifyNoOverlapInSessions of apexd.cpp, there … |
Google |
Android |
2025-09-04T18:34:41.808Z | 2026-02-26T17:49:15.920Z |
| CVE-2025-22414 |
7.8 (3.1)
|
In FrpBypassAlertActivity of FrpBypassAlertActivi… |
Google |
Android |
2025-09-04T19:23:53.589Z | 2026-02-26T17:49:15.305Z |
| CVE-2024-49731 |
4 (3.1)
|
In apk-versions.txt, there is a possible corrupti… |
Google |
Android |
2025-09-04T19:18:59.502Z | 2026-02-26T17:49:15.593Z |
| CVE-2025-53142 |
7 (3.1)
|
Microsoft Brokering File System Elevation of Privilege… |
Microsoft |
Windows 11 version 22H2 |
2025-08-12T17:10:16.548Z | 2026-02-26T17:49:14.160Z |
| CVE-2025-53140 |
7 (3.1)
|
Windows Kernel Transaction Manager Elevation of Privil… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:15.355Z | 2026-02-26T17:49:14.623Z |
| CVE-2025-26439 |
7.8 (3.1)
|
In getComponentName of AccessibilitySettingsUtils… |
Google |
Android |
2025-09-04T19:28:10.842Z | 2026-02-26T17:49:14.017Z |
| CVE-2025-26431 |
7.8 (3.1)
|
In setupAccessibilityServices of AccessibilityFra… |
Google |
Android |
2025-09-04T19:28:09.809Z | 2026-02-26T17:49:14.396Z |
| CVE-2025-26419 |
3.3 (3.1)
|
In initPhoneSwitch of SystemSettingsFragment.java… |
Google |
Android |
2025-09-04T19:28:08.789Z | 2026-02-26T17:49:14.792Z |
| CVE-2025-22415 |
4 (3.1)
|
In android_app of Android.bp, there is a possible… |
Google |
Android |
2025-09-04T19:23:54.678Z | 2026-02-26T17:49:14.948Z |
| CVE-2025-55244 |
9 (3.1)
|
Azure Bot Service Elevation of Privilege Vulnerability |
Microsoft |
Azure Bot Service |
2025-09-04T23:09:49.557Z | 2026-02-26T17:49:13.695Z |
| CVE-2025-55241 |
10 (3.1)
|
Azure Entra ID Elevation of Privilege Vulnerability |
Microsoft |
Microsoft Entra |
2025-09-04T23:09:53.490Z | 2026-02-26T17:49:13.128Z |
| CVE-2025-54914 |
10 (3.1)
|
Azure Networking Elevation of Privilege Vulnerability |
Microsoft |
Networking |
2025-09-04T23:09:51.840Z | 2026-02-26T17:49:13.322Z |
| CVE-2025-53144 |
8.8 (3.1)
|
Microsoft Message Queuing (MSMQ) Remote Code Execution… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:17.749Z | 2026-02-26T17:49:13.517Z |
| CVE-2025-53143 |
8.8 (3.1)
|
Microsoft Message Queuing (MSMQ) Remote Code Execution… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:17.164Z | 2026-02-26T17:49:13.845Z |
| CVE-2025-53151 |
7.8 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2025-08-12T17:10:20.695Z | 2026-02-26T17:49:12.091Z |
| CVE-2025-53149 |
7.8 (3.1)
|
Kernel Streaming WOW Thunk Service Driver Elevation of… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:20.207Z | 2026-02-26T17:49:12.614Z |
| CVE-2025-53145 |
8.8 (3.1)
|
Microsoft Message Queuing (MSMQ) Remote Code Execution… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:18.320Z | 2026-02-26T17:49:12.913Z |
| CVE-2025-32320 |
7.8 (3.1)
|
In System UI, there is a possible way to view oth… |
Google |
Android |
2025-09-05T16:10:08.196Z | 2026-02-26T17:49:12.446Z |
| CVE-2025-32318 |
8.8 (3.1)
|
In Skia, there is a possible out of bounds write … |
Google |
Android |
2025-09-05T16:10:07.061Z | 2026-02-26T17:49:12.771Z |
| CVE-2025-9961 |
8.6 (4.0)
|
Authenticated RCE by CWMP binary |
TP-Link Systems Inc. |
AX10 V1/V1.2/V2/V2.6/V3/V3.6 |
2025-09-06T06:50:59.558Z | 2026-02-26T17:49:11.572Z |
| CVE-2025-53720 |
8 (3.1)
|
Windows Routing and Remote Access Service (RRAS) Remot… |
Microsoft |
Windows Server 2008 R2 Service Pack 1 |
2025-08-12T17:10:25.949Z | 2026-02-26T17:49:11.377Z |
| CVE-2025-53155 |
7.8 (3.1)
|
Windows Hyper-V Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:23.016Z | 2026-02-26T17:49:11.724Z |
| CVE-2025-39698 |
8.8 (3.1)
|
io_uring/futex: ensure io_futex_wait() cleans up prope… |
Linux |
Linux |
2025-09-05T17:21:04.360Z | 2026-02-26T17:49:11.880Z |
| CVE-2023-31322 |
8.7 (3.1)
|
Type confusion in the ASP could allow an attacker… |
AMD |
AMD Radeon™ RX 7000 Series Graphics Products |
2025-09-06T16:32:40.105Z | 2026-02-26T17:49:11.064Z |
| CVE-2025-53724 |
7.8 (3.1)
|
Windows Push Notifications Apps Elevation of Privilege… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:28.394Z | 2026-02-26T17:49:10.275Z |
| CVE-2025-53723 |
7.8 (3.1)
|
Windows Hyper-V Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:27.825Z | 2026-02-26T17:49:10.769Z |
| CVE-2024-36326 |
8.4 (3.1)
|
Missing authorization in AMD RomArmor could allow… |
AMD |
AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics |
2025-09-06T17:25:46.065Z | 2026-02-26T17:49:10.017Z |
| CVE-2024-21947 |
7.5 (3.1)
|
Improper input validation in the system managemen… |
AMD |
AMD Ryzen™ Threadripper™ 3000 Processors |
2025-09-06T17:10:47.951Z | 2026-02-26T17:49:10.599Z |
| CVE-2023-31325 |
7.2 (3.1)
|
Improper isolation of shared resources on System-… |
AMD |
AMD Ryzen™ 8000 Series Desktop Processors |
2025-09-06T16:42:22.866Z | 2026-02-26T17:49:10.924Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-11503 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
PHPGurukul Beauty Parlour Management System manage-ser… |
PHPGurukul |
Beauty Parlour Management System |
2025-10-08T20:02:11.395Z | 2026-02-24T06:52:49.608Z |
| CVE-2025-11475 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
projectworlds Advanced Library Management System view_… |
projectworlds |
Advanced Library Management System |
2025-10-08T13:02:06.025Z | 2026-02-24T06:52:07.874Z |
| CVE-2025-11434 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Student Transcript Processing System logi… |
itsourcecode |
Student Transcript Processing System |
2025-10-08T05:02:08.754Z | 2026-02-24T06:51:40.565Z |
| CVE-2025-11433 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
itsourcecode Leave Management System Query Parameter c… |
itsourcecode |
Leave Management System |
2025-10-08T05:02:05.738Z | 2026-02-24T06:51:28.596Z |
| CVE-2025-11426 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
projectworlds Advanced Library Management System edit_… |
projectworlds |
Advanced Library Management System |
2025-10-08T03:02:05.413Z | 2026-02-24T06:51:02.439Z |
| CVE-2025-11423 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
Tenda CH22 SafeEmailFilter formSafeEmailFilter memory … |
Tenda |
CH22 |
2025-10-08T02:02:06.119Z | 2026-02-24T06:50:37.437Z |
| CVE-2025-11416 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
PHPGurukul Beauty Parlour Management System invoices.p… |
PHPGurukul |
Beauty Parlour Management System |
2025-10-07T23:02:10.983Z | 2026-02-24T06:49:52.910Z |
| CVE-2025-11413 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
GNU Binutils Linker elflink.c elf_link_add_object_symb… |
GNU |
Binutils |
2025-10-07T22:02:12.368Z | 2026-02-24T06:49:14.455Z |
| CVE-2025-11390 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
PHPGurukul Cyber Cafe Management System POST Parameter… |
PHPGurukul |
Cyber Cafe Management System |
2025-10-07T12:02:06.552Z | 2026-02-24T06:48:42.283Z |
| CVE-2025-11389 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC15 saveAutoQos stack-based overflow |
Tenda |
AC15 |
2025-10-07T11:32:07.151Z | 2026-02-24T06:48:28.051Z |
| CVE-2025-11350 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System b… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-07T04:02:06.416Z | 2026-02-24T06:47:03.230Z |
| CVE-2025-11348 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System i… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-07T03:02:06.465Z | 2026-02-24T06:46:38.159Z |
| CVE-2025-11334 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System v… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-06T11:32:06.784Z | 2026-02-24T06:45:50.648Z |
| CVE-2025-11332 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
CmsEasy URL view.php cross site scripting |
n/a |
CmsEasy |
2025-10-06T10:32:05.897Z | 2026-02-24T06:45:36.543Z |
| CVE-2025-11326 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC18 WifiMacFilterSet stack-based overflow |
Tenda |
AC18 |
2025-10-06T07:32:07.259Z | 2026-02-24T06:44:41.452Z |
| CVE-2025-11325 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC18 fast_setting_pppoe_set stack-based overflow |
Tenda |
AC18 |
2025-10-06T07:02:07.176Z | 2026-02-24T06:44:27.873Z |
| CVE-2025-11303 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 mp command injection |
Belkin |
F9K1015 |
2025-10-05T20:32:05.809Z | 2026-02-24T06:43:43.623Z |
| CVE-2025-11301 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formWlanSetupWPS buffer overflow |
Belkin |
F9K1015 |
2025-10-05T19:32:05.383Z | 2026-02-24T06:43:18.442Z |
| CVE-2025-11300 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formWlanMP buffer overflow |
Belkin |
F9K1015 |
2025-10-05T19:02:05.199Z | 2026-02-24T06:43:06.913Z |
| CVE-2025-11298 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 formSetWanStatic command injection |
Belkin |
F9K1015 |
2025-10-05T18:02:05.803Z | 2026-02-24T06:42:41.799Z |
| CVE-2025-11297 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formSetLanguage buffer overflow |
Belkin |
F9K1015 |
2025-10-05T17:32:06.380Z | 2026-02-24T06:42:29.131Z |
| CVE-2025-11292 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 formBSSetSitesurvey command injection |
Belkin |
F9K1015 |
2025-10-05T14:02:05.574Z | 2026-02-24T06:41:24.365Z |
| CVE-2025-11289 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
westboy CicadasCMS Template Management TemplateFileSer… |
westboy |
CicadasCMS |
2025-10-05T10:32:05.111Z | 2026-02-24T06:40:59.852Z |
| CVE-2025-11288 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
CRMEB GET Parameter product sql injection |
n/a |
CRMEB |
2025-10-05T07:32:06.514Z | 2026-02-24T06:40:48.359Z |
| CVE-2025-11277 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Open Asset Import Library Assimp Q3DLoader.cpp InternR… |
Open Asset Import Library |
Assimp |
2025-10-05T01:32:07.068Z | 2026-02-24T06:40:34.974Z |
| CVE-2025-68675 |
N/A
|
Apache Airflow: proxy credentials for various provider… |
Apache Software Foundation |
Apache Airflow |
2026-01-16T10:23:25.946Z | 2026-02-24T05:48:05.537Z |
| CVE-2025-15008 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Tenda WH450 HTTP Request L7Port stack-based overflow |
Tenda |
WH450 |
2025-12-22T02:02:07.391Z | 2026-02-24T06:02:16.445Z |
| CVE-2025-15006 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
Tenda WH450 HTTP Request CheckTools stack-based overflow |
Tenda |
WH450 |
2025-12-22T01:02:06.922Z | 2026-02-24T06:01:47.799Z |
| CVE-2025-15005 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
CouchCMS reCAPTCHA config.example.php hard-coded key |
n/a |
CouchCMS |
2025-12-22T00:32:07.346Z | 2026-02-24T06:01:34.995Z |
| CVE-2025-15003 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
SeaCMS admin_video.php sql injection |
n/a |
SeaCMS |
2025-12-21T23:32:07.728Z | 2026-02-24T06:01:02.597Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-11277 | A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function… | 2025-10-05T02:15:37.470 | 2026-02-24T07:16:22.227 |
| fkie_cve-2025-68675 | In Apache Airflow versions before 3.1.6, and 2.11.1 the proxies and proxy fields within a Connectio… | 2026-01-16T11:16:03.913 | 2026-02-24T06:16:35.033 |
| fkie_cve-2025-15008 | A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /gof… | 2025-12-22T03:15:47.077 | 2026-02-24T06:16:34.027 |
| fkie_cve-2025-15006 | A weakness has been identified in Tenda WH450 1.0.0.18. Affected by this vulnerability is an unknow… | 2025-12-22T02:16:01.343 | 2026-02-24T06:16:33.677 |
| fkie_cve-2025-15005 | A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the f… | 2025-12-22T01:16:06.167 | 2026-02-24T06:16:33.497 |
| fkie_cve-2025-15003 | A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the … | 2025-12-22T00:15:49.923 | 2026-02-24T06:16:33.150 |
| fkie_cve-2025-14991 | A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0. Th… | 2025-12-21T04:16:04.897 | 2026-02-24T06:16:32.250 |
| fkie_cve-2025-14990 | A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System 1.… | 2025-12-21T04:16:04.660 | 2026-02-24T06:16:32.070 |
| fkie_cve-2025-14968 | A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issu… | 2025-12-19T20:15:55.040 | 2026-02-24T06:16:31.713 |
| fkie_cve-2025-14966 | A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpa… | 2025-12-19T20:15:50.363 | 2026-02-24T06:16:31.150 |
| fkie_cve-2025-14962 | A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown … | 2025-12-19T19:15:50.017 | 2026-02-24T06:16:30.737 |
| fkie_cve-2025-14959 | A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some un… | 2025-12-19T18:15:48.580 | 2026-02-24T06:16:30.547 |
| fkie_cve-2025-14957 | A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuild… | 2025-12-19T17:15:51.657 | 2026-02-24T06:16:30.357 |
| fkie_cve-2025-14956 | A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the fun… | 2025-12-19T17:15:51.470 | 2026-02-24T06:16:30.163 |
| fkie_cve-2025-14955 | A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function og… | 2025-12-19T17:15:51.270 | 2026-02-24T06:16:29.957 |
| fkie_cve-2025-14954 | A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogs_pfcp_pdr_find_o… | 2025-12-19T16:15:55.050 | 2026-02-24T06:16:29.760 |
| fkie_cve-2025-14953 | A flaw has been found in Open5GS up to 2.7.5. This impacts the function ogs_pfcp_handle_create_pdr … | 2025-12-19T16:15:54.863 | 2026-02-24T06:16:29.557 |
| fkie_cve-2025-14952 | A vulnerability was detected in Campcodes Supplier Management System 1.0. This affects an unknown f… | 2025-12-19T15:15:55.657 | 2026-02-24T06:16:29.370 |
| fkie_cve-2025-14950 | A weakness has been identified in code-projects Scholars Tracking System 1.0. The affected element … | 2025-12-19T14:15:50.583 | 2026-02-24T06:16:29.007 |
| fkie_cve-2025-14899 | A weakness has been identified in CodeAstro Real Estate Management System 1.0. This impacts an unkn… | 2025-12-19T01:16:05.670 | 2026-02-24T06:16:28.290 |
| fkie_cve-2025-14898 | A security flaw has been discovered in CodeAstro Real Estate Management System 1.0. This affects an… | 2025-12-19T00:15:49.473 | 2026-02-24T06:16:28.113 |
| fkie_cve-2025-14889 | A security flaw has been discovered in Campcodes Advanced Voting Management System 1.0. The impacte… | 2025-12-18T20:15:55.100 | 2026-02-24T06:16:27.713 |
| fkie_cve-2025-14879 | A weakness has been identified in Tenda WH450 1.0.0.18. Affected is an unknown function of the file… | 2025-12-18T17:15:46.840 | 2026-02-24T06:16:27.527 |
| fkie_cve-2025-14878 | A security flaw has been discovered in Tenda WH450 1.0.0.18. This impacts an unknown function of th… | 2025-12-18T16:15:52.960 | 2026-02-24T06:16:27.343 |
| fkie_cve-2025-14856 | A security vulnerability has been detected in y_project RuoYi up to 4.8.1. The affected element is … | 2025-12-18T02:15:46.143 | 2026-02-24T06:16:26.970 |
| fkie_cve-2025-14834 | A weakness has been identified in code-projects Simple Stock System 1.0. This affects an unknown fu… | 2025-12-17T23:15:56.430 | 2026-02-24T06:16:26.253 |
| fkie_cve-2025-14694 | A vulnerability was found in ketr JEPaaS up to 7.2.8. This impacts the function readAllPostil of th… | 2025-12-15T01:15:38.127 | 2026-02-24T06:16:26.077 |
| fkie_cve-2025-14674 | A vulnerability was found in aizuda snail-job up to 1.6.0. Affected by this vulnerability is the fu… | 2025-12-14T18:15:43.977 | 2026-02-24T06:16:25.897 |
| fkie_cve-2025-14673 | A vulnerability has been found in gmg137 snap7-rs up to 1.142.1. Affected is the function snap7_rs:… | 2025-12-14T18:15:43.783 | 2026-02-24T06:16:25.723 |
| fkie_cve-2025-14672 | A flaw has been found in gmg137 snap7-rs up to 1.142.1. This impacts the function TSnap7MicroClient… | 2025-12-14T17:15:39.980 | 2026-02-24T06:16:25.537 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-fphv-qqwf-v9gp |
6.5 (3.1)
|
The Shield Security plugin for WordPress is vulnerable to Cross-Site Request Forgery in all version… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-c783-xf2p-gqh6 |
7.2 (3.1)
|
The WP Customer Reviews plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via th… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-8m9g-3hqh-3f45 |
6.4 (3.1)
|
The Groups plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'grou… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-8f6v-m94c-843c |
4.4 (3.1)
|
The PostmarkApp Email Integrator plugin for WordPress is vulnerable to Stored Cross-Site Scripting … | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-89v4-vh9p-rj53 |
6.4 (3.1)
|
The Advance Block Extend plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the … | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-7v8v-vq7m-6xxj |
4.4 (3.1)
|
The TalkJS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in … | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-7fcp-xw65-jj37 |
6.4 (3.1)
|
The Advanced Custom Fields: Font Awesome Field plugin for WordPress is vulnerable to Cross-Site Scr… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-52hj-3g4x-h9g2 |
10.0 (4.0)
|
OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a ty… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-2mm4-m5m7-qxvr |
4.4 (3.1)
|
The Tennis Court Bookings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via adm… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-2h7x-xp9w-mxwc |
9.8 (3.1)
|
The s2Member plugin for WordPress is vulnerable to privilege escalation via account takeover in all… | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-27f4-925x-grx7 |
9.8 (3.1)
|
The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up … | 2026-02-19T18:31:50Z | 2026-02-19T18:31:50Z |
| ghsa-xwqg-rc23-pwjj |
7.2 (3.1)
|
The CTX Feed – WooCommerce Product Feed Manager plugin for WordPress is vulnerable to unauthorized … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-xf2h-44c3-m634 |
6.4 (3.1)
|
The Drift theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in al… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-x7xv-7m65-qgq2 |
7.5 (3.1)
|
The GDPR Cookie Consent plugin for WordPress is vulnerable to unauthorized access of data due to a … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-x5m6-cw78-7xrw |
6.4 (3.1)
|
The StatCounter – Free Real Time Visitor Stats plugin for WordPress is vulnerable to Stored Cross-S… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-w64w-h2r9-c284 |
6.4 (3.1)
|
The Smartsupp – live chat, AI shopping assistant and chatbots plugin for WordPress is vulnerable to… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-w3jh-c422-596p |
8.8 (3.1)
|
The NewsBlogger theme for WordPress is vulnerable to Cross-Site Request Forgery in versions 0.2.5.6… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-vrhw-wccx-mc8w |
6.4 (3.1)
|
The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-vjww-2j24-c357 |
9.8 (3.1)
|
The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions up to,… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-qqx4-ccm8-48mc |
5.3 (3.1)
|
The Breadcrumb NavXT plugin for WordPress is vulnerable to authorization bypass through user-contro… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-qc95-pwfh-96qq |
6.4 (3.1)
|
The Printful Integration for WooCommerce plugin for WordPress is vulnerable to Server-Side Request … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-q54q-h92j-2fm3 |
6.5 (3.1)
|
The Aruba HiSpeed Cache plugin for WordPress is vulnerable to unauthorized modification of data due… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-mc3j-rvrg-782p |
4.3 (3.1)
|
The Page Title, Description & Open Graph Updater plugin for WordPress is vulnerable to Cross-Site R… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-m8v5-px35-v2vx |
4.3 (3.1)
|
The Mailchimp List Subscribe Form plugin for WordPress is vulnerable to Cross-Site Request Forgery … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-j78x-7p3c-fhw7 |
9.8 (3.1)
|
The Clasifico Listing plugin for WordPress is vulnerable to privilege escalation in versions up to,… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-gg48-7983-fghq |
6.4 (3.1)
|
The Renden theme for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in a… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-fr28-xgc9-rqcr |
6.1 (3.1)
|
The iXML – Google XML sitemap generator plugin for WordPress is vulnerable to Reflected Cross-Site … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-fqr3-6hfc-hrf6 |
5.3 (3.1)
|
The Popup Builder – Create highly converting, mobile friendly marketing popups. plugin for WordPres… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-f54r-2cjp-2jhw |
6.4 (3.1)
|
The Album and Image Gallery plus Lightbox plugin for WordPress is vulnerable to Stored Cross-Site S… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-cq95-5r52-wxw4 |
5.3 (3.1)
|
The Checkout Field Manager (Checkout Manager) for WooCommerce plugin for WordPress is vulnerable to… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2021-365 |
|
Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when perfor… | vyper | 2021-10-06T18:15:00Z | 2021-10-11T01:16:43.176882Z |
| pysec-2021-364 |
|
Scrapy-splash is a library which provides Scrapy and JavaScript integration. In affected … | scrapy-splash | 2021-10-05T21:15:00Z | 2021-10-11T01:16:42.816754Z |
| pysec-2021-363 |
|
Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAu… | scrapy | 2021-10-06T18:15:00Z | 2021-10-11T01:16:42.905582Z |
| pysec-2021-361 |
|
An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x … | neutron | 2021-08-31T18:15:00Z | 2021-10-11T01:16:41.242054Z |
| pysec-2021-360 |
|
OpenStack Neutron before 16.4.1, 17.x before 17.1.3, and 18.0.0 allows hardware address i… | neutron | 2021-08-23T05:15:00Z | 2021-10-11T01:16:41.119513Z |
| pysec-2021-359 |
|
Flask-AppBuilder is an application development framework, built on top of Flask. In affec… | flask-appbuilder | 2021-09-08T18:15:00Z | 2021-10-11T01:16:40.573932Z |
| pysec-2021-358 |
|
A flaw was found in Ansible, where a user's controller is vulnerable to template injectio… | ansible | 2021-09-22T12:15:00Z | 2021-10-11T01:16:39.746753Z |
| pysec-2021-357 |
|
The Unicorn framework through 0.35.3 for Django allows XSS via component.name. | django-unicorn | 2021-10-07T06:15:00Z | 2021-10-08T02:27:35.256995Z |
| pysec-2021-356 |
|
nltk is vulnerable to Inefficient Regular Expression Complexity | nltk | 2021-09-27T13:15:00Z | 2021-10-01T22:29:03.465380Z |
| pysec-2021-355 |
|
“Shuup” application in versions 0.4.2 to 2.10.8 is affected by the “Formula Injection” vu… | shuup | 2021-09-29T14:15:00Z | 2021-09-30T23:26:29.598032Z |
| pysec-2021-354 |
|
furlongm openvpn-monitor through 1.1.3 allows Authorization Bypass to disconnect arbitrar… | openvpn-monitor | 2021-09-27T06:15:00Z | 2021-09-30T23:26:26.851532Z |
| pysec-2021-353 |
|
furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN manag… | openvpn-monitor | 2021-09-27T06:15:00Z | 2021-09-30T23:26:26.808242Z |
| pysec-2021-352 |
|
furlongm openvpn-monitor through 1.1.3 allows CSRF to disconnect an arbitrary client. | openvpn-monitor | 2021-09-27T06:15:00Z | 2021-09-30T23:26:26.774511Z |
| pysec-2021-351 |
|
ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP… | esphome | 2021-09-28T16:15:00Z | 2021-09-30T23:26:26.067991Z |
| pysec-2021-350 |
|
In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting … | shuup | 2021-09-30T08:15:00Z | 2021-09-30T10:32:36.636402Z |
| pysec-2017-35 |
|
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.1… | salt | 2017-08-23T14:29:00Z | 2021-09-29T02:54:43.147751Z |
| pysec-2021-338 |
|
Leo Editor v6.2.1 was discovered to contain a regular expression denial of service (ReDoS… | leo | 2021-09-22T20:15:00Z | 2021-09-26T23:50:00.616119Z |
| pysec-2021-349 |
|
XXE vulnerability in 'XML2Dict' version 0.2.2 allows an attacker to cause a denial of service. | xml2dict | 2021-06-30T12:15:00Z | 2021-09-26T23:33:39.694828Z |
| pysec-2018-103 |
|
ymlref allows code injection. | ymlref | 2018-12-17T19:29:00Z | 2021-09-26T23:33:39.795406Z |
| pysec-2021-348 |
|
Command Injection in Simiki v1.6.2.1 and prior allows remote attackers to execute arbitra… | simiki | 2021-08-27T19:15:00Z | 2021-09-26T23:33:04.328365Z |
| pysec-2021-347 |
|
Cross Site Scripting (XSS) in Simiki v1.6.2.1 and prior allows remote attackers to execut… | simiki | 2021-08-27T19:15:00Z | 2021-09-26T23:33:04.295133Z |
| pysec-2021-345 |
|
The rencode package through 1.0.6 for Python allows an infinite loop in typecode decoding… | rencode | 2021-09-10T02:15:00Z | 2021-09-26T23:32:54.963571Z |
| pysec-2021-344 |
|
OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuz… | onefuzz | 2021-08-13T21:15:00Z | 2021-09-26T23:32:40.198740Z |
| pysec-2021-342 |
|
A Hardcoded JWT Secret Key in metadata.py in AdaptiveScale LXDUI through 2.1.3 allows att… | lxdui | 2021-09-03T02:15:00Z | 2021-09-26T23:32:34.569818Z |
| pysec-2021-337 |
|
This affects all versions of package Flask-User. When using the make_safe_url function, i… | flask-user | 2021-07-05T11:15:00Z | 2021-09-26T23:32:30.327481Z |
| pysec-2021-336 |
|
Unrestricted Upload of File with Dangerous Type in Django-Widgy v0.8.4 allows remote atta… | django-widgy | 2021-08-16T18:15:00Z | 2021-09-26T23:32:19.117278Z |
| pysec-2020-261 |
|
A weak robustness vulnerability exists in the AWS Encryption SDKs for Java, Python, C and… | aws-encryption-sdk | 2020-11-16T12:15:00Z | 2021-09-26T23:32:16.436833Z |
| pysec-2021-335 |
|
The module `AccessControl` defines security policies for Python code used in restricted c… | accesscontrol | 2021-07-30T22:15:00Z | 2021-09-26T23:32:08.989778Z |
| pysec-2021-334 |
|
parlai is a framework for training and evaluating AI models on a variety of openly availa… | parlai | 2021-09-10T23:15:00Z | 2021-09-23T16:57:40.954858Z |
| pysec-2021-331 |
|
Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker… | pillow | 2021-07-13T17:15:00Z | 2021-09-23T00:11:05.797411Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3724 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.603066Z |
| gsd-2024-3723 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.862308Z |
| gsd-2024-3722 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.683967Z |
| gsd-2024-3721 | A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as c… | 2024-04-13T05:02:35.909545Z |
| gsd-2024-3720 | A vulnerability has been found in Tianwell Fire Intelligent Command Platform 1.1.1.1 and … | 2024-04-13T05:02:35.675254Z |
| gsd-2024-3719 | A vulnerability, which was classified as critical, was found in Campcodes House Rental Ma… | 2024-04-13T05:02:35.720548Z |
| gsd-2024-3718 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.856686Z |
| gsd-2024-3717 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.841428Z |
| gsd-2024-3716 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.779671Z |
| gsd-2024-3715 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.771633Z |
| gsd-2024-3714 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.858339Z |
| gsd-2024-3713 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.792781Z |
| gsd-2024-3712 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.925014Z |
| gsd-2024-3711 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.820336Z |
| gsd-2024-3710 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.768088Z |
| gsd-2024-3709 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.762343Z |
| gsd-2024-3708 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.677590Z |
| gsd-2024-3707 | Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). Thi… | 2024-04-13T05:02:35.884589Z |
| gsd-2024-3706 | Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This… | 2024-04-13T05:02:35.674722Z |
| gsd-2024-3705 | Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). Th… | 2024-04-13T05:02:35.853521Z |
| gsd-2024-3704 | SQL Injection Vulnerability has been found on OpenGnsys product affecting version 1.1.1d … | 2024-04-13T05:02:35.767076Z |
| gsd-2024-3703 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.882181Z |
| gsd-2024-3702 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.737044Z |
| gsd-2024-3701 | The system application (com.transsion.kolun.aiservice) component does not perform an aut… | 2024-04-13T05:02:35.808418Z |
| gsd-2024-3700 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.712317Z |
| gsd-2024-3699 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:35.607453Z |
| gsd-2024-3698 | A vulnerability was found in Campcodes House Rental Management System 1.0. It has been de… | 2024-04-13T05:02:35.665259Z |
| gsd-2024-3697 | A vulnerability was found in Campcodes House Rental Management System 1.0. It has been cl… | 2024-04-13T05:02:35.834311Z |
| gsd-2024-3696 | A vulnerability was found in Campcodes House Rental Management System 1.0 and classified … | 2024-04-13T05:02:35.815827Z |
| gsd-2024-3695 | A vulnerability has been found in SourceCodester Computer Laboratory Management System 1.… | 2024-04-13T05:02:35.602372Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2026-68 | Malicious code in n8n-nodes-performance-metrics (npm) | 2026-01-06T03:42:22Z | 2026-01-08T09:13:16Z |
| MAL-2026-65 | Malicious code in oj-sp-messages-banner (npm) | 2026-01-06T02:33:51Z | 2026-01-08T09:13:16Z |
| MAL-2026-64 | Malicious code in oj-sp-css-additions (npm) | 2026-01-06T02:33:51Z | 2026-01-08T09:13:16Z |
| MAL-2026-63 | Malicious code in oj-sp-common-util (npm) | 2026-01-06T02:33:51Z | 2026-01-08T09:13:16Z |
| MAL-2026-62 | Malicious code in oj-sp-common-strings (npm) | 2026-01-06T02:33:50Z | 2026-01-08T09:13:16Z |
| MAL-2026-61 | Malicious code in oj-sp-common (npm) | 2026-01-06T02:33:50Z | 2026-01-08T09:13:16Z |
| MAL-2026-60 | Malicious code in oj-sp-about-page (npm) | 2026-01-06T02:33:50Z | 2026-01-08T09:13:16Z |
| MAL-2026-154 | Malicious code in ncodeauth (npm) | 2026-01-08T05:04:10Z | 2026-01-08T09:13:16Z |
| MAL-2026-136 | Malicious code in npe-toolkit-server-deps (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:16Z |
| MAL-2026-135 | Malicious code in npe-toolkit-faves (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:16Z |
| MAL-2026-101 | Malicious code in openblox-ts (npm) | 2026-01-07T02:32:11Z | 2026-01-08T09:13:16Z |
| mal-2026-89 | Malicious code in importmap-polyfil (npm) | 2026-01-06T13:29:42Z | 2026-01-08T09:13:15Z |
| mal-2026-59 | Malicious code in hello-world-npm-demo-example (npm) | 2026-01-06T02:23:15Z | 2026-01-08T09:13:15Z |
| mal-2026-29 | Malicious code in ipvision-selfcare (npm) | 2026-01-03T15:35:14Z | 2026-01-08T09:13:15Z |
| mal-2026-161 | Malicious code in jsonify-setting (npm) | 2026-01-08T05:55:12Z | 2026-01-08T09:13:15Z |
| mal-2026-160 | Malicious code in json-mappings (npm) | 2026-01-08T05:55:12Z | 2026-01-08T09:13:15Z |
| mal-2026-150 | Malicious code in hoppscotch-agent (npm) | 2026-01-08T01:01:08Z | 2026-01-08T09:13:15Z |
| mal-2026-133 | Malicious code in language-capirca (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:15Z |
| mal-2026-125 | Malicious code in kmeet (npm) | 2026-01-07T07:40:31Z | 2026-01-08T09:13:15Z |
| mal-2026-119 | Malicious code in klywarns (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:15Z |
| mal-2026-118 | Malicious code in klywarn (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:15Z |
| mal-2026-117 | Malicious code in kdb1-demo-v2 (npm) | 2026-01-07T06:49:54Z | 2026-01-08T09:13:15Z |
| mal-2026-116 | Malicious code in jh5o (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:15Z |
| mal-2026-115 | Malicious code in hiqomu (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:15Z |
| mal-2026-114 | Malicious code in garfield777 (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:15Z |
| MAL-2026-89 | Malicious code in importmap-polyfil (npm) | 2026-01-06T13:29:42Z | 2026-01-08T09:13:15Z |
| MAL-2026-59 | Malicious code in hello-world-npm-demo-example (npm) | 2026-01-06T02:23:15Z | 2026-01-08T09:13:15Z |
| MAL-2026-29 | Malicious code in ipvision-selfcare (npm) | 2026-01-03T15:35:14Z | 2026-01-08T09:13:15Z |
| MAL-2026-161 | Malicious code in jsonify-setting (npm) | 2026-01-08T05:55:12Z | 2026-01-08T09:13:15Z |
| MAL-2026-160 | Malicious code in json-mappings (npm) | 2026-01-08T05:55:12Z | 2026-01-08T09:13:15Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0888 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service | 2021-08-18T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2025-0799 | Google Chrome und Microsoft Edge: Mehrere Schwachstellen | 2025-04-15T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2024-3532 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service | 2022-02-02T23:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2024-0910 | Red Hat Single Sign On: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2024-04-16T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-2200 | poppler: Schwachstelle ermöglicht Denial of Service | 2023-08-28T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-2171 | poppler: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-08-24T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-2051 | poppler: Mehrere Schwachstellen | 2023-08-13T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-1584 | Red Hat Single Sign On: Mehrere Schwachstellen | 2023-06-27T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0209 | Red Hat Integration Camel Extensions for Quarkus: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-01-26T23:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-1635 | Red Hat OpenShift und Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service | 2022-10-05T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0771 | Apache XML-Security for Java: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-09-19T22:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0726 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen ermöglichen Denial of Service | 2021-11-15T23:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0105 | Apache ActiveMQ: Schwachstelle ermöglicht Denial of Service | 2022-02-03T23:00:00.000+00:00 | 2025-04-27T22:00:00.000+00:00 |
| wid-sec-w-2025-0887 | VMware Tanzu Spring Boot: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-04-24T22:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0884 | Acronis Cyber Protect (Cloud Agent): Mehrere Schwachstellen | 2025-04-24T22:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0883 | IBM Maximo Asset Management: Schwachstelle ermöglicht Cross-Site Scripting | 2025-04-24T22:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0865 | Ruby: Schwachstelle ermöglicht Manipulation von Dateien | 2013-01-07T23:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0719 | SAP Patchday April 2025: Mehrere Schwachstellen | 2025-04-07T22:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2024-2153 | Apple iOS und iPadOS: Mehrere Schwachstellen | 2024-09-16T22:00:00.000+00:00 | 2025-04-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0881 | Drupal Extensions: Mehrere Schwachstellen | 2025-04-23T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0880 | GitLab: Mehrere Schwachstellen | 2025-04-23T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0878 | IBM InfoSphere Information Server: Mehrere Schwachstellen | 2025-04-23T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0876 | Proxmox Virtual Environment: Schwachstelle ermöglicht Manipulation von Dateien | 2025-04-23T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0874 | SonicWall SSL-VPN: Schwachstelle ermöglicht Denial of Service | 2025-04-23T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0856 | Proxmox Virtual Environment: Mehrere Schwachstellen | 2025-04-21T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0486 | Eclipse Jetty: Schwachstelle ermöglicht Denial of Service | 2024-02-26T23:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2023-2627 | Eclipse Jetty: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-10-10T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2022-0614 | Eclipse Jetty: Mehrere Schwachstellen | 2022-07-07T22:00:00.000+00:00 | 2025-04-23T22:00:00.000+00:00 |
| wid-sec-w-2025-0873 | xwiki: Mehrere Schwachstellen ermöglichen SQL-Injection | 2025-04-22T22:00:00.000+00:00 | 2025-04-22T22:00:00.000+00:00 |
| wid-sec-w-2025-0872 | Trellix Endpoint Security: Schwachstelle ermöglicht Denial of Service | 2025-04-22T22:00:00.000+00:00 | 2025-04-22T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:0471 | Red Hat Security Advisory: Migration Toolkit for Runtimes security update | 2023-01-26T12:14:50+00:00 | 2026-02-27T15:29:24+00:00 |
| rhsa-2023:0449 | Red Hat Security Advisory: OpenShift Container Platform 4.12.1 security update | 2023-01-30T17:31:00+00:00 | 2026-02-27T15:29:24+00:00 |
| rhsa-2023:0445 | Red Hat Security Advisory: go-toolset-1.18 security update | 2023-01-25T08:34:43+00:00 | 2026-02-27T15:29:19+00:00 |
| rhsa-2023:0446 | Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update | 2023-01-25T09:20:12+00:00 | 2026-02-27T15:29:18+00:00 |
| rhsa-2023:0408 | Red Hat Security Advisory: OpenShift Virtualization 4.12.0 Images security update | 2023-01-25T11:11:29+00:00 | 2026-02-27T15:29:16+00:00 |
| rhsa-2023:0407 | Red Hat Security Advisory: OpenShift Virtualization 4.12.0 RPMs security update | 2023-01-24T12:51:07+00:00 | 2026-02-27T15:29:15+00:00 |
| rhsa-2023:0328 | Red Hat Security Advisory: go-toolset and golang security and bug fix update | 2023-01-23T15:26:30+00:00 | 2026-02-27T15:29:15+00:00 |
| rhsa-2023:0321 | Red Hat Security Advisory: nodejs and nodejs-nodemon security, bug fix, and enhancement update | 2023-01-23T15:20:34+00:00 | 2026-02-27T15:29:14+00:00 |
| rhsa-2023:0264 | Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update | 2023-01-19T11:03:41+00:00 | 2026-02-27T15:29:12+00:00 |
| rhsa-2023:0050 | Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update | 2023-01-09T14:55:37+00:00 | 2026-02-27T15:29:12+00:00 |
| rhsa-2023:0245 | Red Hat Security Advisory: OpenShift Container Platform 4.11.25 security update | 2023-01-23T15:53:20+00:00 | 2026-02-27T15:29:11+00:00 |
| rhsa-2023:0076 | Red Hat Security Advisory: Red Hat Ceph Storage 5.3 security update and Bug Fix | 2023-01-11T17:43:06+00:00 | 2026-02-27T15:29:10+00:00 |
| rhsa-2022:9096 | Red Hat Security Advisory: Red Hat OpenShift support for Windows Containers 7.0.0 [security update] | 2023-01-30T05:48:14+00:00 | 2026-02-27T15:29:08+00:00 |
| rhsa-2022:9073 | Red Hat Security Advisory: nodejs:16 security, bug fix, and enhancement update | 2022-12-15T16:20:58+00:00 | 2026-02-27T15:29:07+00:00 |
| rhsa-2022:9047 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.6 security and bug fix update | 2022-12-15T01:57:35+00:00 | 2026-02-27T15:29:05+00:00 |
| rhsa-2022:9040 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.3 security update | 2022-12-14T22:38:40+00:00 | 2026-02-27T15:29:04+00:00 |
| rhsa-2022:8938 | Red Hat Security Advisory: Release of OpenShift Serverless 1.26.0 | 2022-12-13T02:11:29+00:00 | 2026-02-27T15:29:04+00:00 |
| rhsa-2022:8833 | Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update | 2022-12-06T15:39:50+00:00 | 2026-02-27T15:29:02+00:00 |
| rhsa-2022:8832 | Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update | 2022-12-06T15:35:44+00:00 | 2026-02-27T15:29:02+00:00 |
| rhsa-2022:8781 | Red Hat Security Advisory: Logging Subsystem 5.5.5 - Red Hat OpenShift security update | 2022-12-08T07:37:32+00:00 | 2026-02-27T15:29:01+00:00 |
| rhsa-2022:8750 | Red Hat Security Advisory: OpenShift Virtualization 4.11.1 security and bug fix update | 2022-12-01T21:09:40+00:00 | 2026-02-27T15:28:59+00:00 |
| rhsa-2022:8652 | Red Hat Security Advisory: Red Hat Fuse 7.11.1 release and security update | 2022-11-28T14:39:27+00:00 | 2026-02-27T15:28:58+00:00 |
| rhsa-2022:8634 | Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.1 security and bug fix update | 2022-11-28T02:51:35+00:00 | 2026-02-27T15:28:55+00:00 |
| rhsa-2022:8626 | Red Hat Security Advisory: OpenShift Container Platform 4.11.17 packages and security update | 2022-11-28T20:47:08+00:00 | 2026-02-27T15:28:52+00:00 |
| rhsa-2022:8535 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:13:37+00:00 | 2026-02-27T15:28:49+00:00 |
| rhsa-2022:8534 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:11:41+00:00 | 2026-02-27T15:28:48+00:00 |
| rhsa-2022:8250 | Red Hat Security Advisory: grafana-pcp security update | 2022-11-15T15:16:26+00:00 | 2026-02-27T15:28:47+00:00 |
| rhsa-2022:8057 | Red Hat Security Advisory: grafana security, bug fix, and enhancement update | 2022-11-15T10:31:43+00:00 | 2026-02-27T15:28:44+00:00 |
| rhsa-2022:8098 | Red Hat Security Advisory: toolbox security and bug fix update | 2022-11-15T15:12:42+00:00 | 2026-02-27T15:28:42+00:00 |
| rhsa-2022:7950 | Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update | 2022-11-15T12:38:51+00:00 | 2026-02-27T15:28:40+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-23-269-02 | Hitachi Energy Asset Suite 9 | 2023-09-26T06:00:00.000000Z | 2023-09-26T06:00:00.000000Z |
| icsa-23-269-01 | Suprema BioStar 2 | 2023-09-26T06:00:00.000000Z | 2023-09-26T06:00:00.000000Z |
| icsa-23-024-02 | SOCOMEC MODULYS GP (UPDATE A) | 2023-01-24T07:00:00.000000Z | 2023-09-26T06:00:00.000000Z |
| icsa-23-264-06 | Rockwell Automation FactoryTalk View Machine Edition | 2023-09-21T06:00:00.000000Z | 2023-09-21T06:00:00.000000Z |
| icsa-23-264-05 | Rockwell Automation Connected Components Workbench | 2023-09-21T06:00:00.000000Z | 2023-09-21T06:00:00.000000Z |
| icsa-23-264-04 | Rockwell Automation Select Logix Communication Modules | 2023-09-21T06:00:00.000000Z | 2023-09-21T06:00:00.000000Z |
| icsa-23-264-03 | Delta Electronics DIAScreen | 2023-09-21T06:00:00.000000Z | 2023-09-21T06:00:00.000000Z |
| icsa-23-264-01 | Real Time Automation 460 Series | 2023-09-21T06:00:00.000000Z | 2023-09-21T06:00:00.000000Z |
| icsa-23-262-05 | Omron CJ/CS/CP Series | 2023-09-19T06:00:00.000000Z | 2023-09-19T06:00:00.000000Z |
| icsa-23-262-04 | Omron Engineering Software | 2023-09-19T06:00:00.000000Z | 2023-09-19T06:00:00.000000Z |
| icsa-23-262-03 | Omron Engineering Software Zip-Slip | 2023-09-19T06:00:00.000000Z | 2023-09-19T06:00:00.000000Z |
| icsa-23-257-07 | Rockwell Automation Pavilion8 | 2023-09-14T06:00:00.000000Z | 2023-09-14T06:00:00.000000Z |
| icsa-23-262-01 | Siemens SIMATIC PCS neo Administration Console | 2023-09-14T00:00:00Z | 2023-09-14T00:00:00Z |
| icsa-23-255-02 | Fujitsu Software Infrastructure Manager | 2023-09-12T06:00:00.000000Z | 2023-09-12T06:00:00.000000Z |
| icsa-23-255-01 | Hitachi Energy Lumada APM Edge | 2023-09-12T06:00:00.000000Z | 2023-09-12T06:00:00.000000Z |
| icsa-23-257-04 | Siemens RUGGEDCOM APE1808 Products | 2023-09-12T00:00:00Z | 2023-09-12T00:00:00Z |
| icsa-23-047-08 | Siemens RUGGEDCOM APE1808 | 2023-02-14T00:00:00.000000Z | 2023-09-12T00:00:00.000000Z |
| icsa-23-250-03 | Socomec MOD3GP-SY-120K | 2023-09-07T06:00:00.000000Z | 2023-09-07T06:00:00.000000Z |
| icsa-23-250-02 | Phoenix Contact TC ROUTER and TC CLOUD CLIENT | 2023-09-07T06:00:00.000000Z | 2023-09-07T06:00:00.000000Z |
| icsa-23-250-01 | Dover Fueling Solutions MAGLINK LX Console | 2023-09-07T06:00:00.000000Z | 2023-09-07T06:00:00.000000Z |
| icsa-23-157-01 | Delta Electronics CNCSoft-B DOPSoft | 2023-06-06T06:00:00.000000Z | 2023-09-07T06:00:00.000000Z |
| icsma-23-248-01 | Softneta MedDream PACS Premium | 2023-09-05T06:00:00.000000Z | 2023-09-05T06:00:00.000000Z |
| icsa-23-248-01 | Fujitsu Limited Real-time Video Transmission Gear "IP series" | 2023-09-05T06:00:00.000000Z | 2023-09-05T06:00:00.000000Z |
| icsa-23-243-04 | Digi RealPort Protocol | 2023-08-31T06:00:00.000000Z | 2023-08-31T06:00:00.000000Z |
| icsa-23-243-02 | GE Digital CIMPLICITY | 2023-08-31T06:00:00.000000Z | 2023-08-31T06:00:00.000000Z |
| icsa-23-243-01 | ARDEREG Sistemas SCADA | 2023-08-31T06:00:00.000000Z | 2023-08-31T06:00:00.000000Z |
| icsa-23-241-01 | PTC Codebeamer | 2023-08-29T06:00:00.000000Z | 2023-08-29T06:00:00.000000Z |
| icsa-23-236-06 | Rockwell Automation Select Distributed I/O Communication Modules | 2023-08-24T06:00:00.000000Z | 2023-08-24T06:00:00.000000Z |
| icsa-23-236-05 | CODESYS Development System | 2023-08-24T06:00:00.000000Z | 2023-08-24T06:00:00.000000Z |
| icsa-23-236-04 | CODESYS Development System | 2023-08-24T06:00:00.000000Z | 2023-08-24T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-sdwan-esc-rSNVvTf9 | Cisco IOS XE SD-WAN Software Console Privilege Escalation Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-sdwan-clipriv-9to2qgvp | Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-sdwan-clipriv-9TO2QGVp | Cisco IOS XE SD-WAN Software Privilege Escalation Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ncs520-tcp-zpzzoxb | Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ncs520-tcp-ZpzzOxB | Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iox-dos-4fgcjh6 | Cisco IOx Application Framework Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iox-dos-4Fgcjh6 | Cisco IOx Application Framework Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iox-cmdinj-rksurghg | Cisco IOx for IOS XE Software Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iox-cmdinj-RkSURGHG | Cisco IOx for IOS XE Software Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwpathtrav-nsrue2mt | Cisco IOS XE SD-WAN Software Path Traversal Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwpathtrav-nsrue2Mt | Cisco IOS XE SD-WAN Software Path Traversal Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwdos-4zeeec9w | Cisco IOS XE SD-WAN Software vDaemon Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwdos-4zeEeC9w | Cisco IOS XE SD-WAN Software vDaemon Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwarbcmdexec-sspomur3 | Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-sdwarbcmdexec-sspOMUr3 | Cisco IOS XE SD-WAN Software Arbitrary Command Execution Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-romvar-cmd-inj-n56fybrw | Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-romvar-cmd-inj-N56fYbrw | Cisco IOS XE ROM Monitor Software for Cisco Industrial Switches OS Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-decnet-dos-cupwdkyl | Cisco IOS XE Software DECnet Phase IV/OSI Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-decnet-dos-cuPWDkyL | Cisco IOS XE Software DECnet Phase IV/OSI Denial of Service Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-cswsh-fkk9azt5 | Cisco IOS XE Software Web UI Cross-Site WebSocket Hijacking Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-cswsh-FKk9AzT5 | Cisco IOS XE Software Web UI Cross-Site WebSocket Hijacking Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-buffover-cqdrwlc | Cisco IOS XE SD-WAN Software vDaemon Buffer Overflow Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-buffover-CqdRWLc | Cisco IOS XE SD-WAN Software vDaemon Buffer Overflow Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-arbfile-fuxskkde | Cisco IOS XE SD-WAN Software Arbitrary File Corruption Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-iosxe-arbfile-FUxskKDE | Cisco IOS XE SD-WAN Software Arbitrary File Corruption Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ios-xe-pnp-priv-esc-amg3kuvl | Cisco IOS XE Software Plug-and-Play Privilege Escalation Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ios-xe-pnp-priv-esc-AmG3kuVL | Cisco IOS XE Software Plug-and-Play Privilege Escalation Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ios-xe-os-cmd-inj-ef6tv5e9 | Cisco IOS XE Software Web UI OS Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ios-xe-os-cmd-inj-Ef6TV5e9 | Cisco IOS XE Software Web UI OS Command Injection Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| cisco-sa-ios-xe-iot-codexec-k46eff6q | Cisco IOS XE Software Hardware Initialization Routines Arbitrary Code Execution Vulnerability | 2021-03-24T16:00:00+00:00 | 2021-03-24T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-37927 | iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid | 2025-05-02T00:00:00.000Z | 2026-02-18T14:22:05.000Z |
| msrc_cve-2024-21203 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:22:05.000Z |
| msrc_cve-2025-68768 | inet: frags: flush pending skbs in fqdir_pre_exit() | 2026-01-02T00:00:00.000Z | 2026-02-18T14:21:44.000Z |
| msrc_cve-2020-14378 | An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending on how `vhost_crypto` is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period. | 2020-09-02T00:00:00.000Z | 2026-02-18T14:21:43.000Z |
| msrc_cve-2025-37831 | cpufreq: apple-soc: Fix null-ptr-deref in apple_soc_cpufreq_get_rate() | 2025-05-02T00:00:00.000Z | 2026-02-18T14:21:37.000Z |
| msrc_cve-2024-50234 | wifi: iwlegacy: Clear stale interrupts before resuming device | 2024-11-02T00:00:00.000Z | 2026-02-18T14:21:33.000Z |
| msrc_cve-2022-30580 | Empty Cmd.Path can trigger unintended binary in os/exec on Windows | 2022-08-02T00:00:00.000Z | 2026-02-18T14:21:24.000Z |
| msrc_cve-2024-21230 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:21:23.000Z |
| msrc_cve-2024-53112 | ocfs2: uncache inode which has failed entering the group | 2024-12-02T00:00:00.000Z | 2026-02-18T14:21:20.000Z |
| msrc_cve-2025-68798 | perf/x86/amd: Check event before enable to avoid GPF | 2026-01-02T00:00:00.000Z | 2026-02-18T14:21:19.000Z |
| msrc_cve-2025-37839 | jbd2: remove wrong sb->s_sequence check | 2025-05-02T00:00:00.000Z | 2026-02-18T14:21:08.000Z |
| msrc_cve-2024-0690 | Ansible-core: possible information leak in tasks that ignore ansible_no_log configuration | 2024-02-02T08:00:00.000Z | 2026-02-18T14:20:59.000Z |
| msrc_cve-2025-12818 | PostgreSQL libpq undersizes allocations, via integer wraparound | 2025-11-02T00:00:00.000Z | 2026-02-18T14:20:54.000Z |
| msrc_cve-2024-50217 | btrfs: fix use-after-free of block device file in __btrfs_free_extra_devids() | 2024-11-02T00:00:00.000Z | 2026-02-18T14:20:53.000Z |
| msrc_cve-2025-68201 | drm/amdgpu: remove two invalid BUG_ON()s | 2025-12-02T00:00:00.000Z | 2026-02-18T14:20:49.000Z |
| msrc_cve-2025-71073 | Input: lkkbd - disable pending work before freeing device | 2026-01-02T00:00:00.000Z | 2026-02-18T14:20:48.000Z |
| msrc_cve-2024-53135 | KVM: VMX: Bury Intel PT virtualization (guest/host mode) behind CONFIG_BROKEN | 2024-12-02T00:00:00.000Z | 2026-02-18T14:20:45.000Z |
| msrc_cve-2024-21197 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:20:44.000Z |
| msrc_cve-2025-37924 | ksmbd: fix use-after-free in kerberos authentication | 2025-05-02T00:00:00.000Z | 2026-02-18T14:20:40.000Z |
| msrc_cve-2022-30635 | Stack exhaustion when decoding certain messages in encoding/gob | 2022-08-02T00:00:00.000Z | 2026-02-18T14:20:34.000Z |
| msrc_cve-2025-71096 | RDMA/core: Check for the presence of LS_NLA_TYPE_DGID correctly | 2026-01-02T00:00:00.000Z | 2026-02-18T14:20:22.000Z |
| msrc_cve-2024-50232 | iio: adc: ad7124: fix division by zero in ad7124_set_channel_odr() | 2024-11-02T00:00:00.000Z | 2026-02-18T14:20:20.000Z |
| msrc_cve-2023-40551 | Shim: out of bounds read when parsing mz binaries | 2024-01-01T08:00:00.000Z | 2026-02-18T14:20:17.000Z |
| msrc_cve-2023-52572 | cifs: Fix UAF in cifs_demultiplex_thread() | 2024-03-02T08:00:00.000Z | 2026-02-18T14:20:09.000Z |
| msrc_cve-2025-37741 | jfs: Prevent copying of nlink with value 0 from disk inode | 2025-05-02T00:00:00.000Z | 2026-02-18T14:20:03.000Z |
| msrc_cve-2025-68223 | drm/radeon: delete radeon_fence_process in is_signaled, no deadlock | 2025-12-02T00:00:00.000Z | 2026-02-18T14:20:02.000Z |
| msrc_cve-2024-21207 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.38 and prior 8.4.1 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:20:01.000Z |
| msrc_cve-2025-68778 | btrfs: don't log conflicting inode if it's a dir moved in the current transaction | 2026-01-02T00:00:00.000Z | 2026-02-18T14:19:51.000Z |
| msrc_cve-2024-53131 | nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint | 2024-12-02T00:00:00.000Z | 2026-02-18T14:19:46.000Z |
| msrc_cve-2024-50245 | fs/ntfs3: Fix possible deadlock in mi_read | 2024-11-02T00:00:00.000Z | 2026-02-18T14:19:44.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:14449-1 | java-23-openjdk-23.0.1.0-1.1 on GA media | 2024-11-01T00:00:00Z | 2024-11-01T00:00:00Z |
| opensuse-su-2024:14448-1 | java-17-openjdk-17.0.13.0-1.1 on GA media | 2024-11-01T00:00:00Z | 2024-11-01T00:00:00Z |
| opensuse-su-2024:14447-1 | govulncheck-vulndb-0.0.20241030T212825-1.1 on GA media | 2024-11-01T00:00:00Z | 2024-11-01T00:00:00Z |
| opensuse-su-2024:14446-1 | docker-stable-24.0.9_ce-1.1 on GA media | 2024-11-01T00:00:00Z | 2024-11-01T00:00:00Z |
| opensuse-su-2024:14445-1 | python310-waitress-3.0.1-1.1 on GA media | 2024-10-31T00:00:00Z | 2024-10-31T00:00:00Z |
| opensuse-su-2024:14444-1 | gama-2.31-1.1 on GA media | 2024-10-31T00:00:00Z | 2024-10-31T00:00:00Z |
| opensuse-su-2024:0343-1 | Security update for Botan | 2024-10-30T13:01:43Z | 2024-10-30T13:01:43Z |
| opensuse-su-2024:14443-1 | xsd-4.1.0-3.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14442-1 | netty-4.1.114-1.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14441-1 | chromedriver-130.0.6723.69-1.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14440-1 | cargo-audit-advisory-db-20241030-1.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14439-1 | alloy-1.4.3-1.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14438-1 | MozillaThunderbird-128.4.0-1.1 on GA media | 2024-10-30T00:00:00Z | 2024-10-30T00:00:00Z |
| opensuse-su-2024:14437-1 | python310-Werkzeug-3.0.6-1.1 on GA media | 2024-10-29T00:00:00Z | 2024-10-29T00:00:00Z |
| opensuse-su-2024:14436-1 | openvpn-2.6.10-2.1 on GA media | 2024-10-29T00:00:00Z | 2024-10-29T00:00:00Z |
| opensuse-su-2024:14435-1 | corepack22-22.10.0-1.1 on GA media | 2024-10-29T00:00:00Z | 2024-10-29T00:00:00Z |
| opensuse-su-2024:0341-1 | Security update for chromium | 2024-10-28T15:20:35Z | 2024-10-28T15:20:35Z |
| opensuse-su-2024:14434-1 | python314-3.14.0~a1-1.1 on GA media | 2024-10-28T00:00:00Z | 2024-10-28T00:00:00Z |
| opensuse-su-2024:14433-1 | python310-pytest-html-4.1.1-3.1 on GA media | 2024-10-28T00:00:00Z | 2024-10-28T00:00:00Z |
| opensuse-su-2024:14432-1 | java-11-openjdk-11.0.25.0-1.1 on GA media | 2024-10-28T00:00:00Z | 2024-10-28T00:00:00Z |
| opensuse-su-2024:14431-1 | grafana-11.3.0-1.1 on GA media | 2024-10-28T00:00:00Z | 2024-10-28T00:00:00Z |
| opensuse-su-2024:14430-1 | python313-3.13.0-3.1 on GA media | 2024-10-27T00:00:00Z | 2024-10-27T00:00:00Z |
| opensuse-su-2024:14429-1 | Botan-3.6.0-1.1 on GA media | 2024-10-27T00:00:00Z | 2024-10-27T00:00:00Z |
| opensuse-su-2024:14428-1 | python39-3.9.20-4.1 on GA media | 2024-10-25T00:00:00Z | 2024-10-25T00:00:00Z |
| opensuse-su-2024:14427-1 | python310-3.10.15-2.1 on GA media | 2024-10-25T00:00:00Z | 2024-10-25T00:00:00Z |
| opensuse-su-2024:14426-1 | python310-virtualenv-20.26.6-1.1 on GA media | 2024-10-25T00:00:00Z | 2024-10-25T00:00:00Z |
| opensuse-su-2024:14425-1 | nodejs-electron-31.7.2-1.1 on GA media | 2024-10-25T00:00:00Z | 2024-10-25T00:00:00Z |
| opensuse-su-2024:14424-1 | gitoxide-0.38.0-1.1 on GA media | 2024-10-23T00:00:00Z | 2024-10-23T00:00:00Z |
| opensuse-su-2024:14423-1 | ghostscript-10.04.0-1.1 on GA media | 2024-10-23T00:00:00Z | 2024-10-23T00:00:00Z |
| opensuse-su-2024:14422-1 | NetworkManager-applet-libreswan-1.2.24-1.1 on GA media | 2024-10-23T00:00:00Z | 2024-10-23T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2021-791 | UNKNOWN READ in std::__1::__tree<std::__1::__value_type<Json::Value::CZString, Json::Value>, std | 2021-05-24T00:00:15.793602Z | 2022-04-13T03:04:42.014016Z |
| osv-2021-760 | Heap-buffer-overflow in std::__1::char_traits<char>::length | 2021-05-14T00:00:07.433655Z | 2022-04-13T03:04:42.685258Z |
| osv-2021-745 | Heap-buffer-overflow in skip_to_next_entry | 2021-05-11T00:00:17.714291Z | 2022-04-13T03:04:42.392317Z |
| osv-2021-696 | UNKNOWN READ in ntlm_decode_type2_target | 2021-04-28T00:00:54.883431Z | 2022-04-13T03:04:42.867684Z |
| osv-2021-695 | Stack-buffer-overflow in XCFImageFormat::loadTileRLE | 2021-04-28T00:00:28.555303Z | 2022-04-13T03:04:42.517182Z |
| osv-2021-646 | Heap-use-after-free in std::__1::__tree_iterator<std::__1::__value_type<std::__1::basic_string<char, st | 2021-04-17T00:00:31.031765Z | 2022-04-13T03:04:42.791429Z |
| osv-2021-64 | Heap-buffer-overflow in H5MM_memcpy | 2021-01-13T00:00:21.822690Z | 2022-04-13T03:04:42.979046Z |
| osv-2021-635 | Heap-use-after-free in std::__1::__tree_iterator<std::__1::__value_type<std::__1::basic_string<char, st | 2021-04-15T00:00:23.567516Z | 2022-04-13T03:04:42.803279Z |
| osv-2021-593 | Heap-use-after-free in std::__1::vector<char, std::__1::allocator<char> >::size | 2021-04-03T00:00:08.237159Z | 2022-04-13T03:04:42.650966Z |
| osv-2021-585 | Heap-buffer-overflow in ebitmap_match_any | 2021-03-31T00:00:26.273923Z | 2022-04-13T03:04:42.321301Z |
| osv-2021-541 | Heap-buffer-overflow in flatbuffers::Table* flatbuffers::GetMutableRoot<flatbuffers::Table> | 2021-03-21T00:00:57.155348Z | 2022-04-13T03:04:42.083962Z |
| osv-2021-536 | Heap-use-after-free in cil_reset_classpermission | 2021-03-19T00:01:12.719776Z | 2022-04-13T03:04:42.350659Z |
| osv-2021-520 | Heap-buffer-overflow in flatbuffers::EscapeString | 2021-03-14T00:00:58.325013Z | 2022-04-13T03:04:42.067747Z |
| osv-2021-482 | Heap-buffer-overflow in draco::MeshPredictionSchemeTexCoordsDecoder<int, draco::PredictionSchemeWrapDeco | 2021-03-03T00:00:23.252114Z | 2022-04-13T03:04:42.760769Z |
| osv-2021-458 | Heap-buffer-overflow in put_epel_8_fallback | 2021-03-01T00:00:01.613862Z | 2022-04-13T03:04:42.553116Z |
| osv-2021-450 | Global-buffer-overflow in coap_pdu_parse_opt | 2021-02-28T00:00:03.278436Z | 2022-04-13T03:04:42.402386Z |
| osv-2021-421 | Heap-use-after-free in __cil_verify_classperms | 2021-02-20T00:00:20.081676Z | 2022-04-13T03:04:42.358814Z |
| osv-2021-417 | Heap-use-after-free in __cil_verify_classperms | 2021-02-19T00:00:51.127847Z | 2022-04-13T03:04:42.307147Z |
| osv-2021-39 | Heap-buffer-overflow in dotnet_parse_tilde_2 | 2021-01-10T00:01:34.995212Z | 2022-04-13T03:04:42.276480Z |
| osv-2021-349 | Heap-buffer-overflow in flatbuffers::vector_downward::fill | 2021-02-10T00:00:39.669242Z | 2022-04-13T03:04:42.089425Z |
| osv-2021-347 | Heap-buffer-overflow in flatbuffers::Table* flatbuffers::GetMutableRoot<flatbuffers::Table> | 2021-02-10T00:00:35.965631Z | 2022-04-13T03:04:42.035332Z |
| osv-2021-343 | Heap-use-after-free in sctp_sorecvmsg | 2021-02-10T00:00:18.193322Z | 2022-04-13T03:04:42.623897Z |
| osv-2021-333 | Heap-buffer-overflow in int flatbuffers::ReadScalar<int> | 2021-02-10T00:00:03.957076Z | 2022-04-13T03:04:42.062018Z |
| osv-2021-308 | Heap-buffer-overflow in flatbuffers::JsonPrinter::GenFieldOffset | 2021-02-08T00:00:10.107075Z | 2022-04-13T03:04:42.045972Z |
| osv-2021-281 | Heap-buffer-overflow in flatbuffers::Table* flatbuffers::GetMutableRoot<flatbuffers::Table> | 2021-02-06T00:00:11.762958Z | 2022-04-13T03:04:42.078485Z |
| osv-2021-278 | Heap-buffer-overflow in H5MM_memcpy | 2021-02-05T00:01:09.038933Z | 2022-04-13T03:04:42.963631Z |
| osv-2021-273 | Heap-use-after-free in sctp_sorecvmsg | 2021-02-04T00:01:00.672451Z | 2022-04-13T03:04:42.633819Z |
| osv-2021-270 | Heap-use-after-free in cil_destroy_block | 2021-02-04T00:00:11.709031Z | 2022-04-13T03:04:42.339265Z |
| osv-2021-1796 | Heap-buffer-overflow in Curl_sasl_decode_mech | 2022-01-02T00:01:47.989011Z | 2022-04-13T03:04:42.901090Z |
| osv-2021-1793 | Heap-buffer-overflow in seturl | 2022-01-01T00:01:01.779206Z | 2022-04-13T03:04:42.917888Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-parse-2024-27298 | Parse Server literalizeRegexPart SQL Injection | 2024-03-31T18:25:01.637Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2023-46119 | Parse Server may crash when uploading file without extension | 2024-03-06T11:00:17.478Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2023-41058 | Trigger `beforeFind` not invoked in internal query pipeline in parse-server | 2024-03-06T11:00:26.917Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2023-36475 | Parse Server vulnerable to remote code execution via MongoDB BSON parser through prototype pollution | 2024-03-06T11:00:37.885Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2023-32689 | Parse Server vulnerable to phishing attack vulnerability that involves uploading malicious HTML file | 2024-03-06T11:00:50.314Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2023-22474 | Parse Server is vulnerable to authentication bypass via spoofing | 2024-03-06T11:01:03.891Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-41879 | Parse Server subject to Prototype pollution via Cloud Code Webhooks | 2024-03-06T11:01:14.289Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-41878 | Parse Server Prototype pollution and Injection via Cloud Code Webhooks or Cloud Code Triggers | 2024-03-06T11:01:23.072Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-39396 | Parse Server vulnerable to Remote Code Execution via prototype pollution in MongoDB BSON parser | 2024-03-06T11:01:33.483Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-39313 | Parse Server crashes when receiving file download request with invalid byte range | 2024-03-06T11:01:42.508Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-39231 | Parse Server subject to Improper Authentication allowing Auth adapter app ID validation to be circumvented | 2024-03-06T11:01:53.405Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-39225 | Parse Server subject to Incorrect Resource Transfer Between Spheres | 2024-03-06T11:02:05.285Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-36079 | Parse Server vulnerable to brute force guessing of user sensitive data via search patterns | 2024-03-06T11:02:16.472Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-31112 | Protected fields exposed via LiveQuery in parse-server | 2024-03-06T11:02:26.390Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-31089 | Invalid file request can crashe parse-server | 2024-03-06T11:02:37.484Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-31083 | Authentication bypass in Parse Server Apple Game Center auth adapter | 2024-03-06T11:02:46.902Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-24901 | Authentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter | 2024-03-06T11:02:56.971Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2022-24760 | Command Injection in Parse server | 2024-03-06T11:03:07.513Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2021-41109 | LiveQuery publishes user session tokens | 2024-03-06T11:03:28.771Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2021-39187 | Crash server with query parameter | 2024-03-06T11:03:39.683Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2021-39138 | New anonymous user session acts as if it's created with password | 2024-03-06T11:03:49.289Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2020-5251 | Information disclosure in parse-server | 2024-03-06T11:04:01.101Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2020-26288 | Parse Server stores password in plain text | 2024-03-06T11:04:12.712Z | 2025-05-20T10:02:07.006Z |
| bit-parse-2020-15270 | Improper session expiration in Parse Server | 2024-03-06T11:04:25.404Z | 2025-05-20T10:02:07.006Z |
| bit-oras-2021-21272 | zip slip in ORAS | 2024-03-06T11:00:05.176Z | 2025-05-20T10:02:07.006Z |
| bit-node-2023-23936 | CRLF Injection in Nodejs ‘undici’ via host | 2024-03-06T11:01:51.693Z | 2025-05-20T10:02:07.006Z |
| bit-node-2022-0778 | Infinite loop in BN_mod_sqrt() reachable when parsing certificates | 2024-03-06T11:04:37.785Z | 2025-05-20T10:02:07.006Z |
| bit-node-2021-4044 | Invalid handling of X509_verify_cert() internal errors in libssl | 2024-03-06T11:05:16.488Z | 2025-05-20T10:02:07.006Z |
| bit-node-2021-3450 | CA certificate check bypass with X509_V_FLAG_X509_STRICT | 2024-03-06T11:05:36.509Z | 2025-05-20T10:02:07.006Z |
| bit-node-2021-3449 | NULL pointer deref in signature_algorithms processing | 2024-03-06T11:05:44.892Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-201910-0706 | An issue was discovered in SageMath Sage Cell Server through 2019-10-05. Python Code Inje… | 2024-05-17T23:11:12.313000Z |
| var-201907-0310 | An issue was discovered on AudioCodes Mediant 500L-MSBR, 500-MBSR, M800B-MSBR and 800C-MS… | 2024-05-17T23:11:12.658000Z |
| var-202007-0951 | An issue was discovered in RIPE NCC RPKI Validator 3.x before 3.1-2020.07.06.14.28. RRDP … | 2024-05-17T23:11:11.445000Z |
| var-202001-1785 | Meinberg Lantime M300 and M1000 devices allow attackers (with privileges to configure a d… | 2024-05-17T23:11:11.995000Z |
| var-202212-2426 | A vulnerability was found in Exciting Printer and classified as critical. This issue affe… | 2024-05-17T23:11:06.189000Z |
| var-202302-0091 | A vulnerability was found in TRENDnet TEW-652BRP 3.04b01 and classified as problematic. T… | 2024-05-17T23:11:05.663000Z |
| var-202305-0900 | A vulnerability was found in Tenda AC23 16.03.07.45_cn. It has been declared as critical.… | 2024-05-17T23:11:04.811000Z |
| var-202401-0542 | A vulnerability, which was classified as critical, has been found in Tenda W9 1.0.0.7(445… | 2024-05-17T23:11:02.447000Z |
| var-202404-0124 | A vulnerability was found in Tenda W30E 1.0.1.25(633). It has been classified as critical… | 2024-05-17T23:11:01.530000Z |
| var-202403-0901 | A vulnerability classified as critical was found in Tenda AC15 15.03.05.18/15.03.20_multi… | 2024-05-17T23:11:01.725000Z |
| var-201112-0259 | The Site Editor (aka SiteBuilder) feature in Parallels Plesk Small Business Panel 10.2.0 … | 2024-05-17T23:09:54.066000Z |
| var-201708-1532 | An issue was discovered in SMA Solar Technology products. An attacker can use Sunny Explo… | 2024-05-17T23:09:51.544000Z |
| var-201907-1136 | Vivotek FD8136 devices allow Remote Command Injection, related to BusyBox and wget. NOTE:… | 2024-05-17T23:09:49.734000Z |
| var-202101-1833 | Home Assistant before 2021.1.3 does not have a protection layer that can help to prevent … | 2024-05-17T23:09:48.118000Z |
| var-202004-0538 | In IQrouter through 3.3.1, there is a root user without a password, which allows attacker… | 2024-05-17T23:09:48.972000Z |
| var-202301-0089 | A vulnerability classified as problematic has been found in OpenDNS OpenResolve. This aff… | 2024-05-17T23:09:45.657000Z |
| var-202403-0920 | A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It has been classifie… | 2024-05-17T23:09:38.068000Z |
| var-202403-0815 | A vulnerability was found in Tenda AC15 15.03.20_multi. It has been rated as critical. Th… | 2024-05-17T23:09:38.108000Z |
| var-202401-1133 | A vulnerability, which was classified as critical, has been found in Tenda AC10U 15.03.06… | 2024-05-17T23:09:38.537000Z |
| var-202401-1091 | A vulnerability has been found in Tenda AC10U 15.03.06.49_multi_TDE01 and classified as c… | 2024-05-17T23:09:38.559000Z |
| var-202401-0297 | A vulnerability was found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as crit… | 2024-05-17T23:09:38.751000Z |
| var-202403-1067 | A vulnerability classified as critical has been found in Tenda F1203 2.0.1.6. This affect… | 2024-05-17T23:09:37.967000Z |
| var-200212-0447 | NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus 2002 allows r… | 2024-05-17T23:09:36.113000Z |
| var-201708-1521 | An issue was discovered in SMA Solar Technology products. By sending nonsense data or set… | 2024-05-17T23:09:28.719000Z |
| var-201907-1138 | Vivotek FD8136 devices allow remote memory corruption and remote code execution because o… | 2024-05-17T23:09:26.724000Z |
| var-202004-0540 | In IQrouter through 3.3.1, remote attackers can control the device (restart network, rebo… | 2024-05-17T23:09:25.962000Z |
| var-202302-0047 | A vulnerability was found in TRENDnet TEW-652BRP 3.04B01. It has been declared as critica… | 2024-05-17T23:09:18.819000Z |
| var-202304-2225 | A vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been rated as problema… | 2024-05-17T23:09:17.892000Z |
| var-202403-0946 | A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. T… | 2024-05-17T23:09:15.083000Z |
| var-202403-0883 | A vulnerability was found in Tenda AC15 15.03.20_multi. It has been declared as critical.… | 2024-05-17T23:09:15.101000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2015-000061 | EasyCTF vulnerable to cross-site scripting | 2015-05-01T13:49+09:00 | 2015-05-07T16:02+09:00 |
| jvndb-2015-000060 | EasyCTF vulnerable to arbitrary file creation | 2015-05-01T13:37+09:00 | 2015-05-07T16:00+09:00 |
| jvndb-2015-000054 | TransmitMail vulnerable to cross-site scripting | 2015-04-23T13:47+09:00 | 2015-04-27T16:13+09:00 |
| jvndb-2015-000055 | TransmitMail vulnerable to directory traversal | 2015-04-23T14:12+09:00 | 2015-04-27T16:12+09:00 |
| jvndb-2015-000051 | Lhaplus vulnerable to remote code execution | 2015-04-09T13:59+09:00 | 2015-04-16T18:00+09:00 |
| jvndb-2015-000050 | Lhaplus vulnerable to directory traversal | 2015-04-09T13:57+09:00 | 2015-04-16T18:00+09:00 |
| jvndb-2015-001959 | JBoss RichFaces vulnerable to remote Java code execution | 2015-04-14T13:24+09:00 | 2015-04-14T13:24+09:00 |
| jvndb-2015-000047 | bBlog vulnerable to cross-site request forgery | 2015-04-07T12:12+09:00 | 2015-04-09T14:05+09:00 |
| jvndb-2015-000017 | Saurus CMS Community Edition vulnerable to cross-site scripting | 2015-02-17T14:20+09:00 | 2015-04-08T15:20+09:00 |
| jvndb-2015-000018 | C-BOARD Moyuku vulnerable to arbitrary file creation | 2015-02-17T14:21+09:00 | 2015-04-07T17:57+09:00 |
| jvndb-2015-000048 | Maruo Editor vulnerable to buffer overflow | 2015-04-02T12:30+09:00 | 2015-04-07T17:28+09:00 |
| jvndb-2015-000046 | All in One SEO Pack information management vulnerability | 2015-03-31T13:48+09:00 | 2015-04-07T17:27+09:00 |
| jvndb-2015-000044 | WordPress theme flashy vulnerable to cross-site scripting | 2015-03-26T14:04+09:00 | 2015-04-07T17:25+09:00 |
| jvndb-2015-000043 | Fumy Teacher's Schedule Board vulnerable to cross-site scripting | 2015-03-26T14:00+09:00 | 2015-04-07T17:25+09:00 |
| jvndb-2015-000045 | Android OS may behave as an open resolver | 2015-03-27T14:12+09:00 | 2015-03-27T14:12+09:00 |
| jvndb-2015-000041 | MP Form Mail CGI eCommerce edition vulnerable to code injection | 2015-03-20T12:30+09:00 | 2015-03-24T15:11+09:00 |
| jvndb-2015-000039 | eXtplorer vulnerable to cross-site scripting | 2015-03-17T13:41+09:00 | 2015-03-20T14:30+09:00 |
| jvndb-2015-000037 | All In One WP Security & Firewall vulnerable to SQL injection | 2015-03-06T13:45+09:00 | 2015-03-11T17:55+09:00 |
| jvndb-2015-000038 | All In One WP Security & Firewall vulnerable to cross-site request forgery | 2015-03-06T13:46+09:00 | 2015-03-11T17:42+09:00 |
| jvndb-2015-000036 | Maroyaka Relay Novel vulnerable to cross-site scripting | 2015-03-04T14:49+09:00 | 2015-03-06T15:30+09:00 |
| jvndb-2015-000035 | Maroyaka Image Album vulnerable to cross-site scripting | 2015-03-04T14:49+09:00 | 2015-03-06T15:21+09:00 |
| jvndb-2015-000034 | Maroyaka Simple Board vulnerable to cross-site scripting | 2015-03-04T14:48+09:00 | 2015-03-06T15:07+09:00 |
| jvndb-2015-000019 | Squid input validation vulnerability | 2015-02-20T14:55+09:00 | 2015-03-06T14:57+09:00 |
| jvndb-2015-000031 | SEIL Series routers vulnerable to denial-of-service (DoS) | 2015-02-27T15:39+09:00 | 2015-03-05T15:42+09:00 |
| jvndb-2015-000030 | Google Captcha (reCAPTCHA) by BestWebSoft vulnerable to CAPTCHA authentication bypass | 2015-03-03T13:39+09:00 | 2015-03-04T15:23+09:00 |
| jvndb-2015-000029 | BestWebSoft Captcha plugin vulnerable to CAPTCHA authentication bypass | 2015-03-03T13:38+09:00 | 2015-03-04T15:22+09:00 |
| jvndb-2015-001269 | Cross-site Scripting Vulnerability in Hitachi Application Server Help | 2015-02-16T11:21+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2015-001268 | Cross-site Scripting Vulnerability in Hitachi Command Suite Products | 2015-02-16T11:12+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-004833 | Vulnerability in JP1/NETM/DM and Job Management Partner 1/Software Distribution data reproduction functionality | 2014-11-11T15:33+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-002802 | Xml eXternal Entity Vulnerability in XML link function of Hitachi COBOL2002 | 2014-06-12T11:43+09:00 | 2015-03-03T16:59+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:02627-1 | Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3) | 2025-08-04T08:34:47Z | 2025-08-04T08:34:47Z |
| suse-su-2025:02626-1 | Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP6) | 2025-08-04T08:05:31Z | 2025-08-04T08:05:31Z |
| suse-su-2025:02638-1 | Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6) | 2025-08-04T08:05:16Z | 2025-08-04T08:05:16Z |
| suse-su-2025:02621-1 | Security update for libxml2 | 2025-08-04T07:43:41Z | 2025-08-04T07:43:41Z |
| suse-su-2025:02620-1 | Security update for libxml2 | 2025-08-04T07:43:06Z | 2025-08-04T07:43:06Z |
| suse-su-2025:02619-1 | Security update for the Linux Kernel (Live Patch 56 for SLE 15 SP3) | 2025-08-04T07:34:31Z | 2025-08-04T07:34:31Z |
| suse-su-2025:02618-1 | Security update for the Linux Kernel (Live Patch 60 for SLE 12 SP5) | 2025-08-04T07:34:19Z | 2025-08-04T07:34:19Z |
| suse-su-2025:02617-1 | Security update for libxml2 | 2025-08-04T07:05:10Z | 2025-08-04T07:05:10Z |
| suse-su-2025:02611-1 | Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP4) | 2025-08-03T16:34:14Z | 2025-08-03T16:34:14Z |
| suse-su-2025:02610-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4) | 2025-08-03T09:34:07Z | 2025-08-03T09:34:07Z |
| suse-su-2025:02608-1 | Security update for the Linux Kernel (Live Patch 57 for SLE 15 SP3) | 2025-08-02T23:34:25Z | 2025-08-02T23:34:25Z |
| suse-su-2025:02607-1 | Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3) | 2025-08-02T20:34:16Z | 2025-08-02T20:34:16Z |
| suse-su-2025:02606-1 | Security update for the Linux Kernel (Live Patch 66 for SLE 12 SP5) | 2025-08-02T16:34:09Z | 2025-08-02T16:34:09Z |
| suse-su-2025:02604-1 | Security update for the Linux Kernel (Live Patch 61 for SLE 12 SP5) | 2025-08-02T13:04:50Z | 2025-08-02T13:04:50Z |
| suse-su-2025:02602-1 | Security update for the Linux Kernel RT (Live Patch 8 for SLE 15 SP6) | 2025-08-02T06:06:06Z | 2025-08-02T06:06:06Z |
| suse-su-2025:02601-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) | 2025-08-02T05:34:36Z | 2025-08-02T05:34:36Z |
| suse-su-2025:02600-1 | Security update for nvidia-open-driver-G06-signed | 2025-08-01T20:15:45Z | 2025-08-01T20:15:45Z |
| suse-su-2025:02350-1 | Security update for kubernetes1.28 | 2025-08-01T16:07:53Z | 2025-08-01T16:07:53Z |
| suse-su-2025:02350-2 | Security update for kubernetes1.28 | 2025-08-01T16:07:50Z | 2025-08-01T16:07:50Z |
| suse-su-2025:02597-1 | Security update for python310 | 2025-08-01T15:14:29Z | 2025-08-01T15:14:29Z |
| suse-su-2025:02595-1 | Security update for gnutls | 2025-08-01T15:14:01Z | 2025-08-01T15:14:01Z |
| suse-su-2025:02594-1 | Security update for valkey | 2025-08-01T15:13:19Z | 2025-08-01T15:13:19Z |
| suse-su-2025:02593-1 | Security update for valkey | 2025-08-01T15:13:06Z | 2025-08-01T15:13:06Z |
| suse-su-2025:02592-1 | Security update for cosign | 2025-08-01T14:44:01Z | 2025-08-01T14:44:01Z |
| suse-su-2025:02589-1 | Security update for gnutls | 2025-08-01T13:06:31Z | 2025-08-01T13:06:31Z |
| suse-su-2025:02588-1 | Security update for the Linux Kernel | 2025-08-01T12:35:26Z | 2025-08-01T12:35:26Z |
| suse-su-2025:20539-1 | Security update for python311 | 2025-08-01T10:21:35Z | 2025-08-01T10:21:35Z |
| suse-su-2025:20530-1 | Security update for opensc | 2025-08-01T09:26:53Z | 2025-08-01T09:26:53Z |
| suse-su-2025:02464-2 | Security update for libgcrypt | 2025-08-01T09:17:59Z | 2025-08-01T09:17:59Z |
| suse-su-2025:02586-1 | Security update for rav1e | 2025-08-01T08:49:06Z | 2025-08-01T08:49:06Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-29434 | Desktop Alert PingAlert存在未明漏洞(CNVD-2025-29434) | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29433 | Desktop Alert PingAlert路径遍历漏洞 | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29432 | Desktop Alert PingAlert跨站脚本漏洞 | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29431 | Desktop Alert PingAlert服务端请求伪造漏洞 | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29430 | Desktop Alert PingAlert访问控制不当漏洞(CNVD-2025-29430) | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29429 | Desktop Alert PingAlert存在未明漏洞 | 2025-11-18 | 2025-11-26 |
| cnvd-2025-29428 | Tenda AC21 SetIpMacBind文件栈缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29427 | Tenda AC21 SetSysTimeCfg文件栈缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29426 | Tenda AC21 SetSysAutoRebbotCfg文件缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29425 | Tenda AC21 saveParentControlInfo文件缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29424 | Tenda AC21 SetVirtualServerCfg文件缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29423 | Tenda AC21 saveParentControlInfo文件缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29422 | Tenda AC21 setPptpUserList缓冲区溢出漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29421 | Revive Adserver跨站脚本漏洞(CNVD-2025-29421) | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29420 | Revive Adserver跨站脚本漏洞(CNVD-2025-29420) | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29419 | Revive Adserver跨站脚本漏洞(CNVD-2025-29419) | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29418 | Revive Adserver banner-zone.php脚本跨站脚本漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29417 | Revive Adserver用户名中空白中和不当漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29416 | Revive Adserver跨站脚本漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29415 | Revive Adserver授权绕过漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29414 | Revive Adserver缺少授权漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29413 | Revive Adserver信息泄露漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29412 | Revive Adserver格式字符中和不当漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29411 | Revive Adserver不受控资源消耗漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29410 | Revive Adserver用户管理系统设计不安全漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29409 | Revive Adserver stats-conversions.php脚本跨站脚本漏洞 | 2025-11-24 | 2025-11-26 |
| cnvd-2025-29408 | Revive Adserver暴力攻击漏洞 | 2023-04-19 | 2025-11-26 |
| cnvd-2025-29407 | Revive Adserver跨站脚本漏洞(CNVD-2025-29407) | 2023-09-20 | 2025-11-26 |
| cnvd-2025-29406 | Revive Adserver admin-search.php文件跨站脚本漏洞 | 2025-11-05 | 2025-11-26 |
| cnvd-2025-29405 | Revive Adserver SQL注入漏洞 | 2025-11-05 | 2025-11-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0343 | Vulnérabilité dans Spring Security | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| certfr-2025-avi-0342 | Multiples vulnérabilités dans Google Chrome | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| CERTFR-2025-AVI-0344 | Multiples vulnérabilités dans Grafana | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| CERTFR-2025-AVI-0343 | Vulnérabilité dans Spring Security | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| CERTFR-2025-AVI-0342 | Multiples vulnérabilités dans Google Chrome | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| certfr-2025-avi-0341 | Multiples vulnérabilités dans Traefik | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| certfr-2025-avi-0340 | Multiples vulnérabilités dans Moodle | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| certfr-2025-avi-0339 | Vulnérabilité dans PostgreSQL PgBouncer | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| certfr-2025-avi-0338 | Vulnérabilité dans Tenable Security Center | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| CERTFR-2025-AVI-0341 | Multiples vulnérabilités dans Traefik | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| CERTFR-2025-AVI-0340 | Multiples vulnérabilités dans Moodle | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| CERTFR-2025-AVI-0339 | Vulnérabilité dans PostgreSQL PgBouncer | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| CERTFR-2025-AVI-0338 | Vulnérabilité dans Tenable Security Center | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| certfr-2025-avi-0337 | Multiples vulnérabilités dans les produits IBM | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0336 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0335 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0334 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0333 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0332 | Vulnérabilité dans Liferay | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0331 | Multiples vulnérabilités dans Microsoft Edge | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0330 | Vulnérabilité dans les produits Moxa | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| certfr-2025-avi-0329 | Multiples vulnérabilités dans Tenable Nessus | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0337 | Multiples vulnérabilités dans les produits IBM | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0336 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0335 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0334 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0333 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0332 | Vulnérabilité dans Liferay | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0331 | Multiples vulnérabilités dans Microsoft Edge | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |
| CERTFR-2025-AVI-0330 | Vulnérabilité dans les produits Moxa | 2025-04-18T00:00:00.000000 | 2025-04-18T00:00:00.000000 |