Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2022-50940	5.1 (4.0) 6.4 (3.1)	Knap Advanced PHP Login 3.1.3 Persistent Cross-Site Sc…	ajay138	Knap Advanced PHP Login	2026-02-01T12:15:52.161Z	2026-02-03T16:41:23.239Z
CVE-2022-50941	5.1 (4.0) 6.4 (3.1)	BootCommerce 3.2.1 Persistent Cross-Site Scripting via…	MrPlugins	BootCommerce	2026-02-01T12:15:52.540Z	2026-02-03T16:41:17.944Z
CVE-2022-50942	4.8 (4.0) 5.4 (3.1)	Incinga Web 2.8.2 Client-Side Cross-Site Scripting via…	Incinga	Incinga Web	2026-02-01T12:15:52.927Z	2026-02-03T16:41:08.477Z
CVE-2021-47921	7.1 (4.0) 6.5 (3.1)	Free Photo & Video Vault 0.0.2 Directory Traversal Vul…	Author: Scott Ferreira	Free Photo & Video Vault - WiFi Transfe‪r	2026-02-01T12:56:56.509Z	2026-02-03T16:41:00.723Z
CVE-2020-37061	8.5 (4.0) 7.8 (3.1)	BOOTP Turbo 2.0.1214 - 'BOOTP Turbo' Unquoted Service Path	Weird-Solutions	BOOTP Turbo	2026-02-01T14:38:28.927Z	2026-02-03T16:40:50.398Z
CVE-2026-24994	5.3 (3.1)	WordPress Sunshine Photo Cart plugin <= 3.5.7.2 - Brok…	sunshinephotocart	Sunshine Photo Cart	2026-02-03T14:08:37.221Z	2026-02-03T16:39:59.846Z
CVE-2026-24984	N/A	WordPress Visual Link Preview plugin <= 2.2.9 - Broken…	Brecht	Visual Link Preview	2026-02-03T14:08:35.984Z	2026-02-03T16:37:30.908Z
CVE-2026-24986	5.4 (3.1)	WordPress Simple Membership WP user Import plugin <= 1…	wp.insider	Simple Membership WP user Import	2026-02-03T14:08:36.383Z	2026-02-03T16:28:07.865Z
CVE-2025-14550	N/A	Potential denial-of-service vulnerability via repeated…	djangoproject	Django	2026-02-03T14:38:15.875Z	2026-02-03T16:27:38.976Z
CVE-2026-1287	N/A	Potential SQL injection in column aliases via control …	djangoproject	Django	2026-02-03T14:36:03.630Z	2026-02-03T16:26:43.253Z
CVE-2026-24990	5.4 (3.1)	WordPress WP Docs plugin <= 2.2.8 - Broken Access Cont…	Fahad Mahmood	WP Docs	2026-02-03T14:08:36.720Z	2026-02-03T16:26:18.031Z
CVE-2026-1285	N/A	Potential denial-of-service vulnerability in django.ut…	djangoproject	Django	2026-02-03T14:35:50.254Z	2026-02-03T16:22:33.352Z
CVE-2026-24995	4.3 (3.1)	WordPress Latest Post Shortcode plugin <= 14.2.0 - Bro…	Iulia Cazan	Latest Post Shortcode	2026-02-03T14:08:37.390Z	2026-02-03T16:22:10.880Z
CVE-2026-1207	N/A	Potential SQL injection via raster lookups on PostGIS	djangoproject	Django	2026-02-03T14:35:33.721Z	2026-02-03T16:21:08.811Z
CVE-2026-24997	5.3 (3.1)	WordPress Wired Impact Volunteer Management plugin <= …	Wired Impact	Wired Impact Volunteer Management	2026-02-03T14:08:37.755Z	2026-02-03T16:20:22.879Z
CVE-2025-13473	N/A	Username enumeration through timing difference in mod_…	djangoproject	Django	2026-02-03T14:32:26.240Z	2026-02-03T16:19:15.167Z
CVE-2026-25010	5.3 (3.1)	WordPress Share This Image plugin <= 2.09 - Broken Acc…	ILLID	Share This Image	2026-02-03T14:08:38.599Z	2026-02-03T16:18:58.156Z
CVE-2026-25012	5.3 (3.1)	WordPress WP Bannerize Pro plugin <= 1.11.0 - Broken A…	gfazioli	WP Bannerize Pro	2026-02-03T14:08:38.953Z	2026-02-03T16:17:24.045Z
CVE-2026-25019	5.3 (3.1)	WordPress Atarim plugin <= 4.3.1 - Broken Access Contr…	Vito Peleg	Atarim	2026-02-03T14:08:39.681Z	2026-02-03T16:14:10.299Z
CVE-2026-25021	5.4 (3.1)	WordPress Mizan Demo Importer plugin <= 0.1.3 - Broken…	Mizan Themes	Mizan Demo Importer	2026-02-03T14:08:40.392Z	2026-02-03T16:13:12.772Z
CVE-2026-25023	5.3 (3.1)	WordPress Run Contests, Raffles, and Giveaways with Co…	mdedev	Run Contests, Raffles, and Giveaways with ContestsWP	2026-02-03T14:08:40.899Z	2026-02-03T16:12:10.005Z
CVE-2026-24996	4.3 (3.1)	WordPress WPElemento Importer plugin <= 0.6.4 - Broken…	wpelemento	WPElemento Importer	2026-02-03T14:08:37.567Z	2026-02-03T16:11:29.126Z
CVE-2025-53453	8.2 (3.1)	WordPress Hygia theme <= 1.16 - Local File Inclusion v…	axiomthemes	Hygia	2025-12-18T07:21:49.127Z	2026-02-03T16:05:11.528Z
CVE-2025-54723	9.8 (3.1)	WordPress DentiCare Theme < 1.4.3 - PHP Object Injecti…	BoldThemes	DentiCare	2025-12-18T07:21:49.313Z	2026-02-03T16:04:44.922Z
CVE-2025-54741	8.6 (3.1)	WordPress Super Blank Plugin <= 1.2.0 - Arbitrary Cont…	Tyler Moore	Super Blank	2025-12-18T07:21:49.496Z	2026-02-03T16:03:36.275Z
CVE-2026-24001	2.7 (4.0)	jsdiff has a Denial of Service vulnerability in parseP…	kpdecker	jsdiff	2026-01-22T02:23:44.059Z	2026-02-03T16:03:16.859Z
CVE-2026-24694	7.8 (3.0) 8.4 (4.0)	The installer for Roland Cloud Manager ver.3.1.19…	Roland Corporation	Roland Cloud Manager	2026-02-03T05:27:56.739Z	2026-02-03T16:01:27.410Z
CVE-2026-23794	N/A	Apache Syncope: Reflected XSS on Enduser Login	Apache Software Foundation	Apache Syncope	2026-02-03T15:15:24.310Z	2026-02-03T16:01:22.030Z
CVE-2026-23795	N/A	Apache Syncope: Console XXE on Keymaster parameters	Apache Software Foundation	Apache Syncope	2026-02-03T15:14:35.448Z	2026-02-03T16:00:32.112Z
CVE-2025-14274	5.4 (3.1)	Unlimited Elements for Elementor <= 2.0.1 - Authentica…	unitecms	Unlimited Elements For Elementor	2026-02-03T05:30:13.892Z	2026-02-03T15:59:25.552Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-22220	6.8 (4.0)	Improper Input Validation Leading to DoS on TP-Link Ar…	TP-Link Systems Inc.	Archer BE230 v1.2	2026-02-03T17:15:59.836Z	2026-02-04T18:32:13.840Z
CVE-2026-21393	5.4 (3.0) 4.8 (4.0)	Movable Type contains a stored cross-site scripti…	Six Apart Ltd.	Movable Type (Software Edition)	2026-02-04T07:02:50.465Z	2026-02-04T16:08:26.340Z
CVE-2026-20987	8.7 (4.0)	Improper input validation in GalaxyDiagnostics pr…	Samsung Mobile	GalaxyDiagnostics	2026-02-04T06:14:50.618Z	2026-02-04T16:58:49.035Z
CVE-2026-20986	5.1 (4.0)	Path traversal in Samsung Members prior to Chines…	Samsung Mobile	Chinese Samsung Members	2026-02-04T06:14:49.397Z	2026-02-04T16:58:28.932Z
CVE-2026-20985	7 (4.0)	Improper input validation in Samsung Members prio…	Samsung Mobile	Samsung Members	2026-02-04T06:14:48.243Z	2026-02-04T16:58:05.810Z
CVE-2026-20984	5.1 (4.0)	Improper handling of insufficient permission in G…	Samsung Mobile	Galaxy Wearable	2026-02-04T06:14:47.058Z	2026-02-04T16:57:38.337Z
CVE-2026-20732	3.1 (3.1) 2.3 (4.0)	BIG-IP Configuration utility vulnerability	F5	BIG-IP	2026-02-04T15:02:05.281Z	2026-02-04T16:08:05.470Z
CVE-2026-20730	3.3 (3.1) 2 (4.0)	BIG-IP Edge Client for Windows vulnerability	F5	BIG-IP Edge Client	2026-02-04T15:02:04.810Z	2026-02-04T16:10:57.286Z
CVE-2026-1835	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	lcg0124 BootDo cross-site request forgery	lcg0124	BootDo	2026-02-04T00:02:08.877Z	2026-02-04T20:19:24.564Z
CVE-2026-1819	8.8 (3.1)	Stored XSS in Karel Electronics' ViPort	Karel Electronics Industry and Trade Inc.	ViPort	2026-02-04T07:52:23.436Z	2026-02-04T16:19:45.790Z
CVE-2026-1813	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	bolo-blog bolo-solo FreeMarker Template PicUploadProce…	bolo-blog	bolo-solo	2026-02-03T23:32:08.090Z	2026-02-04T14:18:29.231Z
CVE-2026-1812	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	bolo-blog bolo-solo Filename BackupService.java import…	bolo-blog	bolo-solo	2026-02-03T22:32:08.158Z	2026-02-04T14:31:02.355Z
CVE-2026-1811	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	bolo-blog bolo-solo Filename BackupService.java import…	bolo-blog	bolo-solo	2026-02-03T21:32:07.628Z	2026-02-03T21:43:35.663Z
CVE-2026-1810	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	bolo-blog bolo-solo ZIP File BackupService.java unpack…	bolo-blog	bolo-solo	2026-02-03T20:32:07.343Z	2026-02-03T20:46:15.103Z
CVE-2026-1803	9.2 (4.0) 8.1 (3.1) 8.1 (3.0)	Ziroom ZHOME A0101 Dropbear SSH Service default credentials	Ziroom	ZHOME A0101	2026-02-03T20:02:05.815Z	2026-02-03T20:26:41.310Z
CVE-2026-1802	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	Ziroom ZHOME A0101 zrMacClone.lua macAddrClone command…	Ziroom	ZHOME A0101	2026-02-03T19:02:06.964Z	2026-02-03T19:50:30.284Z
CVE-2026-1801	5.3 (3.1)	Libsoup: libsoup: http request smuggling via malformed…	Red Hat	Red Hat Enterprise Linux 10	2026-02-03T20:12:21.360Z	2026-02-03T20:44:29.691Z
CVE-2026-1791	2.7 (3.1)	Arbitrary File Upload Vulnerability in Operation and M…	Hillstone Networks	Operation and Maintenance Security Gateway	2026-02-04T03:11:30.275Z	2026-02-04T20:19:45.301Z
CVE-2026-1756	8.8 (3.1)	WP FOFT Loader <= 2.1.39 - Authenticated (Author+) Arb…	seezee	WP FOFT Loader	2026-02-04T06:42:37.451Z	2026-02-04T16:59:57.807Z
CVE-2026-1755	6.4 (3.1)	Menu Icons by ThemeIsle <= 0.13.20 - Authenticated (Au…	themeisle	Menu Icons by ThemeIsle	2026-02-03T22:22:47.333Z	2026-02-04T14:35:12.337Z
CVE-2026-1633	10 (3.1) 10 (4.0)	Synectix LAN 232 TRIO Missing Authentication for Criti…	Synectix	LAN 232 TRIO	2026-02-03T23:02:58.208Z	2026-02-04T20:18:22.726Z
CVE-2026-1632	9.1 (3.1) 9.3 (4.0)	RISS SRL MOMA Seismic Station Missing Authentication f…	RISS SRL	MOMA Seismic Station	2026-02-03T22:59:32.539Z	2026-02-04T20:17:57.156Z
CVE-2026-1622	4.8 (4.0)	Unredacted data exposure in query.log	neo4j	Enterprise Edition	2026-02-04T09:14:46.320Z	2026-02-04T15:12:37.400Z
CVE-2026-1580	8.8 (3.1)	ingress-nginx auth-method nginx configuration injection	Kubernetes	ingress-nginx	2026-02-03T22:16:47.223Z	2026-02-06T03:14:22.819Z
CVE-2026-1370	4.9 (3.1)	SIBS - WooCommerce <= 2.2.0 - Authenticated (Admin+) S…	comprassibs	SIBS woocommerce payment gateway	2026-02-04T08:25:33.253Z	2026-02-04T15:18:10.439Z
CVE-2026-1341	9.3 (4.0)	Missing Authentication for Critical Function in Avatio…	Avation	Avation Light Engine Pro	2026-02-03T21:26:41.708Z	2026-02-04T16:47:32.531Z
CVE-2026-0873	4.8 (4.0)	Privilege Elevation in Ercom Cryptobox administration …	Ercom	Cryptobox	2026-02-04T10:42:14.626Z	2026-02-04T14:56:23.511Z
CVE-2026-0816	4.9 (3.1)	All push notification for WP <= 1.5.3 - Authenticated …	gtlwpdev	All push notification for WP	2026-02-04T08:25:34.026Z	2026-02-04T15:13:39.572Z
CVE-2026-0743	4.4 (3.1)	WP Content Permission <= 1.2 - Authenticated (Administ…	orenhav	WP Content Permission	2026-02-04T08:25:32.820Z	2026-02-04T16:53:12.830Z
CVE-2026-0742	6.4 (3.1)	Smart Appointment & Booking <= 1.0.7 - Authenticated (…	zealopensource	Smart Appointment & Booking	2026-02-04T08:25:32.460Z	2026-02-04T16:52:48.316Z

ID	Description	Published	Updated
fkie_cve-2026-22220	A lack of proper input validation in the HTTP processing path in TP-Link Archer BE230 v1.2 (web mod…	2026-02-03T18:16:19.077	2026-02-04T16:33:44.537
fkie_cve-2026-21393	Movable Type contains a stored cross-site scripting vulnerability in Edit Comment. If crafted input…	2026-02-04T07:16:01.027	2026-02-04T16:33:44.537
fkie_cve-2026-20987	Improper input validation in GalaxyDiagnostics prior to version 3.5.050 allows local privileged att…	2026-02-04T07:16:00.900	2026-02-04T16:33:44.537
fkie_cve-2026-20986	Path traversal in Samsung Members prior to Chinese version 15.5.05.4 allows local attackers to over…	2026-02-04T07:16:00.770	2026-02-04T16:33:44.537
fkie_cve-2026-20985	Improper input validation in Samsung Members prior to version 5.6.00.11 allows remote attackers to …	2026-02-04T07:16:00.647	2026-02-04T16:33:44.537
fkie_cve-2026-20984	Improper handling of insufficient permission in Galaxy Wearable installed on non-Samsung Device pri…	2026-02-04T07:16:00.517	2026-02-04T16:33:44.537
fkie_cve-2026-20732	A vulnerability exists in an undisclosed BIG-IP Configuration utility page that may allow an attack…	2026-02-04T15:16:14.740	2026-02-04T16:33:44.537
fkie_cve-2026-20730	A vulnerability exists in BIG-IP Edge Client and browser VPN clients on Windows that may allow atta…	2026-02-04T15:16:14.570	2026-02-04T16:33:44.537
fkie_cve-2026-1835	A vulnerability was identified in lcg0124 BootDo up to e93dd428ef6f5c881aa74d49a2099ab0cf1e0fcb. Th…	2026-02-04T01:15:56.100	2026-02-04T16:33:44.537
fkie_cve-2026-1819	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-02-04T08:16:06.820	2026-02-04T16:33:44.537
fkie_cve-2026-1813	A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of th…	2026-02-04T00:16:08.743	2026-02-04T16:33:44.537
fkie_cve-2026-1812	A vulnerability has been found in bolo-blog bolo-solo up to 2.6.4. This impacts the function import…	2026-02-03T23:16:06.803	2026-02-04T16:33:44.537
fkie_cve-2026-1811	A flaw has been found in bolo-blog bolo-solo up to 2.6.4. This affects the function importFromMarkd…	2026-02-03T22:16:29.673	2026-02-04T16:33:44.537
fkie_cve-2026-1810	A vulnerability was detected in bolo-blog bolo-solo up to 2.6.4. The impacted element is the functi…	2026-02-03T21:16:12.617	2026-02-04T16:33:44.537
fkie_cve-2026-1803	A weakness has been identified in Ziroom ZHOME A0101 1.0.1.0. Impacted is an unknown function of th…	2026-02-03T20:15:57.973	2026-02-04T16:33:44.537
fkie_cve-2026-1802	A security flaw has been discovered in Ziroom ZHOME A0101 1.0.1.0. This issue affects the function …	2026-02-03T19:16:16.170	2026-02-04T16:33:44.537
fkie_cve-2026-1801	A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerabili…	2026-02-03T21:16:12.390	2026-02-04T16:33:44.537
fkie_cve-2026-1791	Unrestricted Upload of File with Dangerous Type vulnerability in Hillstone Networks Operation and M…	2026-02-04T04:15:49.440	2026-02-04T16:33:44.537
fkie_cve-2026-1756	The WP FOFT Loader plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect fi…	2026-02-04T07:15:59.267	2026-02-04T16:33:44.537
fkie_cve-2026-1755	The Menu Icons by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via t…	2026-02-03T23:16:06.633	2026-02-04T16:33:44.537
fkie_cve-2026-1633	The Synectix LAN 232 TRIO 3-Port serial to ethernet adapter exposes its web management interface wi…	2026-02-04T00:16:08.557	2026-02-04T16:33:44.537
fkie_cve-2026-1632	MOMA Seismic Station Version v2.4.2520 and prior exposes its web management interface without requi…	2026-02-03T23:16:06.457	2026-02-04T16:33:44.537
fkie_cve-2026-1622	Neo4j Enterprise and Community editions versions prior to 2026.01.3 and 5.26.21 are vulnerable to a…	2026-02-04T10:16:04.780	2026-02-04T16:33:44.537
fkie_cve-2026-1580	A security issue was discovered in ingress-nginx where the `nginx.ingress.kubernetes.io/auth-method…	2026-02-03T23:16:06.290	2026-02-04T16:33:44.537
fkie_cve-2026-1370	The SIBS woocommerce payment gateway plugin for WordPress is vulnerable to time-based SQL Injection…	2026-02-04T09:15:52.977	2026-02-04T16:33:44.537
fkie_cve-2026-1341	Avation Light Engine Pro exposes its configuration and control interface without any authentication…	2026-02-03T22:16:29.517	2026-02-04T16:33:44.537
fkie_cve-2026-0873	On a Cryptobox platform where administrator segregation based on entities is used, some vulnerabili…	2026-02-04T11:16:02.797	2026-02-04T16:33:44.537
fkie_cve-2026-0816	The All push notification for WP plugin for WordPress is vulnerable to time-based SQL Injection via…	2026-02-04T09:15:52.810	2026-02-04T16:33:44.537
fkie_cve-2026-0743	The WP Content Permission plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…	2026-02-04T09:15:52.653	2026-02-04T16:33:44.537
fkie_cve-2026-0742	The Smart Appointment & Booking plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…	2026-02-04T09:15:52.477	2026-02-04T16:33:44.537

ID	Severity	Description	Published	Updated
ghsa-fr9h-7cq2-wq74	6.1 (3.1) 5.9 (4.0)	Lack of output escaping leads to a XSS vector in the pagebreak plugin.	2026-01-06T18:31:35Z	2026-01-30T21:30:19Z
ghsa-ff5f-4h34-m3c8	6.5 (3.1) 6.9 (4.0)	Vulnerability in the access control system of the GAMS licensing system that allows unlimited valid…	2025-12-02T15:30:33Z	2026-01-30T21:30:19Z
ghsa-74jr-8vhj-2c3f	5.5 (3.1) 1.3 (4.0)	Interactive service agent in OpenVPN version 2.5.0 through 2.7_rc2 on Windows allows a local authen…	2025-12-03T18:30:25Z	2026-01-30T21:30:19Z
ghsa-5j4f-jq8r-vg77	7.5 (3.1) 2.4 (4.0)	Docker Desktop diagnostics bundles were found to include expired Hub PATs in log output due to erro…	2025-12-09T21:31:49Z	2026-01-30T21:30:19Z
ghsa-3cr9-fpp3-68j2	2.7 (3.1) 5.1 (4.0)	Directory traversal vulnerability in SOLIDserver IPAM v8.2.3. This vulnerability allows an authenti…	2025-12-02T15:30:32Z	2026-01-30T21:30:19Z
ghsa-2345-773c-9xg5	6.1 (3.1) 5.1 (4.0)	Reflected Cross-Site Scripting (XSS) in IDI Eikon's Governalia. The vulnerability allows an attacke…	2025-12-02T15:30:32Z	2026-01-30T21:30:19Z
ghsa-m9gc-7c67-49qc	4.9 (3.1) 7.0 (4.0)	An arbitrary file upload vulnerability in Palo Alto Networks Panorama software enables an authentic…	2024-07-10T21:30:38Z	2026-01-30T21:30:18Z
ghsa-m3fm-4744-qmhg	9.8 (3.1) 9.5 (4.0)	An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If expl…	2024-12-06T18:30:45Z	2026-01-30T21:30:18Z
ghsa-89mq-4fx7-3g3c	7.8 (3.1) 8.5 (4.0)	A command injection vulnerability in Brocade Fabric OS before 9.2.0c, and 9.2.1 through 9.2.1a on I…	2025-09-09T21:30:24Z	2026-01-30T21:30:18Z
ghsa-739c-hg26-wf67	9.8 (3.1)	It was identified that under certain specific preconditions, an API key that was originally created…	2026-01-30T21:30:18Z	2026-01-30T21:30:18Z
ghsa-93p2-3fjv-r8vv	4.3 (3.1)	An improper authorization vulnerability in Palo Alto Networks Panorama software enables an authenti…	2024-03-13T18:31:36Z	2026-01-30T21:30:17Z
ghsa-xmfj-7pp5-fxr6	3.2 (3.1)	Llama Stack exposes secret in initialization log	2026-01-30T09:30:55Z	2026-01-30T20:56:29Z
ghsa-6f65-4fv2-wwch	2.7 (4.0)	Vendure vulnerable to timing attack that enables user enumeration in NativeAuthenticationStrategy	2026-01-30T19:35:40Z	2026-01-30T19:35:40Z
ghsa-r82w-6grp-hfmf	7.3 (3.1) 5.5 (4.0)	A security vulnerability has been detected in itsourcecode Student Management System 1.0. This issu…	2026-01-30T18:31:16Z	2026-01-30T18:31:16Z
ghsa-p57v-jgcx-wq3m	4.7 (3.1) 2.0 (4.0)	A flaw has been found in Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon. This affects the function …	2026-01-30T18:31:16Z	2026-01-30T18:31:16Z
ghsa-j4xv-44mv-ww5h	6.3 (3.1) 2.1 (4.0)	A vulnerability was detected in SourceCodester Pet Grooming Management Software 1.0. Impacted is an…	2026-01-30T18:31:16Z	2026-01-30T18:31:16Z
ghsa-g4hj-43hm-xfc7	6.3 (3.1) 2.1 (4.0)	A vulnerability has been found in bolo-solo up to 2.6.4. This impacts the function importMarkdownsS…	2026-01-30T18:31:16Z	2026-01-30T18:31:16Z
ghsa-5vqf-8g9x-xgcv	3.5 (3.1) 2.0 (4.0)	A weakness has been identified in projectworlds House Rental and Property Listing 1.0. This vulnera…	2026-01-30T18:31:16Z	2026-01-30T18:31:16Z
ghsa-xwjm-jcx5-9rrw	7.8 (3.1) 8.5 (4.0)	Outline Service 1.3.3 contains an unquoted service path vulnerability that allows local users to po…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-w5vg-cfrg-p5j6	6.4 (3.1) 5.1 (4.0)	Forma.lms The E-Learning Suite 2.3.0.2 contains a persistent cross-site scripting vulnerability in …	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-r477-j3qm-pjx3	7.8 (3.1) 8.5 (4.0)	Popcorn Time 6.2.1.14 contains an unquoted service path vulnerability that allows local non-privile…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-qx3j-ph5m-vrv9	7.8 (3.1) 8.5 (4.0)	Atomic Alarm Clock 6.3 contains a local privilege escalation vulnerability in its service configura…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-qg84-jfh7-8hpx	7.3 (3.1) 5.5 (4.0)	A security vulnerability has been detected in itsourcecode Directory Management System 1.0. The aff…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-mwv3-x6r9-r9c2	9.2 (4.0)	After receiving a malformed 802.15.4 MAC Data Request the Zigbee Coordinator sends a ‘network l…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-gcg5-q479-jh6f	6.4 (3.1) 5.1 (4.0)	Orchard Core RC1 contains a persistent cross-site scripting vulnerability that allows remote attack…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-frj2-fj2r-89c8	6.4 (3.1) 5.1 (4.0)	PHPFusion 9.03.50 contains a persistent cross-site scripting vulnerability in the print.php page th…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-f6mv-hr3h-h98h	7.3 (3.1) 5.5 (4.0)	A weakness has been identified in Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon. Impacted is an un…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-9256-w668-cg6v	7.3 (3.1) 5.5 (4.0)	A vulnerability was detected in Tenda HG10 US_HG7_HG9_HG10re_300001138_en_xpon. The impacted elemen…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-8m3g-w86x-w9wc	8.6 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z
ghsa-75ww-9jqw-jwf8	6.4 (3.1) 5.1 (4.0)	Dolibarr 11.0.3 contains a persistent cross-site scripting vulnerability in LDAP synchronization se…	2026-01-30T18:31:15Z	2026-01-30T18:31:15Z

ID	Description	Package	Published	Updated
pysec-2014-9	Incomplete blacklist vulnerability in the lxml.html.clean module in lxml before 3.3.5 all…	lxml	2014-05-14T19:55:00Z	2021-07-05T00:01:22.415943Z
pysec-2014-8	The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does…	jinja2	2014-05-19T14:55:00Z	2021-07-05T00:01:22.043149Z
pysec-2013-6	Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.…	moin	2013-01-03T01:55:00Z	2021-07-05T00:01:22.974248Z
pysec-2013-5	Directory traversal vulnerability in the _do_attachment_move function in the AttachFile a…	moin	2013-01-03T01:55:00Z	2021-07-05T00:01:22.941193Z
pysec-2011-6	Cross-site scripting (XSS) vulnerability in the reStructuredText (rst) parser in parser/t…	moin	2011-02-22T18:00:00Z	2021-07-05T00:01:22.907058Z
pysec-2010-3	The default configuration of cfg.packagepages_actions_excluded in MoinMoin before 1.8.7 d…	moin	2010-02-26T19:30:00Z	2021-07-05T00:01:22.874295Z
pysec-2010-2	MoinMoin before 1.8.7 and 1.9.x before 1.9.2 does not properly sanitize user profiles, wh…	moin	2010-02-26T19:30:00Z	2021-07-05T00:01:22.841909Z
pysec-2010-1	Mako before 0.3.4 relies on the cgi.escape function in the Python standard library for cr…	mako	2010-07-02T19:00:00Z	2021-07-05T00:01:22.516270Z
pysec-2019-152	A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0…	ironic-inspector	2019-07-30T17:15:00Z	2021-07-05T00:01:21.998814Z
pysec-2019-151	send_email in graphite-web/webapp/graphite/composer/views.py in Graphite through 1.1.5 is…	graphite-web	2019-10-11T23:15:00Z	2021-07-05T00:01:21.806042Z
pysec-2017-15	The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cros…	html5lib	2017-02-22T16:59:00Z	2021-07-05T00:01:21.869008Z
pysec-2017-14	The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cros…	html5lib	2017-02-22T16:59:00Z	2021-07-05T00:01:21.837127Z
pysec-2017-13	FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message v…	fedmsg	2017-07-17T13:18:00Z	2021-07-05T00:01:21.573658Z
pysec-2017-12	Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute…	dulwich	2017-10-29T20:29:00Z	2021-07-05T00:01:21.470158Z
pysec-2013-4	Multiple cross-site scripting (XSS) vulnerabilities in Graphite before 0.9.11 allow remot…	graphite-web	2013-09-27T10:08:00Z	2021-07-05T00:01:21.777451Z
pysec-2013-3	The renderLocalView function in render/views.py in graphite-web in Graphite 0.9.5 through…	graphite-web	2013-09-27T10:08:00Z	2021-07-05T00:01:21.746777Z
pysec-2017-9	Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on user input …	django	2017-04-04T17:59:00Z	2021-07-05T00:01:20.658989Z
pysec-2017-10	A maliciously crafted URL to a Django (1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 bef…	django	2017-04-04T17:59:00Z	2021-07-05T00:01:20.782735Z
pysec-2016-3	The cookie parsing code in Django before 1.8.15 and 1.9.x before 1.9.10, when used on a s…	django	2016-10-03T18:59:00Z	2021-07-05T00:01:20.518242Z
pysec-2015-10	Django before 1.4.21, 1.5.x through 1.6.x, 1.7.x before 1.7.9, and 1.8.x before 1.8.3 use…	django	2015-07-14T17:59:00Z	2021-07-05T00:01:20.182098Z
pysec-2015-8	Cross-site scripting (XSS) vulnerability in the contents function in admin/helpers.py in …	django	2015-03-12T14:59:00Z	2021-07-05T00:01:19.894697Z
pysec-2015-7	ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_…	django	2015-01-16T16:59:00Z	2021-07-05T00:01:19.802913Z
pysec-2015-6	The django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.…	django	2015-01-16T16:59:00Z	2021-07-05T00:01:19.682404Z
pysec-2015-5	The django.util.http.is_safe_url function in Django before 1.4.18, 1.6.x before 1.6.10, a…	django	2015-01-16T16:59:00Z	2021-07-05T00:01:19.540383Z
pysec-2015-4	Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 allows remote attackers…	django	2015-01-16T16:59:00Z	2021-07-05T00:01:19.325962Z
pysec-2014-7	The administrative interface (contrib.admin) in Django before 1.4.14, 1.5.x before 1.5.9,…	django	2014-08-26T14:55:00Z	2021-07-05T00:01:19.203370Z
pysec-2014-6	The contrib.auth.middleware.RemoteUserMiddleware middleware in Django before 1.4.14, 1.5.…	django	2014-08-26T14:55:00Z	2021-07-05T00:01:19.085708Z
pysec-2014-5	The default configuration for the file upload handling system in Django before 1.4.14, 1.…	django	2014-08-26T14:55:00Z	2021-07-05T00:01:18.973883Z
pysec-2014-4	The core.urlresolvers.reverse function in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x…	django	2014-08-26T14:55:00Z	2021-07-05T00:01:18.862505Z
pysec-2014-3	The (1) FilePathField, (2) GenericIPAddressField, and (3) IPAddressField model field clas…	django	2014-04-23T15:55:00Z	2021-07-05T00:01:18.748183Z

ID	Description	Updated
gsd-2024-3408	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.140045Z
gsd-2024-3407	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.413703Z
gsd-2024-3406	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.258113Z
gsd-2024-3405	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.054613Z
gsd-2024-3404	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.145852Z
gsd-2024-3403	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.402703Z
gsd-2024-3402	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.303228Z
gsd-2024-3401	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.421566Z
gsd-2024-3400	A command injection vulnerability in the GlobalProtect feature of Palo Alto Networks PAN-…	2024-04-11T05:03:27.203461Z
gsd-2024-3399	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.146463Z
gsd-2024-3398	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.169704Z
gsd-2024-3397	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.041818Z
gsd-2024-3396	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.102005Z
gsd-2024-3395	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.172818Z
gsd-2024-3394	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.221379Z
gsd-2024-3393	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.097463Z
gsd-2024-3392	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.116961Z
gsd-2024-3391	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.134890Z
gsd-2024-3390	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.293304Z
gsd-2024-3389	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.267136Z
gsd-2024-3388	A vulnerability in the GlobalProtect Gateway in Palo Alto Networks PAN-OS software enable…	2024-04-11T05:03:27.133926Z
gsd-2024-3387	A weak (low bit strength) device certificate in Palo Alto Networks Panorama software enab…	2024-04-11T05:03:27.048508Z
gsd-2024-3386	An incorrect string comparison vulnerability in Palo Alto Networks PAN-OS software preven…	2024-04-11T05:03:27.242248Z
gsd-2024-3385	A packet processing mechanism in Palo Alto Networks PAN-OS software enables a remote atta…	2024-04-11T05:03:27.290920Z
gsd-2024-3384	A vulnerability in Palo Alto Networks PAN-OS software enables a remote attacker to reboot…	2024-04-11T05:03:27.078070Z
gsd-2024-3383	A vulnerability in how Palo Alto Networks PAN-OS software processes data received from Cl…	2024-04-11T05:03:27.257299Z
gsd-2024-3382	A memory leak exists in Palo Alto Networks PAN-OS software that enables an attacker to se…	2024-04-11T05:03:27.263916Z
gsd-2024-3381	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.056344Z
gsd-2024-3380	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.090971Z
gsd-2024-3379	The format of the source doesn't require a description, click on the link for more details.	2024-04-11T05:03:27.106995Z

ID	Description	Published	Updated
mal-2025-192149	Malicious code in elf-stats-snuggly-cookie-673 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
mal-2025-192148	Malicious code in elf-stats-snowy-train-725 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
mal-2025-192146	Malicious code in elf-stats-snowy-snowman-433 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
mal-2025-192145	Malicious code in elf-stats-snowy-sleigh-766 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
mal-2025-192144	Malicious code in elf-stats-snowy-cookiejar-589 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
mal-2025-191987	Malicious code in elf-stats-starlit-ribbon-255 (npm)	2025-12-03T15:38:17Z	2025-12-23T21:38:09Z
MAL-2025-192533	Malicious code in elf-stats-sprucey-train-710 (npm)	2025-12-11T19:46:09Z	2025-12-23T21:38:09Z
MAL-2025-192532	Malicious code in elf-stats-sparkly-toolkit-821 (npm)	2025-12-11T19:46:09Z	2025-12-23T21:38:09Z
MAL-2025-192531	Malicious code in elf-stats-sparkly-fir-398 (npm)	2025-12-11T19:46:09Z	2025-12-23T21:38:09Z
MAL-2025-192528	Malicious code in elf-stats-snowdusted-marshmallow-228 (npm)	2025-12-11T19:46:09Z	2025-12-23T21:38:09Z
MAL-2025-192340	Malicious code in elf-stats-sparkly-icicle-845 (npm)	2025-12-05T21:10:10Z	2025-12-23T21:38:09Z
MAL-2025-192283	Malicious code in elf-stats-sparkly-candy-805 (npm)	2025-12-03T19:42:46Z	2025-12-23T21:38:09Z
MAL-2025-192276	Malicious code in elf-stats-snowy-northstar-860 (npm)	2025-12-03T19:25:36Z	2025-12-23T21:38:09Z
MAL-2025-192267	Malicious code in elf-stats-snowdusted-lantern-234 (npm)	2025-12-03T18:57:54Z	2025-12-23T21:38:09Z
MAL-2025-192235	Malicious code in elf-stats-sprucey-stockpile-628 (npm)	2025-12-03T17:22:10Z	2025-12-23T21:38:09Z
MAL-2025-192233	Malicious code in elf-stats-snowy-candy-518 (npm)	2025-12-03T17:22:10Z	2025-12-23T21:38:09Z
MAL-2025-192167	Malicious code in elf-stats-storybook-cookiejar-481 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192166	Malicious code in elf-stats-storybook-cookiejar-394 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192165	Malicious code in elf-stats-storybook-bow-866 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192163	Malicious code in elf-stats-starlit-rocket-905 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192162	Malicious code in elf-stats-starlit-northstar-873 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192160	Malicious code in elf-stats-sprucey-train-471 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192157	Malicious code in elf-stats-sprucey-icicle-606 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192152	Malicious code in elf-stats-snuggly-workshop-421 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192150	Malicious code in elf-stats-snuggly-rocket-941 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192149	Malicious code in elf-stats-snuggly-cookie-673 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192148	Malicious code in elf-stats-snowy-train-725 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192146	Malicious code in elf-stats-snowy-snowman-433 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192145	Malicious code in elf-stats-snowy-sleigh-766 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z
MAL-2025-192144	Malicious code in elf-stats-snowy-cookiejar-589 (npm)	2025-12-03T15:59:29Z	2025-12-23T21:38:09Z

ID	Description	Published	Updated
wid-sec-w-2025-0280	Cisco Expressway: Schwachstelle ermöglicht Cross-Site Scripting	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0279	Cisco Identity Services Engine (ISE): Mehrere Schwachstellen	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0277	IBM Security Verify Access: Schwachstelle ermöglicht Privilegieneskalation	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0276	Cisco AsyncOS, Secure Email Gateway und Secure Web Appliance: Mehrere Schwachstellen	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0275	Asterisk: Schwachstelle ermöglicht Codeausführung	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0273	IBM App Connect Enterprise: Schwachstelle ermöglicht Manipulation von Dateien	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0272	Dell Avamar: Schwachstelle ermöglicht Erlangen von Benutzerrechten	2025-02-05T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-3584	Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2024-12-03T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-2091	Siemens SIMATIC WinCC: Mehrere Schwachstellen ermöglichen Denial of Service	2024-09-09T22:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-1307	Red Hat OpenShift Service Mesh Containers: Mehrere Schwachstellen	2024-06-06T22:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-1228	Red Hat OpenStack: Mehrere Schwachstellen	2024-05-22T22:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-0581	Apple iOS und Apple iPadOS: Mehrere Schwachstellen	2024-03-07T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2024-0577	Apple Safari: Mehrere Schwachstellen	2024-03-07T23:00:00.000+00:00	2025-02-05T23:00:00.000+00:00
wid-sec-w-2025-0271	libyaml: Schwachstelle ermöglicht Denial of Service	2015-01-28T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0269	Linux Kernel: Mehrere Schwachstellen	2017-08-10T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0268	Perl: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten	2017-11-19T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0267	GnuPGP: Schwachstelle ermöglicht Offenlegung von Informationen	2018-06-13T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0266	cURL: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten	2018-07-29T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0264	HCL BigFix Server Automation: Schwachstelle ermöglicht Denial of Service	2025-02-04T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0261	Aruba ClearPass Policy Manager: Mehrere Schwachstellen	2025-02-04T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0258	Apache Cassandra: Mehrere Schwachstellen.	2025-02-03T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2025-0120	Microsoft Edge: Mehrere Schwachstellen	2025-01-19T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-3733	Red Hat Advanced Cluster Management: Mehrere Schwachstellen	2024-12-18T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-3155	QEMU: Schwachstelle ermöglicht Privilegieneskalation oder DoS	2024-10-13T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-1945	Red Hat Enterprise Linux (libvpx): Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-28T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-1618	Checkmk: Mehrere Schwachstellen	2024-07-15T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2024-0700	Microsoft .NET Framework: Schwachstelle ermöglicht Offenlegung von Informationen	2024-03-24T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2023-1819	OpenSSH: Schwachstelle ermöglicht Codeausführung	2023-07-19T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2023-1642	cURL: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Benutzerrechten	2018-09-04T22:00:00.000+00:00	2025-02-04T23:00:00.000+00:00
wid-sec-w-2023-1641	cURL: Mehrere Schwachstellen	2018-10-30T23:00:00.000+00:00	2025-02-04T23:00:00.000+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2025:13904	Red Hat Security Advisory: RHOAI 2.23.0 - Red Hat OpenShift AI	2025-08-14T16:11:10+00:00	2026-02-03T21:39:20+00:00
rhsa-2025:0876	Red Hat Security Advisory: OpenShift Container Platform 4.17.15 bug fix and security update	2025-02-05T13:37:42+00:00	2026-02-03T21:39:02+00:00
rhsa-2025:0340	Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update	2025-01-15T16:54:28+00:00	2026-02-03T21:38:52+00:00
rhsa-2025:0164	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.9 Bug Fix Update	2025-01-09T11:27:57+00:00	2026-02-03T21:38:50+00:00
rhsa-2025:0079	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.2 Bug Fix Update	2025-01-08T10:04:05+00:00	2026-02-03T21:38:50+00:00
rhsa-2024:9885	Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0	2024-11-18T15:17:19+00:00	2026-02-03T21:38:48+00:00
rhsa-2024:9884	Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0	2024-11-18T14:52:00+00:00	2026-02-03T21:38:48+00:00
rhsa-2024:9627	Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.3	2024-11-14T08:35:32+00:00	2026-02-03T21:38:48+00:00
rhsa-2024:9181	Red Hat Security Advisory: jose security update	2024-11-12T08:46:02+00:00	2026-02-03T21:38:48+00:00
rhsa-2024:8981	Red Hat Security Advisory: OpenShift Container Platform 4.17.4 bug fix and security update	2024-11-13T04:13:47+00:00	2026-02-03T21:38:40+00:00
rhsa-2024:8876	Red Hat Security Advisory: go-toolset:rhel8 security update	2024-11-05T04:12:40+00:00	2026-02-03T21:38:39+00:00
rhsa-2024:8418	Red Hat Security Advisory: OpenShift Container Platform 4.16.z security update	2024-10-30T01:33:39+00:00	2026-02-03T21:38:37+00:00
rhsa-2024:8077	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update	2024-10-14T18:01:43+00:00	2026-02-03T21:38:30+00:00
rhsa-2024:8076	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update	2024-10-14T18:01:49+00:00	2026-02-03T21:38:30+00:00
rhsa-2024:8075	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.19 Security update	2024-10-14T18:01:59+00:00	2026-02-03T21:38:29+00:00
rhsa-2024:7987	Red Hat Security Advisory: Satellite 6.15.4 Security Update	2024-10-10T20:31:33+00:00	2026-02-03T21:38:26+00:00
rhsa-2024:7941	Red Hat Security Advisory: OpenShift Container Platform 4.13.z security update	2024-10-16T20:30:11+00:00	2026-02-03T21:38:25+00:00
rhsa-2024:7187	Red Hat Security Advisory: OpenShift Container Platform 4.14.38 security update	2024-10-03T11:24:56+00:00	2026-02-03T21:38:13+00:00
rhsa-2024:7182	Red Hat Security Advisory: OpenShift Container Platform 4.15.35 packages and security update	2024-10-02T06:08:52+00:00	2026-02-03T21:38:13+00:00
rhsa-2024:7179	Red Hat Security Advisory: OpenShift Container Platform 4.15.35 bug fix and security update	2024-10-02T05:49:45+00:00	2026-02-03T21:38:12+00:00
rhsa-2024:7174	Red Hat Security Advisory: OpenShift Container Platform 4.16.15 bug fix and security update	2024-10-02T05:27:44+00:00	2026-02-03T21:38:12+00:00
rhsa-2024:6818	Red Hat Security Advisory: OpenShift Container Platform 4.15.34 bug fix and security update	2024-09-25T13:59:31+00:00	2026-02-03T21:38:05+00:00
rhsa-2024:6708	Red Hat Security Advisory: ACS 4.5 enhancement and security update	2024-09-16T18:26:56+00:00	2026-02-03T21:38:04+00:00
rhsa-2024:6687	Red Hat Security Advisory: OpenShift Container Platform 4.16.13 bug fix and security update	2024-09-19T05:38:53+00:00	2026-02-03T21:38:03+00:00
rhsa-2024:6210	Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.4 security update	2024-09-03T10:05:02+00:00	2026-02-03T21:38:03+00:00
rhsa-2024:6667	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.16.0 release	2024-09-12T21:30:49+00:00	2026-02-03T21:38:01+00:00
rhsa-2024:6209	Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.10 security update	2024-09-03T10:04:55+00:00	2026-02-03T21:37:57+00:00
rhsa-2024:6186	Red Hat Security Advisory: containernetworking-plugins security update	2024-09-03T19:57:55+00:00	2026-02-03T21:37:57+00:00
rhsa-2024:6195	Red Hat Security Advisory: skopeo security update	2024-09-03T09:23:32+00:00	2026-02-03T21:37:56+00:00
rhsa-2024:6189	Red Hat Security Advisory: buildah security update	2024-09-03T09:11:32+00:00	2026-02-03T21:37:55+00:00

ID	Description	Published	Updated
icsma-19-080-01	Medtronic Conexus Radio Frequency Telemetry Protocol (Update C)	2019-03-21T00:00:00.000000Z	2021-04-08T00:00:00.000000Z
icsa-21-098-01	FATEK Automation WinProladder	2021-04-08T00:00:00.000000Z	2021-04-08T00:00:00.000000Z
icsa-21-091-01	Rockwell Automation FactoryTalk AssetCentre	2021-04-01T00:00:00.000000Z	2021-04-01T00:00:00.000000Z
icsma-21-084-01	Philips Gemini PET/CT Family	2021-03-25T00:00:00.000000Z	2021-03-25T00:00:00.000000Z
icsa-21-082-03	GE Reason DR60	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-082-02	GE MU320E	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-082-01	Weintek EasyWeb cMT	2021-03-23T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-061-02	Rockwell Automation CompactLogix 5370 and ControlLogix 5570 Controllers (Update A)	2021-03-02T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-033-01	Rockwell Automation MicroLogix 1400 (Update A)	2021-02-02T00:00:00.000000Z	2021-03-23T00:00:00.000000Z
icsa-21-077-03	Hitachi ABB Power Grids eSOMS Telerik	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-077-02	Hitachi ABB Power Grids eSOMS	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-077-01	Johnson Controls Exacq Technologies exacqVision	2021-03-18T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsa-21-056-03	Rockwell Automation Logix Controllers (Update A)	2021-02-25T00:00:00.000000Z	2021-03-18T00:00:00.000000Z
icsma-17-017-02	BD Alaris 8015 PC Unit (Update B)	2017-01-17T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-03	Hitachi ABB Power Grids AFS Series	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-02	GE UR family	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-075-01	Advantech WebAccess/SCADA	2021-03-16T00:00:00.000000Z	2021-03-16T00:00:00.000000Z
icsa-21-070-01	Schneider Electric IGSS SCADA Software	2021-03-11T00:00:00.000000Z	2021-03-11T00:00:00.000000Z
icsa-21-068-08	Siemens Energy PLUSCONTROL 1st Gen	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-07	Siemens TCP Stack of SIMATIC MV400	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-04	Siemens SINEMA Remote Connect Server	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-068-01	Siemens SIMATIC S7-PLCSIM	2021-03-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-035-01	Luxion KeyShot (Update A)	2021-02-04T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-19-162-02	Siemens SIMATIC Ident MV440 Family (Update A)	2019-06-11T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-19-099-04	Siemens SINEMA Remote Connect (Update A)	2019-04-09T00:00:00.000000Z	2021-03-09T00:00:00.000000Z
icsa-21-063-02	ICSA-21-063-02_Schneider Electric EcoStruxure Building Operation (EBO)	2021-03-04T00:00:00.000000Z	2021-03-04T00:00:00.000000Z
icsa-21-063-01	Rockwell Automation 1734-AENTR Series B and Series C	2021-03-04T00:00:00.000000Z	2021-03-04T00:00:00.000000Z
icsa-21-061-03	MB connect line mbCONNECT24, mymbCONNECT24	2021-03-02T00:00:00.000000Z	2021-03-02T00:00:00.000000Z
icsa-21-061-01	Hitachi ABB Power Grids Ellipse EAM	2021-03-02T00:00:00.000000Z	2021-03-02T00:00:00.000000Z
icsa-21-056-04	ProSoft Technology ICX35	2021-02-25T00:00:00.000000Z	2021-02-25T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-emvman-3y6LuTcZ	Cisco SD-WAN vManage Software Denial of Service Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-dncm-xss-avmyawd2	Cisco Data Center Network Manager Cross-Site Scripting Vulnerabilities	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-dncm-xss-AvMyAwd2	Cisco Data Center Network Manager Cross-Site Scripting Vulnerabilities	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-dcnm-privescal-zxfch7dg	Cisco Data Center Network Manager Privilege Escalation Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-dcnm-privescal-zxfCH7Dg	Cisco Data Center Network Manager Privilege Escalation Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-code-exec-wh3bnfb	Cisco RV110W and RV215W Series Routers Arbitrary Code Execution Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-code-exec-wH3BNFb	Cisco RV110W and RV215W Series Routers Arbitrary Code Execution Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cmd-shell-injection-9joqn9dy	Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cmd-shell-injection-9jOQn9Dy	Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cma-turn-crdls-rhjszkxn	Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cma-turn-crdls-RHjSzKXn	Cisco Meetings App Missing TURN Server Credentials Expiration Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-clibypvman-skclf2l	Cisco SD-WAN vManage Software Command Injection Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-clibypvman-sKcLf2L	Cisco SD-WAN vManage Software Command Injection Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cisco-prime-priv-esc-hyhwdzba	Cisco Prime License Manager Privilege Escalation Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-cisco-prime-priv-esc-HyhwdzBA	Cisco Prime License Manager Privilege Escalation Vulnerability	2020-07-15T16:00:00+00:00	2020-07-15T16:00:00+00:00
cisco-sa-telnetd-efjrezpx	Telnet Vulnerability Affecting Cisco Products: June 2020	2020-06-24T16:00:00+00:00	2020-07-08T16:58:30+00:00
cisco-sa-telnetd-EFJrEzPx	Telnet Vulnerability Affecting Cisco Products: June 2020	2020-06-24T16:00:00+00:00	2020-07-08T16:58:30+00:00
cisco-sa-sbswitch-session-jzas5jny	Cisco Small Business Smart and Managed Switches Session Management Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-sbswitch-session-JZAS5jnY	Cisco Small Business Smart and Managed Switches Session Management Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-sa-rv-routers-xss-k7z5u6q3	Cisco Small Business RV042 and RV042G Routers Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-sa-rv-routers-xss-K7Z5U6q3	Cisco Small Business RV042 and RV042G Routers Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-mlt-ise-strd-xss-nqfhttx7	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-mlt-ise-strd-xss-nqFhTtx7	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-dnac-info-disc-6xscydyy	Cisco Digital Network Architecture Center Information Disclosure Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-dnac-info-disc-6xsCyDYy	Cisco Digital Network Architecture Center Information Disclosure Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-cucm-xss-blzw4ctq	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-cucm-xss-bLZw4Ctq	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-cucm-cuc-imp-xss-owusyap	Cisco Unified Communications Products Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-cucm-cuc-imp-xss-OWuSYAp	Cisco Unified Communications Products Cross-Site Scripting Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00
cisco-sa-anyconnect-mac-dos-36s2y3lv	Cisco AnyConnect Secure Mobility Client for Mac OS File Corruption Vulnerability	2020-07-01T16:00:00+00:00	2020-07-01T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-22106	vmxnet3: unregister xdp rxq info in the reset path	2025-04-02T00:00:00.000Z	2025-09-03T22:50:44.000Z
msrc_cve-2025-38463	tcp: Correct signedness in skb remaining space calculation	2025-07-02T00:00:00.000Z	2025-09-03T22:50:41.000Z
msrc_cve-2025-23090	Rejected reason: This CVE record has been withdrawn due to a duplicate entry CVE-2025-23083.	2025-01-02T00:00:00.000Z	2025-09-03T22:50:35.000Z
msrc_cve-2024-45777	Grub2: grub-core/gettext: integer overflow leads to heap oob write.	2025-02-02T00:00:00.000Z	2025-09-03T22:49:56.000Z
msrc_cve-2024-2605	An attacker could have leveraged the Windows Error Reporter to run arbitrary code on the system escaping the sandbox. Note: This issue only affected Windows operating systems. Other operating systems are unaffected. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9.	2024-03-02T08:00:00.000Z	2025-09-03T22:49:35.000Z
msrc_cve-2025-37759	ublk: fix handling recovery & reissue in ublk_abort_queue()	2025-05-02T00:00:00.000Z	2025-09-03T22:48:52.000Z
msrc_cve-2017-11697	The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context-dependent attackers to cause a denial of service (floating point exception and crash) via a crafted cert8.db file.	2017-12-02T00:00:00.000Z	2025-09-03T22:48:37.000Z
msrc_cve-2025-38648	spi: stm32: Check for cfg availability in stm32_spi_probe	2025-08-02T00:00:00.000Z	2025-09-03T22:48:28.000Z
msrc_cve-2025-22062	sctp: add mutual exclusion in proc_sctp_do_udp_port()	2025-04-02T00:00:00.000Z	2025-09-03T22:47:49.000Z
msrc_cve-2024-0753	In specific HSTS configurations an attacker could have bypassed HSTS on a subdomain. This vulnerability affects Firefox < 122, Firefox ESR < 115.7, and Thunderbird < 115.7.	2024-01-01T08:00:00.000Z	2025-09-03T22:47:46.000Z
msrc_cve-2025-38650	hfsplus: remove mutex_lock check in hfsplus_free_extents	2025-08-02T00:00:00.000Z	2025-09-03T22:46:10.000Z
msrc_cve-2024-6612	CSP violations generated links in the console tab of the developer tools, pointing to the violating resource. This caused a DNS prefetch which leaked that a CSP violation happened. This vulnerability affects Firefox < 128 and Thunderbird < 128.	2024-07-01T07:00:00.000Z	2025-09-03T22:46:00.000Z
msrc_cve-2024-49937	wifi: cfg80211: Set correct chandef when starting CAC	2024-10-01T07:00:00.000Z	2025-09-03T22:45:31.000Z
msrc_cve-2024-26785	iommufd: Fix protection fault in iommufd_test_syz_conv_iova	2024-04-02T07:00:00.000Z	2025-09-03T22:45:23.000Z
msrc_cve-2025-38382	btrfs: fix iteration of extrefs during log replay	2025-07-02T00:00:00.000Z	2025-09-03T22:45:15.000Z
msrc_cve-2024-58097	wifi: ath11k: fix RCU stall while reaping monitor destination ring	2025-04-02T00:00:00.000Z	2025-09-03T22:44:27.000Z
msrc_cve-2017-15042	An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn't advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.	2017-10-02T00:00:00.000Z	2025-09-03T22:44:27.000Z
msrc_cve-2016-1494	The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attackers to spoof signatures with a small public exponent via crafted signature padding, aka a BERserk attack.	2016-01-02T00:00:00.000Z	2025-09-03T22:43:53.000Z
msrc_cve-2025-8747	Keras safe_mode bypass allows arbitrary code execution when loading a malicious model.	2025-08-02T00:00:00.000Z	2025-09-03T22:43:52.000Z
msrc_cve-2023-52751	smb: client: fix use-after-free in smb2_query_info_compound()	2024-05-02T07:00:00.000Z	2025-09-03T22:43:50.000Z
msrc_cve-2024-4778	Memory safety bugs present in Firefox 125. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 126.	2024-05-02T07:00:00.000Z	2025-09-03T22:43:26.000Z
msrc_cve-2024-26789	crypto: arm64/neonbs - fix out-of-bounds access on short input	2024-04-02T07:00:00.000Z	2025-09-03T22:42:54.000Z
msrc_cve-2024-26948	drm/amd/display: Add a dc_state NULL check in dc_state_release	2024-05-02T07:00:00.000Z	2025-09-03T22:42:47.000Z
msrc_cve-2024-52980	Elasticsearch Uncontrolled Resource Consumption vulnerability	2025-04-02T00:00:00.000Z	2025-09-03T22:42:44.000Z
msrc_cve-2025-48924	Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs	2025-07-02T00:00:00.000Z	2025-09-03T22:42:41.000Z
msrc_cve-2019-14203	An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.	2019-07-02T00:00:00.000Z	2025-09-03T22:42:12.000Z
msrc_cve-2024-53426	A heap-buffer-overflow vulnerability has been identified in ntopng 6.2 in the Flow::dissectMDNS function.	2024-11-02T00:00:00.000Z	2025-09-03T22:41:34.000Z
msrc_cve-2024-9675	Buildah: buildah allows arbitrary directory mount	2024-10-01T07:00:00.000Z	2025-09-03T22:41:10.000Z
msrc_cve-2020-14376	A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.	2020-09-02T00:00:00.000Z	2025-09-03T22:40:46.000Z
msrc_cve-2025-8837	JasPer JPEG2000 File jpc_dec.c jpc_dec_dump use after free	2025-08-02T00:00:00.000Z	2025-09-03T22:40:08.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2024:13589-1	libBasicUsageEnvironment2-2023.11.30-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13588-1	libebml-devel-1.4.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13587-1	java-17-openjdk-17.0.10.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13586-1	grafana-10.1.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13585-1	ungoogled-chromium-120.0.6099.216-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13584-1	perl-Spreadsheet-ParseXLSX-0.290.0-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13583-1	chromedriver-120.0.6099.216-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13582-1	SDL2-devel-2.28.5-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13581-1	python310-Jinja2-3.1.3-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13580-1	jsch-0.2.15-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13579-1	ctdb-4.19.4+git.339.acf1ccaa020-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13578-1	libuev-devel-2.4.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13577-1	libpng16-16-1.6.40-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13576-1	jasper-4.1.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13575-1	kernel-devel-6.6.11-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13574-1	nodejs-electron-27.2.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13573-1	tracker-miner-files-3.6.2-4.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13572-1	redis-7.2.4-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13571-1	libopenjp2-7-2.5.0-4.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13570-1	syncthing-1.27.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13569-1	rclone-1.65.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13568-1	python310-pycryptodomex-3.19.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13567-1	python310-pycryptodome-3.19.1-2.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13566-1	micropython-1.22.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13565-1	teleport-14.3.0-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13564-1	python310-httptools-0.6.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13563-1	python310-Flask-Security-Too-5.3.3-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13562-1	libzipios2-2.3.2-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13561-1	python310-Flask-Security-Too-5.3.2-3.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z
opensuse-su-2024:13560-1	nodejs-electron-27.2.1-1.1 on GA media	2024-06-15T00:00:00Z	2024-06-15T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
bit-elasticsearch-2024-23450	Elasticsearch Uncontrolled Resource Consumption vulnerability	2024-05-14T07:17:11.184Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2024-23449	Elasticsearch Uncaught Exception	2024-05-14T07:17:25.293Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2024-23445	Elasticsearch Remote Cluster Search Cross Cluster API Key insufficient restrictions	2024-06-17T07:18:35.231Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2024-23444	Elasticsearch elasticsearch-certutil csr fails to encrypt private key	2024-08-02T07:18:37.023Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2024-12539	Elasticsearch Incorrect Authorization	2024-12-19T07:08:44.980Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-46674	Elasticsearch-hadoop Unsafe Deserialization	2024-03-06T10:51:29.796Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-31419	Elasticsearch StackOverflow vulnerability	2024-03-06T10:51:47.965Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-31418	Elasticsearch uncontrolled resource consumption	2024-03-06T10:51:58.187Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2023-31417	Elasticsearch Insertion of sensitive information in audit logs	2024-03-06T10:52:07.793Z	2025-05-20T10:02:07.006Z
bit-elasticsearch-2021-37937	Elasticsearch privilege escalation	2024-03-06T10:52:41.376Z	2025-05-20T10:02:07.006Z
bit-drupal-2025-31674	Drupal core - Moderately critical - Gadget Chain - SA-CORE-2025-003	2025-05-02T05:46:04.051Z	2025-05-20T10:02:07.006Z
bit-drupal-2025-3057	Drupal core - Critical - Cross site scripting - SA-CORE-2025-001	2025-04-16T07:17:43.264Z	2025-05-20T10:02:07.006Z
bit-drupal-2023-5256	Drupal core - Critical - Cache poisoning - SA-CORE-2023-006	2024-03-06T10:51:30.695Z	2025-05-20T10:02:07.006Z
bit-drupal-2023-31250	Drupal core - Moderately critical - Access bypass - SA-CORE-2023-005	2024-03-06T10:51:40.782Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-39261	Twig may load a template outside a configured directory when using the filesystem loader	2024-03-06T10:51:53.277Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-31043	Fix failure to strip Authorization header on HTTP downgrade in Guzzle	2024-03-06T10:52:03.100Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-31042	Failure to strip the Cookie header on change in host or HTTP downgrade in Guzzle	2024-03-06T10:52:15.080Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-29248	Cross-domain cookie leakage in Guzzle	2024-03-06T10:52:24.379Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-24775	Improper Input Validation in guzzlehttp/psr7	2024-03-06T10:53:59.062Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-24729	Regular expression Denial of Service in dialog plugin	2024-03-06T10:54:08.369Z	2025-05-20T10:02:07.006Z
bit-drupal-2022-24728	Cross-site Scripting in CKEditor4	2024-03-06T10:54:20.270Z	2025-05-20T10:02:07.006Z
bit-drupal-2021-41183	XSS in `*Text` options of the Datepicker widget	2024-03-06T10:54:42.504Z	2025-05-20T10:02:07.006Z
bit-drupal-2021-41182	XSS in the `altField` option of the Datepicker widget	2024-03-06T10:54:54.794Z	2025-05-20T10:02:07.006Z
bit-drupal-2021-41165	HTML comments vulnerability allowing to execute JavaScript code	2024-03-06T10:55:05.906Z	2025-05-20T10:02:07.006Z
bit-drupal-2021-41164	Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML	2024-03-06T10:55:15.196Z	2025-05-20T10:02:07.006Z
bit-drupal-2020-13668	Access bypass in Drupal Core 8/9	2024-03-06T10:57:51.785Z	2025-05-20T10:02:07.006Z
bit-drupal-2020-11022	Potential XSS vulnerability in jQuery	2024-03-06T10:59:15.938Z	2025-05-20T10:02:07.006Z
bit-dotnet-2025-21176	.NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability	2025-02-06T07:09:21.190Z	2025-05-20T10:02:07.006Z
bit-dotnet-2025-21173	.NET Elevation of Privilege Vulnerability	2025-02-06T07:09:40.090Z	2025-05-20T10:02:07.006Z
bit-dotnet-2025-21172	.NET and Visual Studio Remote Code Execution Vulnerability	2025-02-06T07:09:49.793Z	2025-05-20T10:02:07.006Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-202202-0094	Insufficient control flow management in some Intel(R) Processors may allow an authenticat…	2024-02-22T19:56:19.736000Z
var-202402-1320	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions), …	2024-02-22T19:51:06.482000Z
var-202402-1316	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions), …	2024-02-22T19:19:55.313000Z
var-202402-0623	An issue in Dlink DIR-816A2 v.1.10CNB05 allows a remote attacker to execute arbitrary cod…	2024-02-21T22:45:57.280000Z
var-200906-0241	The default configuration of the Security global settings on the Citrix NetScaler Access …	2024-02-21T22:37:34.016000Z
var-201107-0133	fw_dbus.py in system-config-firewall 1.2.29 and earlier uses the pickle Python module uns…	2024-02-21T22:37:32.585000Z
var-202402-1317	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < …	2024-02-21T21:19:33.369000Z
var-202402-1318	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions), …	2024-02-21T19:09:48.309000Z
var-202402-1982	IBM Security Verify Access 10.0.0.0 through 10.0.6.1 uses insecure calls that could allow…	2024-02-20T23:28:21.145000Z
var-202311-0436	Affected devices can be configured to send emails when certain events occur on the device…	2024-02-20T22:47:55.689000Z
var-202311-0438	Affected devices do not properly validate the authentication when performing certain modi…	2024-02-20T22:34:20.296000Z
var-202003-0779	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T22:30:28.006000Z
var-202207-0791	Git is a distributed revision control system. Git prior to versions 2.37.1, 2.36.2, 2.35.…	2024-02-20T22:11:03.857000Z
var-202402-1325	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions), …	2024-02-20T22:07:57.270000Z
var-202402-1319	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < …	2024-02-20T21:51:36.313000Z
var-202003-0775	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T21:40:03.943000Z
var-202003-0777	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T21:37:55.839000Z
var-202402-1323	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < …	2024-02-20T21:26:26.290000Z
var-202003-0778	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T21:19:51.473000Z
var-201912-1831	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T20:55:04.578000Z
var-202004-2205	Server or client applications that call the SSL_check_chain() function during or after a …	2024-02-20T20:51:42.423000Z
var-200105-0011	Directory traversal vulnerability in SEDUM HTTP Server 2.0 allows remote attackers to rea…	2024-02-20T20:44:23.927000Z
var-202312-0198	A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (…	2024-02-20T20:25:11.371000Z
var-202402-1321	A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < …	2024-02-20T20:14:49.192000Z
var-201912-1242	A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0…	2024-02-20T19:59:07.808000Z
var-202003-0780	A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0). …	2024-02-20T19:22:33.877000Z
var-202009-0115	In Xiaomi router R3600 ROM version<1.0.66, filters in the set_WAN6 interface can be bypas…	2024-02-20T02:33:04.433000Z
var-201805-0698	A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php ke…	2024-02-20T02:29:40.837000Z
var-202202-1521	TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain a remote code execution (RCE…	2024-02-20T02:26:57.257000Z
var-202104-1458	TP-Link TL-WR802N(US), Archer_C50v5_US v4_200 <= 2020.06 contains a buffer overflow vulne…	2024-02-20T02:26:34.284000Z

ID	Description	Published	Updated
jvndb-2009-000009	FAST ESP cross-site scripting vulnerability	2009-02-17T11:55+09:00	2009-02-17T11:55+09:00
jvndb-2009-000011	Becky! Internet Mail buffer overflow vulnerability	2009-02-12T17:28+09:00	2009-02-12T17:28+09:00
jvndb-2007-000817	Flash Player vulnerable in handling cross-domain policy files	2008-05-21T00:00+09:00	2009-02-10T11:32+09:00
jvndb-2009-000008	Fulltext search CGI vulnerability allows third party to gain administrative privileges	2009-01-28T15:25+09:00	2009-01-28T15:25+09:00
jvndb-2009-000007	Oracle WebLogic Server vulnerable to cross-site scripting	2009-01-20T16:45+09:00	2009-01-20T16:45+09:00
jvndb-2009-000006	Cisco IOS cross-site scripting vulnerability	2009-01-15T19:14+09:00	2009-01-15T19:14+09:00
jvndb-2009-000005	MODx vulnerable to SQL injection	2009-01-09T15:54+09:00	2009-01-09T15:54+09:00
jvndb-2009-000004	MODx cross-site request forgery vulnerability	2009-01-09T15:54+09:00	2009-01-09T15:54+09:00
jvndb-2009-000003	MODx cross-site scripting vulnerability	2009-01-09T15:54+09:00	2009-01-09T15:54+09:00
jvndb-2009-000001	MyNETS cross-site scripting vulnerability	2009-01-08T11:34+09:00	2009-01-08T11:34+09:00
jvndb-2008-000086	BlackJumboDog authentication bypass vulnerability	2008-12-25T16:22+09:00	2008-12-25T16:22+09:00
jvndb-2008-000085	Mayaa cross-site scripting vulnerability	2008-12-25T16:22+09:00	2008-12-25T16:22+09:00
jvndb-2008-000083	Predictable session ID vulnerability in Access Analyzer CGI by futomi's CGI Cafe	2008-12-17T15:30+09:00	2008-12-17T15:30+09:00
jvndb-2008-001911	Groupmax Workflow - Development Kit for Active Server Pages Cross-Site Scripting Vulnerability	2008-12-05T11:35+09:00	2008-12-05T11:35+09:00
jvndb-2008-001910	Groupmax Collaboration - Schedule Mis-scheduling Problem: Unintended Members Included When Reservations are Made by Secretary	2008-12-05T11:34+09:00	2008-12-05T11:34+09:00
jvndb-2008-000067	Movable Type Enterprise cross-site scripting vulnerability	2008-12-04T14:52+09:00	2008-12-04T14:52+09:00
jvndb-2008-000079	I-O DATA DEVICE HDL-F series cross-site request forgery vulnerability	2008-12-02T15:50+09:00	2008-12-02T15:50+09:00
jvndb-2008-001895	JP1/VERITAS NetBackup JAVA Administration GUI Privilege Escalation Vulnerability	2008-12-01T11:10+09:00	2008-12-01T11:10+09:00
jvndb-2008-000074	Snoopy command injection vulnerability	2008-10-28T15:34+09:00	2008-11-28T13:54+09:00
jvndb-2008-001312	Symantec Backup Exec for Windows Server ActiveX Control Multiple Vulnerabilities	2008-05-21T00:00+09:00	2008-11-21T12:20+09:00
jvndb-2008-001311	Symantec Backup Exec for Windows Server ActiveX Control Multiple Buffer Overflow Vulnerabilities	2008-05-21T00:00+09:00	2008-11-21T12:20+09:00
jvndb-2008-001043	X.Org Foundation X server buffer overflow vulnerability	2008-06-13T17:11+09:00	2008-11-21T12:19+09:00
jvndb-2008-001877	JP1/Integrated Management Service Support Cross-Site Scripting Vulnerability	2008-11-21T10:16+09:00	2008-11-21T10:16+09:00
jvndb-2008-000077	GungHo LoadPrgAx vulnerable to arbitrary Java program execution	2008-11-19T15:50+09:00	2008-11-19T15:50+09:00
jvndb-2006-000808	Denial of service vulnerability in Ruby CGI library (cgi.rb)	2008-05-21T00:00+09:00	2008-11-14T12:20+09:00
jvndb-2008-000076	sISAPILocation vulnerability bypasses HTTP header rewrite function	2008-11-10T13:29+09:00	2008-11-10T13:29+09:00
jvndb-2008-001779	CA ARCserver Backup and CA ARCserve Backup Client Agent Denial of Service (DoS) Vulnerability	2008-10-30T12:20+09:00	2008-10-30T12:20+09:00
jvndb-2008-001778	BrightStor ARCserve and eTrust Antivirus Arbitrary Code Execution Vulnerability	2008-10-30T12:19+09:00	2008-10-30T12:19+09:00
jvndb-2008-000071	MyNETS cross-site scripting vulnerability	2008-10-22T17:49+09:00	2008-10-22T17:49+09:00
jvndb-2008-000070	Internet Explorer vulnerable in handling CDO protocol	2008-10-22T17:49+09:00	2008-10-22T17:49+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:20323-1	Security update for sqlite3	2025-05-16T12:45:12Z	2025-05-16T12:45:12Z
suse-su-2025:1566-1	Security update for valkey	2025-05-16T12:02:15Z	2025-05-16T12:02:15Z
suse-su-2025:1565-1	Security update for open-vm-tools	2025-05-16T11:05:10Z	2025-05-16T11:05:10Z
suse-su-2025:1550-1	Security update for openssl-3	2025-05-16T00:16:12Z	2025-05-16T00:16:12Z
suse-su-2025:20328-1	Security update for elemental-operator	2025-05-15T17:45:43Z	2025-05-15T17:45:43Z
suse-su-2025:20327-1	Security update for nvidia-open-driver-G06-signed	2025-05-15T15:59:38Z	2025-05-15T15:59:38Z
suse-su-2025:20319-1	Security update for nvidia-open-driver-G06-signed	2025-05-15T15:59:38Z	2025-05-15T15:59:38Z
suse-su-2025:1559-1	Security update for audiofile	2025-05-15T11:19:22Z	2025-05-15T11:19:22Z
suse-su-2025:20325-1	Security update for wget	2025-05-15T09:44:44Z	2025-05-15T09:44:44Z
suse-su-2025:0613-3	Security update for openssl-1_1	2025-05-15T08:51:28Z	2025-05-15T08:51:28Z
suse-su-2025:0613-2	Security update for openssl-1_1	2025-05-15T08:51:28Z	2025-05-15T08:51:28Z
suse-su-2025:1555-1	Security update for go1.22-openssl	2025-05-15T05:05:53Z	2025-05-15T05:05:53Z
suse-su-2025:1551-1	Security update for go1.24	2025-05-14T17:06:11Z	2025-05-14T17:06:11Z
suse-su-2025:1549-1	Security update for apparmor	2025-05-14T09:06:45Z	2025-05-14T09:06:45Z
suse-su-2025:1548-1	Security update for rabbitmq-server313	2025-05-14T08:25:17Z	2025-05-14T08:25:17Z
suse-su-2025:20311-1	Security update for expat	2025-05-13T13:37:27Z	2025-05-13T13:37:27Z
suse-su-2025:20310-1	Security update for freetype2	2025-05-13T13:33:23Z	2025-05-13T13:33:23Z
suse-su-2025:1546-1	Security update for gimp	2025-05-13T12:37:05Z	2025-05-13T12:37:05Z
suse-su-2025:1540-1	Security update for transfig	2025-05-13T08:54:18Z	2025-05-13T08:54:18Z
suse-su-2025:1537-1	Security update for tomcat10	2025-05-13T02:49:09Z	2025-05-13T02:49:09Z
suse-su-2025:1534-1	Security update for augeas	2025-05-12T16:01:01Z	2025-05-12T16:01:01Z
suse-su-2025:20308-1	Security update for avahi	2025-05-12T14:34:04Z	2025-05-12T14:34:04Z
suse-su-2025:20318-1	Security update for glib2	2025-05-12T09:55:56Z	2025-05-12T09:55:56Z
suse-su-2025:20307-1	Security update for ca-certificates-mozilla	2025-05-12T09:14:56Z	2025-05-12T09:14:56Z
suse-su-2025:1528-1	Security update for freetype2	2025-05-09T17:49:06Z	2025-05-09T17:49:06Z
suse-su-2025:1525-1	Security update for java-1_8_0-openjdk	2025-05-09T11:30:10Z	2025-05-09T11:30:10Z
suse-su-2025:1524-1	Security update for java-1_8_0-openjdk	2025-05-09T11:29:07Z	2025-05-09T11:29:07Z
suse-su-2025:1523-1	Security update for python-Django	2025-05-09T11:27:25Z	2025-05-09T11:27:25Z
suse-su-2025:1522-1	Security update for wireshark	2025-05-09T09:34:27Z	2025-05-09T09:34:27Z
suse-su-2025:1521-1	Security update for tomcat	2025-05-09T04:56:27Z	2025-05-09T04:56:27Z

ID	Description	Published	Updated
cnvd-2025-25586	Huawei HarmonyOS和EMUI平行视界模块权限控制漏洞	2024-08-12	2025-10-28
cnvd-2025-25585	Huawei HarmonyOS和EMUI设置模块访问权限验证漏洞	2024-08-14	2025-10-28
cnvd-2025-25584	Huawei HarmonyOS和EMUI锁屏模块权限验证漏洞	2024-08-14	2025-10-28
cnvd-2025-25583	Huawei HarmonyOS和EMUI访问权限验证漏洞	2024-08-14	2025-10-28
cnvd-2025-25582	Huawei HarmonyOS和EMUI联系人模块访问权限验证漏洞	2024-08-14	2025-10-28
cnvd-2025-25580	Huawei HarmonyOS和EMUI权限验证漏洞	2024-09-11	2025-10-28
cnvd-2025-25579	Huawei HarmonyOS和EMUI权限控制漏洞	2024-09-11	2025-10-28
cnvd-2025-25578	Huawei HarmonyOS和EMUI拒绝服务漏洞	2024-12-20	2025-10-28
cnvd-2025-25574	Apple MacOS权限提升漏洞	2025-04-24	2025-10-28
cnvd-2025-25573	Apple MacOS拒绝服务漏洞（CNVD-2025-25573）	2025-04-24	2025-10-28
cnvd-2025-25572	Apple MacOS拒绝服务漏洞（CNVD-2025-25572）	2025-04-24	2025-10-28
cnvd-2025-25571	Apple MacOS拒绝服务漏洞	2025-04-24	2025-10-28
cnvd-2025-25568	Apple Xcode拒绝服务漏洞	2025-09-18	2025-10-28
cnvd-2025-25567	Apple Xcode沙箱检查不足漏洞	2025-09-18	2025-10-28
cnvd-2025-25566	Apple Xcode访问控制不当漏洞	2025-09-18	2025-10-28
cnvd-2025-25565	WordPress Contact Form by Supsystic plugin跨站脚本漏洞	2025-10-24	2025-10-28
cnvd-2025-25564	WordPress Clanora plugin文件上传漏洞	2025-10-24	2025-10-28
cnvd-2025-25563	WordPress Child Themes plugin跨站脚本漏洞	2025-10-24	2025-10-28
cnvd-2025-25562	WordPress CF7 Auto Responder Addon plugin跨站脚本漏洞	2025-10-24	2025-10-28
cnvd-2025-25561	WordPress Captivate Sync plugin反序列化漏洞	2025-10-24	2025-10-28
cnvd-2025-25560	WordPress Buddypress Plugin缺少授权漏洞	2025-10-24	2025-10-28
cnvd-2025-25559	WordPress Blockspare plugin敏感信息插入漏洞	2025-10-24	2025-10-28
cnvd-2025-25558	WordPress bbPress Notify plugin跨站脚本漏洞	2025-10-24	2025-10-28
cnvd-2025-25557	WordPress All in One Time Clock Lite plugin不安全的直接对象引用漏洞	2025-10-24	2025-10-28
cnvd-2025-25556	WordPress Advanced Coupons for WooCommerce Coupons plugin SQL注入漏洞	2025-10-24	2025-10-28
cnvd-2025-25554	Apple Xcode路径处理不当漏洞	2025-09-18	2025-10-28
cnvd-2025-25476	Newforma Project Center Server信息泄露漏洞（CNVD-2025-25476）	2025-10-21	2025-10-28
cnvd-2025-25475	Newforma Project Center Server开放重定向漏洞	2025-10-21	2025-10-28
cnvd-2025-25474	Newforma Project Center Server代码执行漏洞	2025-10-21	2025-10-28
cnvd-2025-25471	Newforma Project Center Server信息泄露漏洞	2025-10-21	2025-10-28

ID	Description	Published	Updated
CERTFR-2024-AVI-0970	Multiples vulnérabilités dans Google Chrome	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
CERTFR-2024-AVI-0968	Multiples vulnérabilités dans les produits Siemens	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
CERTFR-2024-AVI-0967	Multiples vulnérabilités dans les produits Ivanti	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
CERTFR-2024-AVI-0966	Multiples vulnérabilités dans Nagios XI	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
CERTFR-2024-AVI-0965	Multiples vulnérabilités dans les produits PrimX	2024-11-13T00:00:00.000000	2024-11-13T00:00:00.000000
CERTFR-2024-AVI-0964	Multiples vulnérabilités dans les produits Citrix	2024-11-12T00:00:00.000000	2024-11-13T00:00:00.000000
certfr-2024-avi-0963	Multiples vulnérabilités dans Xen	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
certfr-2024-avi-0962	Multiples vulnérabilités dans les produits SAP	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
certfr-2024-avi-0961	Multiples vulnérabilités dans les produits Schneider Electric	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
certfr-2024-avi-0960	Multiples vulnérabilités dans les produits Synology	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
certfr-2024-avi-0959	Multiples vulnérabilités dans les produits NetApp	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
CERTFR-2024-AVI-0963	Multiples vulnérabilités dans Xen	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
CERTFR-2024-AVI-0962	Multiples vulnérabilités dans les produits SAP	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
CERTFR-2024-AVI-0961	Multiples vulnérabilités dans les produits Schneider Electric	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
CERTFR-2024-AVI-0960	Multiples vulnérabilités dans les produits Synology	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
CERTFR-2024-AVI-0959	Multiples vulnérabilités dans les produits NetApp	2024-11-12T00:00:00.000000	2024-11-12T00:00:00.000000
certfr-2024-avi-0958	Multiples vulnérabilités dans les produits IBM	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0957	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0956	Multiples vulnérabilités dans le noyau Linux de Red Hat	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0955	Multiples vulnérabilités dans le noyau Linux de SUSE	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0954	Multiples vulnérabilités dans Microsoft Edge	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0953	Multiples vulnérabilités dans Moxa EDS-P510 Series	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
certfr-2024-avi-0952	Vulnérabilité dans les produits F5	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0958	Multiples vulnérabilités dans les produits IBM	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0957	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0956	Multiples vulnérabilités dans le noyau Linux de Red Hat	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0955	Multiples vulnérabilités dans le noyau Linux de SUSE	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0954	Multiples vulnérabilités dans Microsoft Edge	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0953	Multiples vulnérabilités dans Moxa EDS-P510 Series	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000
CERTFR-2024-AVI-0952	Vulnérabilité dans les produits F5	2024-11-08T00:00:00.000000	2024-11-08T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated