Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-69370 |
9.8 (3.1)
|
WordPress Capella theme <= 2.5.5 - PHP Object Injectio… |
ThemeGoods |
Capella |
2026-02-20T15:46:51.123Z | 2026-02-24T21:13:03.223Z |
| CVE-2025-69301 |
9.8 (3.1)
|
WordPress PhotoMe theme <= 5.6.11 - PHP Object Injecti… |
ThemeGoods |
PhotoMe |
2026-02-20T15:46:46.725Z | 2026-02-24T21:13:02.981Z |
| CVE-2025-68541 |
9.8 (3.1)
|
WordPress Ippsum theme <= 1.2.0 - PHP Object Injection… |
BoldThemes |
Ippsum |
2026-02-20T15:46:40.047Z | 2026-02-24T21:13:02.672Z |
| CVE-2025-67997 |
9.8 (3.1)
|
WordPress Travelicious theme < 1.6.7 - PHP Object Inje… |
BoldThemes |
Travelicious |
2026-02-20T15:46:33.519Z | 2026-02-24T21:13:01.776Z |
| CVE-2025-68526 |
8.8 (3.1)
|
WordPress Modal Popup Box plugin <= 1.6.1 - PHP Object… |
A WP Life |
Modal Popup Box |
2026-02-20T15:46:39.001Z | 2026-02-24T21:05:05.513Z |
| CVE-2026-21410 |
9.8 (3.1)
9.3 (4.0)
|
InSAT MasterSCADA BUK-TS SQL Injection |
InSAT |
MasterSCADA BUK-TS |
2026-02-24T20:53:55.150Z | 2026-02-24T21:00:53.595Z |
| CVE-2026-22553 |
9.8 (3.1)
9.3 (4.0)
|
InSAT MasterSCADA BUK-TS OS Command Injection |
InSAT |
MasterSCADA BUK-TS |
2026-02-24T20:56:14.099Z | 2026-02-24T21:00:29.951Z |
| CVE-2025-67996 |
9.8 (3.1)
|
WordPress Nestin theme < 1.2.6 - PHP Object Injection … |
BoldThemes |
Nestin |
2026-02-20T15:46:33.328Z | 2026-02-24T20:59:31.083Z |
| CVE-2026-22766 |
7.2 (3.1)
|
Dell Wyse Management Suite, versions prior to WMS… |
Dell |
Wyse Management Suite |
2026-02-24T19:28:14.566Z | 2026-02-24T20:54:20.065Z |
| CVE-2025-67995 |
9.8 (3.1)
|
WordPress PatioTime theme < 2.1 - PHP Object Injection… |
LoftOcean |
PatioTime |
2026-02-20T15:46:33.136Z | 2026-02-24T20:53:56.722Z |
| CVE-2026-25316 |
7.2 (3.1)
|
WordPress CartFlows plugin <= 2.1.19 - PHP Object Inje… |
Brainstorm Force |
CartFlows |
2026-02-19T08:26:54.560Z | 2026-02-24T20:53:02.283Z |
| CVE-2026-22333 |
7.2 (3.1)
|
WordPress YITH WooCommerce Compare plugin <= 3.6.0 - D… |
YITHEMES |
YITH WooCommerce Compare |
2026-02-19T08:26:47.849Z | 2026-02-24T20:52:27.444Z |
| CVE-2025-68543 |
8.1 (3.1)
|
WordPress Diza theme <= 1.3.15 - Local File Inclusion … |
thembay |
Diza |
2026-02-20T15:46:40.451Z | 2026-02-24T20:51:07.084Z |
| CVE-2025-68539 |
8.1 (3.1)
|
WordPress Fana theme <= 1.1.35 - Local File Inclusion … |
thembay |
Fana |
2026-02-20T15:46:39.873Z | 2026-02-24T20:51:06.923Z |
| CVE-2025-68536 |
8.1 (3.1)
|
WordPress Zota theme <= 1.3.14 - Local File Inclusion … |
thembay |
Zota |
2026-02-20T15:46:39.679Z | 2026-02-24T20:51:06.751Z |
| CVE-2025-67992 |
8.1 (3.1)
|
WordPress PatioTime theme < 2.1 - Local File Inclusion… |
LoftOcean |
PatioTime |
2026-02-20T15:46:32.513Z | 2026-02-24T20:51:06.557Z |
| CVE-2025-67988 |
8.1 (3.1)
|
WordPress CozyStay theme < 1.9.1 - Local File Inclusio… |
LoftOcean |
CozyStay |
2026-02-20T15:46:31.946Z | 2026-02-24T20:51:06.372Z |
| CVE-2025-67982 |
8.1 (3.1)
|
WordPress Urna theme <= 2.5.12 - Local File Inclusion … |
thembay |
Urna |
2026-02-20T15:46:31.376Z | 2026-02-24T20:51:06.097Z |
| CVE-2025-67981 |
8.1 (3.1)
|
WordPress Besa theme <= 2.3.15 - Local File Inclusion … |
thembay |
Besa |
2026-02-20T15:46:31.208Z | 2026-02-24T20:51:05.942Z |
| CVE-2025-60087 |
8.1 (3.1)
|
WordPress Extensive VC Addons for WPBakery page builde… |
Nenad Obradovic |
Extensive VC Addons for WPBakery page builder |
2026-02-20T15:46:27.515Z | 2026-02-24T20:51:04.478Z |
| CVE-2025-67980 |
8.1 (3.1)
|
WordPress Hara theme <= 1.2.17 - Local File Inclusion … |
thembay |
Hara |
2026-02-20T15:46:31.029Z | 2026-02-24T20:51:04.121Z |
| CVE-2025-69322 |
8.1 (3.1)
|
WordPress PeakShops theme < 1.5.9 - Local File Inclusi… |
fuelthemes |
PeakShops |
2026-02-20T15:46:48.754Z | 2026-02-24T20:51:03.943Z |
| CVE-2025-69374 |
8.1 (3.1)
|
WordPress Eleblog – Elementor Blog And Magazine Addons… |
SolverWp |
Eleblog – Elementor Blog And Magazine Addons |
2026-02-20T15:46:51.890Z | 2026-02-24T20:51:03.717Z |
| CVE-2025-69375 |
8.1 (3.1)
|
WordPress Portfolio Builder plugin <= 1.2.5 - Local Fi… |
SolverWp |
Portfolio Builder |
2026-02-20T15:46:52.069Z | 2026-02-24T20:51:03.533Z |
| CVE-2025-69395 |
8.1 (3.1)
|
WordPress Gable theme <= 1.5 - Local File Inclusion vu… |
ThemeREX |
Gable |
2026-02-20T15:46:56.223Z | 2026-02-24T20:51:03.370Z |
| CVE-2025-69396 |
8.1 (3.1)
|
WordPress Splendour theme <= 1.23 - Local File Inclusi… |
ThemeREX |
Splendour |
2026-02-20T15:46:56.394Z | 2026-02-24T20:51:03.165Z |
| CVE-2025-69397 |
8.1 (3.1)
|
WordPress Tint theme <= 1.7 - Local File Inclusion vul… |
ThemeREX |
Tint |
2026-02-20T15:46:56.567Z | 2026-02-24T20:51:03.011Z |
| CVE-2025-69398 |
8.1 (3.1)
|
WordPress Plank theme <= 1.7 - Local File Inclusion vu… |
ThemeREX |
Plank |
2026-02-20T15:46:56.752Z | 2026-02-24T20:51:02.811Z |
| CVE-2025-69399 |
8.1 (3.1)
|
WordPress Cobble theme <= 1.7 - Local File Inclusion v… |
ThemeREX |
Cobble |
2026-02-20T15:46:56.948Z | 2026-02-24T20:51:02.652Z |
| CVE-2025-69400 |
8.1 (3.1)
|
WordPress Yokoo theme <= 1.1.11 - Local File Inclusion… |
ThemeREX |
Yokoo |
2026-02-20T15:46:57.137Z | 2026-02-24T20:51:02.474Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-26341 | Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior ship with defau… | 2026-02-24T20:27:48.103 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-26340 | Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior expose RTSP str… | 2026-02-24T20:27:47.793 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-2634 | Malicious scripts could cause desynchronization between the address bar and web content before a re… | 2026-02-24T14:16:23.810 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-26222 | Altec DocLink (now maintained by Beyond Limits Inc.) version 4.0.336.0 exposes insecure .NET Remoti… | 2026-02-24T18:29:33.293 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-25603 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Lin… | 2026-02-24T18:29:33.167 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-2460 | A vulnerability exists in REB500 for an authenticated user with low-level privileges to access and … | 2026-02-24T14:16:23.647 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-2459 | A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter … | 2026-02-24T14:16:23.477 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-24443 | EventSentry versions prior to 6.0.1.20 contain an unverified password change vulnerability in the a… | 2026-02-24T21:16:29.293 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-24241 | NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an at… | 2026-02-24T20:27:47.620 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-23984 | An Improper Input Validation vulnerability exists in Apache Superset that allows an authenticated u… | 2026-02-24T14:16:23.307 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-23969 | Apache Superset utilizes a configurable dictionary, DISALLOWED_SQL_FUNCTIONS, to restrict the execu… | 2026-02-24T14:16:22.623 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-23678 | Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior contain a command i… | 2026-02-24T16:24:08.090 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-22553 | All versions of InSAT MasterSCADA BUK-TS are susceptible to OS command injection through a field in… | 2026-02-24T21:16:28.713 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-21410 | InSAT MasterSCADA BUK-TS is susceptible to SQL Injection through its main web interface. Malicious … | 2026-02-24T21:16:25.790 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-1773 | IEC 60870-5-104: Potential Denial of Service impact on reception of invalid U-format frame. Product… | 2026-02-24T14:16:22.420 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-1772 | RTU500 web interface: An unprivileged user can read user management information. The information ca… | 2026-02-24T14:16:22.180 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-0402 | A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash… | 2026-02-24T15:21:37.410 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-0401 | A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to… | 2026-02-24T15:21:37.267 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-0400 | A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a fi… | 2026-02-24T15:21:37.127 | 2026-02-24T21:52:01.367 |
| fkie_cve-2026-0399 | Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management … | 2026-02-24T15:21:36.980 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-69985 | FUXA 1.2.8 and prior contains an Authentication Bypass vulnerability leading to Remote Code Executi… | 2026-02-24T16:24:07.120 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-67445 | TOTOLINK X5000R V9.1.0cu.2415_B20250515 contains a denial-of-service vulnerability in /cgi-bin/cste… | 2026-02-24T15:21:36.707 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-63409 | Privilege escalation and improper access control in GCOM EPON 1GE C00R371V00B01 allows remote authe… | 2026-02-24T16:24:06.990 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-62512 | Piwigo is an open source photo gallery application for the web. In version 15.5.0 and likely earlie… | 2026-02-24T18:29:32.930 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-47904 | Download of Code Without Integrity Check vulnerability in Microchip Time Provider 4100 allows Malic… | 2026-02-24T16:24:06.680 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-33181 | NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-p… | 2026-02-24T20:27:43.127 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-33180 | NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-p… | 2026-02-24T20:27:42.943 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-33179 | NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-p… | 2026-02-24T20:27:42.733 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-1789 | Local privilege escalation in Genetec Update Service. An authenticated, low-privileged, Windows use… | 2026-02-24T20:27:42.597 | 2026-02-24T21:52:01.367 |
| fkie_cve-2025-1787 | Local admin could to leak information from the Genetec Update Service configuration web page. An au… | 2026-02-24T20:27:42.413 | 2026-02-24T21:52:01.367 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-3q93-28v9-5x6v |
4.9 (3.1)
|
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a fi… | 2026-02-24T15:30:33Z | 2026-02-24T18:31:02Z |
| ghsa-3px2-2xc4-mxr2 |
|
Invalid pointer in the JavaScript Engine component. This vulnerability affects Firefox < 148 and Fi… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:02Z |
| ghsa-3922-j2hh-9qcf |
5.4 (3.1)
|
Use-after-free in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148. | 2026-02-24T15:30:32Z | 2026-02-24T18:31:02Z |
| ghsa-3547-c34m-73j3 |
6.5 (3.1)
6.9 (4.0)
|
Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior do not implement ra… | 2026-02-24T18:31:02Z | 2026-02-24T18:31:02Z |
| ghsa-x8jx-9xwq-xwq6 |
|
Use-after-free in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148 a… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-wwg9-hv2r-mj8w |
|
Integer overflow in the Audio/Video component. This vulnerability affects Firefox < 148, Firefox ES… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-v49m-r4w3-2p5x |
|
Integer overflow in the JavaScript: Standard Library component. This vulnerability affects Firefox … | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-v33x-35cm-8gjc |
|
Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-r837-hpv7-pc2f |
8.4 (3.1)
|
DAG Author (who already has quite a lot of permissions) could manipulate database of Airflow 2 in t… | 2026-02-24T12:31:40Z | 2026-02-24T18:31:01Z |
| ghsa-r2q9-885m-j92q |
|
Incorrect boundary conditions in the WebRTC: Audio/Video component. This vulnerability affects Fire… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-qmr7-46p8-4c5r |
|
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148, Firefo… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-q6rm-rhj9-jpg5 |
|
Integer overflow in the Libraries component in NSS. This vulnerability affects Firefox < 148 and Fi… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-p4fg-vw73-vr29 |
|
Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 148 and Fire… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-mcwp-v5q8-7gcp |
8.8 (3.1)
|
The Responsive Lightbox & Gallery WordPress plugin before 2.6.1 is vulnerable to an Unauthenticated… | 2026-02-24T06:31:30Z | 2026-02-24T18:31:01Z |
| ghsa-m65f-px5x-xq9x |
|
Undefined behavior in the DOM: Core & HTML component. This vulnerability affects Firefox < 148, Fir… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-hjq8-wc3q-9xf3 |
|
Privilege escalation in the Messaging System component. This vulnerability affects Firefox < 148, F… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-h67m-x9c3-v9wp |
8.8 (3.1)
|
Use-after-free in the Storage: IndexedDB component. This vulnerability affects Firefox < 148, Firef… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-h3qc-gf9h-42g6 |
|
Mitigation bypass in the DOM: HTML Parser component. This vulnerability affects Firefox < 148, Fire… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-gxg5-574v-j5f6 |
|
Use-after-free in the Audio/Video: Playback component. This vulnerability affects Firefox < 148, Fi… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-gjwv-rvwj-p62j |
|
Incorrect boundary conditions in the Web Audio component. This vulnerability affects Firefox < 148,… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-g9cv-cvhp-755f |
|
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and Fire… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-g5w7-69g8-vcwp |
|
Sandbox escape in the Graphics: WebRender component. This vulnerability affects Firefox < 148, Fire… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-99p8-j693-qhpc |
|
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 148 and Fir… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-94rx-4fcc-c849 |
|
Incorrect boundary conditions in the Networking: JAR component. This vulnerability affects Firefox … | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-8r55-rv5w-6pfm |
6.5 (3.1)
|
Airflow versions before 2.11.1 have a vulnerability that allows authenticated users with audit log … | 2026-02-24T12:31:40Z | 2026-02-24T18:31:01Z |
| ghsa-839v-3vpr-fpgf |
|
Privilege escalation in the Netmonitor component. This vulnerability affects Firefox < 148 and Fire… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-7xqm-gm4h-p23x |
|
Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vuln… | 2026-02-24T15:30:32Z | 2026-02-24T18:31:01Z |
| ghsa-76rw-rj58-mpqc |
|
Sandbox escape in the Storage: IndexedDB component. This vulnerability affects Firefox < 148 and Fi… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ghsa-6hhh-7cj8-7mp2 |
9.1 (3.1)
|
Smolder versions through 1.51 for Perl uses insecure rand() function for cryptographic functions. … | 2026-02-24T00:31:34Z | 2026-02-24T18:31:01Z |
| ghsa-5mg4-r7qx-2frp |
|
Use-after-free in the DOM: Bindings (WebIDL) component. This vulnerability affects Firefox < 148, F… | 2026-02-24T15:30:31Z | 2026-02-24T18:31:01Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2008-12 |
|
The user form processing (userform.py) in MoinMoin before 1.6.3, when using ACLs or a non… | moin | 2008-04-25T06:05:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2007-4 |
|
Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrar… | plone | 2007-11-07T21:46:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2006-6 |
|
Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member regis… | Plone | 2006-12-07T23:28:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2006-5 |
|
Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 … | Plone | 2006-09-29T19:07:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2022-43072 |
7.5 (3.1)
|
An inflation issue was discovered in Chia Network CAT1 Standard 1.0.0. Previously minted … | chia-blockchain | 2022-07-29T21:15:00Z | 2024-11-25T18:33:04.123836Z |
| pysec-2022-43068 |
6.3 (3.1)
|
A race condition flaw was found in ansible-runner, where an attacker could watch for rapi… | ansible-runner | 2022-08-23T16:15:00Z | 2024-11-25T18:33:04.123836Z |
| pysec-2022-43067 |
6.6 (3.1)
|
A flaw was found in ansible-runner where the default temporary files configuration in ans… | ansible-runner | 2022-08-23T16:15:00Z | 2024-11-25T18:33:04.123836Z |
| pysec-2013-35 |
|
The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through … | cinder | 2013-09-16T19:14:00Z | 2024-11-25T18:33:04.123836Z |
| pysec-2022-43063 |
9.8 (3.1)
|
Code injection in paddle.audio.functional.get_window in PaddlePaddle 2.4.0-rc0 allows arb… | paddlepaddle | 2022-12-07T09:15:00+00:00 | 2024-11-22T12:27:25.862098+00:00 |
| pysec-2006-8 |
|
The docutils module in Zope (Zope2) 2.7.0 through 2.7.9 and 2.8.0 through 2.8.8 does not … | zope2 | 2006-09-19T18:07:00Z | 2024-11-21T14:23:03.63347Z |
| pysec-2006-7 |
|
Zope 2.7.0 to 2.7.8, 2.8.0 to 2.8.7, and 2.9.0 to 2.9.3 (Zope2) does not disable the "raw… | zope2 | 2006-07-07T23:05:00Z | 2024-11-21T14:23:03.576588Z |
| pysec-2017-148 |
6.1 (3.1)
|
Cross-site scripting (XSS) vulnerability in ZMI pages that use the manage_tabs_message in… | zope | 2017-08-07T17:29:00Z | 2024-11-21T14:23:03.459792Z |
| pysec-2022-43176 |
9.8 (3.1)
|
The Zibal package in PyPI v1.0.0 was discovered to contain a code execution backdoor. Thi… | zibal | 2022-06-24T21:15:00Z | 2024-11-21T14:23:03.404044Z |
| pysec-2022-43175 |
6.1 (3.1)
|
Drag and Drop XBlock v2 implements a drag-and-drop style problem, where a learner has to … | xblock-drag-and-drop-v2 | 2022-11-28T21:15:00+00:00 | 2024-11-21T14:23:03.352390+00:00 |
| pysec-2022-43173 |
9.8 (3.1)
|
The wikifaces package in PyPI v1.0 included a code execution backdoor inserted by a third… | wikifaces | 2022-07-22T15:15:00Z | 2024-11-21T14:23:03.244154Z |
| pysec-2019-256 |
7.5 (3.1)
|
In libwebp 0.5.1, there is a double free bug in libwebpmux. | webp | 2019-05-23T18:29:00Z | 2024-11-21T14:23:03.194401Z |
| pysec-2022-43172 |
9.8 (3.1)
|
The Watertools package in PyPI v0.0.0 was discovered to contain a code execution backdoor… | watertools | 2022-06-24T21:15:00Z | 2024-11-21T14:23:03.143453Z |
| pysec-2024-151 |
5.3 (3.1)
|
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Vyper compi… | vyper | 2024-01-30T21:15:00+00:00 | 2024-11-21T14:23:03.091183+00:00 |
| pysec-2024-150 |
9.8 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. Arrays can … | vyper | 2024-02-07T17:15:00+00:00 | 2024-11-21T14:23:03.024978+00:00 |
| pysec-2024-149 |
9.8 (3.1)
|
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In versions… | vyper | 2024-02-01T17:15:00+00:00 | 2024-11-21T14:23:02.970591+00:00 |
| pysec-2024-148 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. When calls … | vyper | 2024-02-02T17:15:00+00:00 | 2024-11-21T14:23:02.917464+00:00 |
| pysec-2024-147 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the EVM. There is an error in the stack m… | vyper | 2024-02-05T21:15:00+00:00 | 2024-11-21T14:23:02.864019+00:00 |
| pysec-2023-307 |
7.5 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Contr… | vyper | 2023-12-13T20:15:00+00:00 | 2024-11-21T14:23:02.808922+00:00 |
| pysec-2023-306 |
8.1 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). In ve… | vyper | 2023-09-18T21:16:00+00:00 | 2024-11-21T14:23:02.752932+00:00 |
| pysec-2023-305 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Start… | vyper | 2023-09-18T21:16:00+00:00 | 2024-11-21T14:23:02.698147+00:00 |
| pysec-2023-304 |
8.8 (3.1)
|
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federate… | vantage6-server | 2023-11-14T21:15:00+00:00 | 2024-11-21T14:23:02.641254+00:00 |
| pysec-2023-303 |
8.8 (3.1)
|
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federate… | vantage6-node | 2023-11-14T21:15:00+00:00 | 2024-11-21T14:23:02.574095+00:00 |
| pysec-2022-43171 |
7.5 (3.1)
|
An XML Entity Expansion (XEE) issue was discovered in Tryton Application Platform (Server… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.453983+00:00 |
| pysec-2022-43170 |
6.5 (3.1)
|
An XXE issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.248212+00:00 |
| pysec-2016-41 |
4.4 (3.1)
|
file_open in Tryton before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before… | tryton | 2016-09-07T19:28:00+00:00 | 2024-11-21T14:23:02.083165+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4255 | A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to … | 2024-04-27T05:02:16.623487Z |
| gsd-2024-4265 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.621175Z |
| gsd-2024-4233 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.618656Z |
| gsd-2024-4283 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.614027Z |
| gsd-2024-4289 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.612538Z |
| gsd-2024-4287 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.611362Z |
| gsd-2024-4235 | A vulnerability classified as problematic was found in Netgear DG834Gv5 1.6.01.34. This v… | 2024-04-27T05:02:16.608439Z |
| gsd-2024-4246 | A vulnerability, which was classified as critical, was found in Tenda i21 1.0.0.14(4656).… | 2024-04-27T05:02:16.603900Z |
| gsd-2024-4263 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.603449Z |
| gsd-2024-4252 | A vulnerability classified as critical has been found in Tenda i22 1.0.0.3(4687). This af… | 2024-04-27T05:02:16.602334Z |
| gsd-2024-4229 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.599914Z |
| gsd-2024-4285 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.599710Z |
| gsd-2024-4286 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.599503Z |
| gsd-2024-4282 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.598979Z |
| gsd-2024-4242 | A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been rated as critical. This … | 2024-04-27T05:02:16.596328Z |
| gsd-2024-4267 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.595290Z |
| gsd-2024-4266 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.592000Z |
| gsd-2024-4247 | A vulnerability has been found in Tenda i21 1.0.0.14(4656) and classified as critical. Th… | 2024-04-27T05:02:16.588079Z |
| gsd-2024-4254 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587642Z |
| gsd-2024-4260 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587447Z |
| gsd-2024-4230 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587245Z |
| gsd-2024-4232 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587045Z |
| gsd-2024-4240 | A vulnerability was found in Tenda W9 1.0.0.7(4456). It has been classified as critical. … | 2024-04-27T05:02:16.585061Z |
| gsd-2024-4264 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.584159Z |
| gsd-2024-4258 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.581681Z |
| gsd-2024-4259 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.580041Z |
| gsd-2024-4278 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.578652Z |
| gsd-2024-4238 | A vulnerability has been found in Tenda AX1806 1.0.0.1 and classified as critical. Affect… | 2024-04-27T05:02:16.577033Z |
| gsd-2024-4290 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.575829Z |
| gsd-2024-4239 | A vulnerability was found in Tenda AX1806 1.0.0.1 and classified as critical. Affected by… | 2024-04-27T05:02:16.575159Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-748 | Malicious code in web3-chain-sync (npm) | 2026-02-04T23:44:24Z | 2026-02-06T03:05:27Z |
| mal-2026-734 | Malicious code in xpack-subscription-test (npm) | 2026-02-04T09:40:53Z | 2026-02-06T03:05:27Z |
| mal-2026-728 | Malicious code in z-shop-ui (npm) | 2026-02-04T05:14:29Z | 2026-02-06T03:05:27Z |
| mal-2026-727 | Malicious code in z-shop-js-env (npm) | 2026-02-04T05:14:29Z | 2026-02-06T03:05:27Z |
| mal-2026-726 | Malicious code in z-shop-event-bus (npm) | 2026-02-04T05:14:29Z | 2026-02-06T03:05:27Z |
| mal-2026-695 | Malicious code in tsconfig-stitch (npm) | 2026-02-03T07:48:27Z | 2026-02-06T03:05:27Z |
| mal-2026-694 | Malicious code in tarax (npm) | 2026-02-03T07:42:06Z | 2026-02-06T03:05:27Z |
| mal-2026-669 | Malicious code in vite-ui-components (npm) | 2026-02-03T03:42:39Z | 2026-02-06T03:05:27Z |
| mal-2026-668 | Malicious code in typescript-react-apollo (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-667 | Malicious code in typed-document-node (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-666 | Malicious code in transform-react-display-name (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-665 | Malicious code in transform-exponentiation-operator (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-664 | Malicious code in transform-es2015-modules-amd (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-663 | Malicious code in transform-async-generator-functions (npm) | 2026-02-03T03:57:51Z | 2026-02-06T03:05:27Z |
| mal-2026-758 | Malicious code in tailwindcss-forms-starter (npm) | 2026-02-05T02:03:44Z | 2026-02-06T03:05:26Z |
| mal-2026-754 | Malicious code in tailwindcss-animation-modern (npm) | 2026-02-05T01:06:23Z | 2026-02-06T03:05:26Z |
| mal-2026-747 | Malicious code in react-vite-sync (npm) | 2026-02-04T23:44:25Z | 2026-02-06T03:05:26Z |
| mal-2026-746 | Malicious code in react-count-sync (npm) | 2026-02-04T23:44:24Z | 2026-02-06T03:05:26Z |
| mal-2026-737 | Malicious code in remark-gfm-v4 (npm) | 2026-02-04T09:46:59Z | 2026-02-06T03:05:26Z |
| mal-2026-716 | Malicious code in si-wsl (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:26Z |
| mal-2026-715 | Malicious code in rreact-sdk (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:26Z |
| mal-2026-714 | Malicious code in reactt-sdkk (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:26Z |
| mal-2026-713 | Malicious code in react-sdkk (npm) | 2026-02-04T04:41:11Z | 2026-02-06T03:05:26Z |
| mal-2026-693 | Malicious code in tailwindcss-forms-kit (npm) | 2026-02-03T07:51:18Z | 2026-02-06T03:05:26Z |
| mal-2026-685 | Malicious code in strengthifys (npm) | 2026-02-03T07:27:10Z | 2026-02-06T03:05:26Z |
| mal-2026-684 | Malicious code in react-responsive-carousel-v4 (npm) | 2026-02-03T07:27:10Z | 2026-02-06T03:05:26Z |
| mal-2026-675 | Malicious code in supun-baileys (npm) | 2026-02-03T05:01:33Z | 2026-02-06T03:05:26Z |
| mal-2026-662 | Malicious code in researchpoc (npm) | 2026-02-03T03:25:19Z | 2026-02-06T03:05:26Z |
| mal-2026-657 | Malicious code in react-dnd-legacy-html5-backend (npm) | 2026-02-03T02:23:48Z | 2026-02-06T03:05:26Z |
| mal-2026-765 | Malicious code in optimizer-cpu (npm) | 2026-02-05T16:05:05Z | 2026-02-06T03:05:25Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-wordpress-2024-31210 | PHP file upload bypass via Plugin installer | 2024-04-06T18:33:59.181Z | 2026-01-08T12:08:29.041Z |
| bit-php-2025-14180 | NULL Pointer Dereference in PDO quoting | 2026-01-08T11:48:33.482Z | 2026-01-08T12:08:29.041Z |
| bit-php-2025-14177 | Information Leak of Memory in getimagesize | 2026-01-08T11:48:30.537Z | 2026-01-08T12:08:29.041Z |
| bit-libphp-2025-14180 | NULL Pointer Dereference in PDO quoting | 2026-01-08T11:43:29.868Z | 2026-01-08T12:08:29.041Z |
| bit-libphp-2025-14177 | Information Leak of Memory in getimagesize | 2026-01-08T11:43:26.820Z | 2026-01-08T12:08:29.041Z |
| bit-composer-2025-67746 | Composer vulnerable to ANSI sequence injection | 2026-01-08T11:35:54.533Z | 2026-01-08T12:08:29.041Z |
| bit-gitea-2025-69413 | 2026-01-07T12:00:07.972Z | 2026-01-07T12:31:01.344Z | |
| bit-git-2024-32020 | Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will | 2024-05-24T07:18:47.345Z | 2026-01-07T12:31:01.344Z |
| bit-git-2024-32004 | Git vulnerable to Remote Code Execution while cloning special-crafted local repositories | 2024-05-24T07:19:02.349Z | 2026-01-07T12:31:01.344Z |
| bit-wordpress-2024-4439 | 2024-05-14T07:38:44.185Z | 2026-01-06T12:06:51.467Z | |
| bit-git-2024-32465 | Git's protections for cloning untrusted repositories can be bypassed | 2024-05-24T07:18:19.848Z | 2026-01-06T12:06:51.467Z |
| bit-git-2024-32021 | Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory | 2024-05-24T07:18:34.045Z | 2026-01-06T12:06:51.467Z |
| bit-wordpress-2024-31211 | Remote Code Execution in `WP_HTML_Token` | 2024-04-06T18:33:49.785Z | 2026-01-03T12:07:32.193Z |
| bit-pytorch-2025-63396 | 2026-01-03T11:47:28.014Z | 2026-01-03T12:07:32.193Z | |
| bit-gitea-2025-68942 | 2026-01-03T11:37:48.385Z | 2026-01-03T12:07:32.193Z | |
| bit-gitea-2025-68941 | 2026-01-03T11:37:46.756Z | 2026-01-03T12:07:32.193Z | |
| bit-gitea-2025-68940 | 2026-01-03T11:37:45.335Z | 2026-01-03T12:07:32.193Z | |
| bit-gitea-2025-68939 | 2026-01-03T11:37:43.934Z | 2026-01-03T12:07:32.193Z | |
| bit-gitea-2025-68938 | 2026-01-03T11:37:42.629Z | 2026-01-03T12:07:32.193Z | |
| bit-pebble-2024-3250 | 2026-01-02T17:44:20.392Z | 2026-01-02T18:06:33.396Z | |
| bit-gitea-2025-68946 | 2026-01-01T11:37:50.117Z | 2026-01-01T12:06:33.381Z | |
| bit-gitea-2025-68945 | 2026-01-01T11:37:48.522Z | 2026-01-01T12:06:33.381Z | |
| bit-gitea-2025-68944 | 2026-01-01T11:37:47.146Z | 2026-01-01T12:06:33.381Z | |
| bit-gitea-2025-68943 | 2026-01-01T11:37:45.731Z | 2026-01-01T12:06:33.381Z | |
| bit-mongodb-2025-14847 | Zlib compressed protocol header length confusion may allow memory read | 2025-12-19T11:15:49.277Z | 2025-12-30T00:15:51.160Z |
| bit-pgbouncer-2025-12819 | Untrusted search path in auth_query connection in PgBouncer | 2025-12-06T11:44:20.875Z | 2025-12-28T12:07:40.562Z |
| bit-kibana-2025-68385 | Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 2025-12-20T11:39:21.164Z | 2025-12-24T12:08:49.467Z |
| bit-elk-2025-68385 | Kibana Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | 2025-12-20T11:36:36.041Z | 2025-12-24T12:08:49.467Z |
| bit-python-2025-13837 | Out-of-memory when loading Plist | 2025-12-05T11:13:08.742Z | 2025-12-23T12:07:14.245Z |
| bit-nifi-2025-66524 | Apache NiFi: Deserialization of Untrusted Data in GetAsanaObject Processor | 2025-12-23T11:44:08.985Z | 2025-12-23T12:07:14.245Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2019-065 | 2019-08-21T14:52:51.000Z | 2023-08-11T18:34:31.000Z | |
| drupal-contrib-2019-064 | 2019-08-14T17:33:20.000Z | 2023-08-11T18:34:14.000Z | |
| drupal-contrib-2019-063 | 2019-08-14T17:26:13.000Z | 2023-08-11T18:33:56.000Z | |
| drupal-contrib-2019-062 | 2019-08-14T17:14:00.000Z | 2023-08-11T18:33:31.000Z | |
| drupal-contrib-2019-060 | 2019-07-24T17:36:23.000Z | 2023-08-11T18:32:38.000Z | |
| drupal-contrib-2019-058 | 2019-07-24T16:31:19.000Z | 2023-08-11T18:32:08.000Z | |
| drupal-contrib-2019-075 | 2019-11-06T16:10:25.000Z | 2023-08-11T18:30:06.000Z | |
| drupal-contrib-2019-074 | 2019-10-16T16:09:20.000Z | 2023-08-11T18:28:44.000Z | |
| drupal-contrib-2019-071 | 2019-10-02T16:29:46.000Z | 2023-08-11T18:27:09.000Z | |
| drupal-contrib-2019-069 | 2019-09-25T14:55:33.000Z | 2023-08-11T18:26:25.000Z | |
| drupal-contrib-2019-068 | 2019-09-25T14:43:49.000Z | 2023-08-11T18:25:53.000Z | |
| drupal-contrib-2019-067 | 2019-09-18T15:17:32.000Z | 2023-08-11T18:24:28.000Z | |
| drupal-contrib-2019-078 | 2019-11-13T18:02:43.000Z | 2023-08-11T18:22:43.000Z | |
| drupal-contrib-2019-081 | 2019-11-13T18:04:58.000Z | 2023-08-11T18:22:08.000Z | |
| drupal-contrib-2019-092 | 2019-12-11T18:20:59.000Z | 2023-08-11T18:16:26.000Z | |
| drupal-contrib-2019-093 | 2019-12-11T18:32:17.000Z | 2023-08-11T18:16:07.000Z | |
| drupal-contrib-2019-094 | 2019-12-11T18:38:32.000Z | 2023-08-11T18:15:45.000Z | |
| drupal-contrib-2019-095 | 2019-12-11T18:59:46.000Z | 2023-08-11T18:15:27.000Z | |
| drupal-contrib-2019-089 | 2019-11-13T18:10:23.000Z | 2023-08-11T18:14:07.000Z | |
| drupal-contrib-2020-010 | 2020-04-15T15:45:46.000Z | 2023-08-11T18:01:50.000Z | |
| drupal-contrib-2020-008 | 2020-03-25T18:05:38.000Z | 2023-08-11T18:00:53.000Z | |
| drupal-contrib-2020-006 | 2020-03-11T15:53:32.000Z | 2023-08-11T18:00:08.000Z | |
| drupal-contrib-2020-005 | 2020-03-04T17:06:57.000Z | 2023-08-11T17:59:40.000Z | |
| drupal-contrib-2020-004 | 2020-02-19T17:22:22.000Z | 2023-08-11T17:59:12.000Z | |
| drupal-contrib-2020-003 | 2020-02-05T16:59:21.000Z | 2023-08-11T17:58:52.000Z | |
| drupal-contrib-2020-002 | 2020-01-22T17:36:50.000Z | 2023-08-11T17:58:05.000Z | |
| drupal-contrib-2020-011 | 2020-05-06T16:43:59.000Z | 2023-08-11T17:56:25.000Z | |
| drupal-contrib-2020-012 | 2020-05-06T16:47:19.000Z | 2023-08-11T17:56:01.000Z | |
| drupal-contrib-2020-013 | 2020-05-06T16:50:39.000Z | 2023-08-11T17:55:41.000Z | |
| drupal-contrib-2020-014 | 2020-05-06T16:52:16.000Z | 2023-08-11T17:55:18.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000112 | MUSASI version 3 performing authentication on client-side | 2024-10-18T14:40+09:00 | 2024-10-25T16:55+09:00 |
| jvndb-2024-000113 | N-LINE vulnerable to HTML injection | 2024-10-18T14:48+09:00 | 2024-10-25T16:48+09:00 |
| jvndb-2024-004623 | Multiple products from Check Point Software Technologies vulnerable to information disclosure | 2024-07-29T10:23+09:00 | 2024-10-24T16:37+09:00 |
| jvndb-2024-000111 | SHIRASAGI vulnerable to path traversal | 2024-10-16T14:12+09:00 | 2024-10-23T17:35+09:00 |
| jvndb-2024-010802 | Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector | 2024-10-22T13:02+09:00 | 2024-10-22T13:02+09:00 |
| jvndb-2024-000102 | Multiple NTT EAST Home GateWay/Hikari Denwa routers fail to restrict access permissions | 2024-09-24T16:00+09:00 | 2024-10-18T11:02+09:00 |
| jvndb-2024-000110 | Multiple vulnerabilities in Exment | 2024-10-11T14:13+09:00 | 2024-10-11T14:13+09:00 |
| jvndb-2024-000104 | MF Teacher Performance Management System vulnerable to cross-site scripting | 2024-09-27T15:00+09:00 | 2024-10-10T11:14+09:00 |
| jvndb-2024-009667 | Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software | 2024-10-03T13:42+09:00 | 2024-10-03T13:42+09:00 |
| jvndb-2024-000108 | Apache Tomcat improper handling of TLS handshake process data | 2024-10-01T17:51+09:00 | 2024-10-01T17:51+09:00 |
| jvndb-2024-009498 | Vulnerability in Cosminexus | 2024-10-01T16:01+09:00 | 2024-10-01T16:01+09:00 |
| jvndb-2024-000107 | RevoWorks Cloud vulnerable to unintended process execution | 2024-09-30T15:17+09:00 | 2024-09-30T15:17+09:00 |
| jvndb-2024-003932 | File Permissions Vulnerability in Hitachi Ops Center Common Services | 2024-09-30T14:15+09:00 | 2024-09-30T14:15+09:00 |
| jvndb-2024-000105 | Multiple vulnerabilities in Smart-tab | 2024-09-30T14:14+09:00 | 2024-09-30T14:14+09:00 |
| jvndb-2024-009396 | SNMP service is enabled by default in Sharp NEC Display Solutions projectors | 2024-09-30T12:46+09:00 | 2024-09-30T12:46+09:00 |
| jvndb-2024-003049 | Multiple vulnerabilities in KEYENCE KV STUDIO, KV REPLAY VIEWER, and VT5-WX15/WX12 | 2024-04-01T12:31+09:00 | 2024-09-25T13:51+09:00 |
| jvndb-2024-000089 | WindLDR and WindO/I-NV4 store sensitive information in cleartext | 2024-08-29T15:08+09:00 | 2024-09-24T17:14+09:00 |
| jvndb-2024-000103 | The installer of e-Tax software(common program) vulnerable to privilege escalation | 2024-09-24T16:12+09:00 | 2024-09-24T16:12+09:00 |
| jvndb-2024-000101 | Multiple vulnerabilities in PLANEX COMMUNICATIONS network devices | 2024-09-24T15:26+09:00 | 2024-09-24T15:26+09:00 |
| jvndb-2024-003068 | Multiple vulnerabilities in Cente middleware | 2024-04-05T15:36+09:00 | 2024-09-24T15:00+09:00 |
| jvndb-2024-008391 | Multiple vulnerabilities in TAKENAKA ENGINEERING digital video recorders | 2024-09-19T14:07+09:00 | 2024-09-19T14:07+09:00 |
| jvndb-2024-000100 | Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce" | 2024-09-18T14:34+09:00 | 2024-09-18T14:34+09:00 |
| jvndb-2024-000099 | Assimp vulnerable to heap-based buffer overflow | 2024-09-18T14:20+09:00 | 2024-09-18T14:20+09:00 |
| jvndb-2020-018328 | Falsification and eavesdropping of contents across multiple websites via Web Rehosting services | 2024-09-12T12:23+09:00 | 2024-09-12T12:23+09:00 |
| jvndb-2023-027250 | Security Problem in Web Browser Permission Mechanism | 2024-09-11T18:19+09:00 | 2024-09-11T18:19+09:00 |
| jvndb-2020-018327 | Malleability attack against executables encrypted by CBC mode with no integrity check | 2024-09-11T18:19+09:00 | 2024-09-11T18:19+09:00 |
| jvndb-2024-000095 | Multiple Alps System Integration products and the OEM products vulnerable to cross-site request forgery | 2024-09-09T16:40+09:00 | 2024-09-09T16:40+09:00 |
| jvndb-2024-000096 | Pgpool-II vulnerable to information disclosure | 2024-09-09T14:58+09:00 | 2024-09-09T14:58+09:00 |
| jvndb-2024-000094 | "@cosme" App fails to restrict custom URL schemes properly | 2024-09-09T14:20+09:00 | 2024-09-09T14:20+09:00 |
| jvndb-2024-000097 | WordPress Plugin "Forminator" vulnerable to cross-site scripting | 2024-09-09T13:51+09:00 | 2024-09-09T13:51+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-08438 | iccDEV ToXmlCurve函数类型混淆漏洞 | 2026-01-14 | 2026-01-26 |
| cnvd-2026-08437 | iccDEV CIccSegmentedCurveXml::ToXml函数类型混淆漏洞 | 2026-01-14 | 2026-01-26 |
| cnvd-2026-08436 | iccDEV icStatusCMM::CIccEvalCompare::EvaluateProfile函数类型混淆漏洞 | 2026-01-14 | 2026-01-26 |
| cnvd-2026-08435 | iccDEV CIccSingleSampledeCurveXml类的类型混淆漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08429 | iccDEV Unicode缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08428 | iccDEV CIccTagText::Read函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08427 | iccDEV CIccTagLut8::Validate函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08426 | iccDEV CIccTagLut16::Validate函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08425 | iccDEV CIccSparseMatrix::CIccSparseMatrix函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08424 | iccDEV CIccProfile::LoadTag函数输入验证不当漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08423 | iccDEV CIccMBB::Validate函数堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08422 | iccDEV CIccCalculatorFunc::SequenceNeedTempReset函数越界读取漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08421 | iccDEV ICC颜色配置文件未定义行为漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08420 | iccDEV计算器解析器堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-08419 | iccDEV CIccProfileXml::ParseBasic函数空指针取消引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07952 | iccDEV未知标签解析器空指针取消引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07951 | iccDEV ICC色彩配置文件空指针取消引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07950 | iccDEV数字错误漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07949 | iccDEV CIccTagLutAtoB::Validate函数未定义行为漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07948 | iccDEV CIccTagLut16::Read函数未定义行为漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07947 | iccDEV XML计算器宏扩展堆栈缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07946 | iccDEV XML标签解析器空指针引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07945 | iccDEV CIccTagSpectralViewingConditions函数未定义行为漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07944 | iccDEV签名解析器空指针引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07943 | iccDEV无效枚举值漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07942 | iccDEV XML计算器解析器空指针取消引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07941 | iccDEV CIccTagCurve::CIccTagCurve函数未定义行为漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07940 | iccDEV CIccTagSparseMatrixArray空指针引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07939 | iccDEV XML解析器空指针引用漏洞 | 2026-01-19 | 2026-01-26 |
| cnvd-2026-07938 | iccDEV ToneMap解析器堆缓冲区溢出漏洞 | 2026-01-19 | 2026-01-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-14098 | Уязвимость функции hdr_first_de() компонента ntfs3 ядра операционной системы Linux, позво… | 14.11.2025 | 16.02.2026 |
| bdu:2025-14095 | Уязвимость функции cm_chan_msg_send() модуля drivers/rapidio/rio_cm.c ядра операционной с… | 14.11.2025 | 16.02.2026 |
| bdu:2025-14090 | Уязвимость функции vsock_find_cid() ядра операционной системы Linux, позволяющая нарушите… | 14.11.2025 | 16.02.2026 |
| bdu:2025-13924 | Уязвимость библиотеки LibTIFF, связанная с выходом операции за границы буфера в памяти, п… | 10.11.2025 | 16.02.2026 |
| bdu:2025-13921 | Уязвимость библиотеки LibTIFF, связанная с выходом операции за границы буфера в памяти, п… | 10.11.2025 | 16.02.2026 |
| bdu:2025-13888 | Уязвимость функции ax25_kiss_rcv() модуля ax25_kiss_rcv ядра операционной системы Linux, … | 07.11.2025 | 16.02.2026 |
| bdu:2025-13881 | Уязвимость функции SSID в __cfg80211_connect_result() модуля net/wireless/sme.c ядра опер… | 07.11.2025 | 16.02.2026 |
| bdu:2025-13880 | Уязвимость функции pad_compress_skb() модуля drivers/net/ppp/ppp_generic.c ядра операцион… | 07.11.2025 | 16.02.2026 |
| bdu:2025-13687 | Уязвимость функции __mark_inode_dirty() ядра операционной системы Linux, позволяющая нару… | 05.11.2025 | 16.02.2026 |
| bdu:2025-13684 | Уязвимость функции cmp_bss() ядра операционной системы Linux, позволяющая нарушителю вызв… | 05.11.2025 | 16.02.2026 |
| bdu:2025-13682 | Уязвимость функции l2cap_sock_cleanup_listen() ядра операционной системы Linux, позволяющ… | 05.11.2025 | 16.02.2026 |
| bdu:2025-13679 | Уязвимость функции list_first_entry() ядра операционной системы Linux, позволяющая наруши… | 05.11.2025 | 16.02.2026 |
| bdu:2025-13565 | Уязвимость функции cache_set_flush() ядра операционной системы Linux, позволяющая нарушит… | 29.10.2025 | 16.02.2026 |
| bdu:2025-13564 | Уязвимость функции automount_fullpath() ядра операционной системы Linux, позволяющая нару… | 29.10.2025 | 16.02.2026 |
| bdu:2025-13563 | Уязвимость функции do_register_framebuffer() ядра операционной системы Linux, позволяющая… | 29.10.2025 | 16.02.2026 |
| bdu:2025-13522 | Уязвимость функции hid_hw_raw_request() драйвера Low Level Transport ядра операционной си… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13520 | Уязвимость функции __mptcp_do_fallback() компонента mptcp ядра операционной системы Linux… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13517 | Уязвимость драйвера Low Level Transport ядра операционной системы Linux, позволяющая нару… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13514 | Уязвимость функции misc_deregister() компонента soc ядра операционной системы Linux, позв… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13513 | Уязвимость функции fxls8962af_fifo_flush() компонента iio ядра операционной системы Linux… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13512 | Уязвимость функции rose_rt_device_down() ядра операционной системы Linux, позволяющая нар… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13511 | Уязвимость функции rpl_do_srh_inline() компонента rpl ядра операционной системы Linux, по… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13498 | Уязвимость функции __kmem_cache_shutdown ядра операционной системы Linux, позволяющая нар… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13494 | Уязвимость компонента ath6kl ядра операционной системы Linux, позволяющая нарушителю вызв… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13493 | Уязвимость функции msdc_prepare_data() компонента mtk-sd ядра операционной системы Linux,… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13486 | Уязвимость функции dbMount операционной системы Linux, позволяющая нарушителю оказать воз… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13485 | Уязвимость компонента media операционной системы Linux, позволяющая нарушителю вызвать от… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13484 | Уязвимость функции v4l2_rect_map_inside операционной системы Linux, позволяющая нарушител… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13482 | Уязвимость ядра операционной системы Linux, связанная с недостаточной проверкой входных д… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13479 | Уязвимость операционной системы Linux, связанная с ошибкой разыменования указателей, позв… | 28.10.2025 | 16.02.2026 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-1086 | Multiples vulnérabilités dans les produits Intel | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1085 | Multiples vulnérabilités dans les produits Adobe | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1084 | Multiples vulnérabilités dans les produits Fortinet | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1083 | Multiples vulnérabilités dans les produits Siemens | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| certfr-2025-avi-1082 | Multiples vulnérabilités dans les produits Microsoft | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| certfr-2025-avi-1081 | Vulnérabilité dans Citrix XenServer | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| certfr-2025-avi-1080 | Multiples vulnérabilités dans VMware Tanzu RabbitMQ | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| certfr-2025-avi-1079 | Multiples vulnérabilités dans les produits SAP | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| certfr-2025-avi-1078 | Multiples vulnérabilités dans les produits Microsoft | 2025-12-08T00:00:00.000000 | 2025-12-08T00:00:00.000000 |
| certfr-2025-avi-1077 | Multiples vulnérabilités dans Traefik | 2025-12-08T00:00:00.000000 | 2025-12-08T00:00:00.000000 |
| certfr-2024-avi-1026 | Multiples vulnérabilités dans les produits Synology | 2024-11-28T00:00:00.000000 | 2025-12-08T00:00:00.000000 |
| certfr-2025-avi-1075 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1074 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1073 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1072 | Multiples vulnérabilités dans les produits IBM | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1071 | Multiples vulnérabilités dans Apache HTTP Server | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1070 | Multiples vulnérabilités dans Microsoft CBL Mariner | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1069 | Multiples vulnérabilités dans Microsoft Edge | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1068 | Vulnérabilité dans Python | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1067 | Vulnérabilité dans Apache Struts | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1066 | Multiples vulnérabilités dans les produits Nextcloud | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1065 | Multiples vulnérabilités dans NetApp ONTAP | 2025-12-05T00:00:00.000000 | 2025-12-05T00:00:00.000000 |
| certfr-2025-avi-1064 | Multiples vulnérabilités dans les produits Microsoft | 2025-12-04T00:00:00.000000 | 2025-12-04T00:00:00.000000 |
| certfr-2025-avi-1063 | Multiples vulnérabilités dans les produits Splunk | 2025-12-04T00:00:00.000000 | 2025-12-04T00:00:00.000000 |
| certfr-2025-avi-1062 | Multiples vulnérabilités dans Wireshark | 2025-12-04T00:00:00.000000 | 2025-12-04T00:00:00.000000 |
| certfr-2025-avi-1061 | Vulnérabilité dans PostgreSQL PgBouncer | 2025-12-04T00:00:00.000000 | 2025-12-04T00:00:00.000000 |
| certfr-2024-avi-1090 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2024-12-18T00:00:00.000000 | 2025-12-04T00:00:00.000000 |
| certfr-2025-avi-1060 | Multiples vulnérabilités dans Python | 2025-12-03T00:00:00.000000 | 2025-12-03T00:00:00.000000 |
| certfr-2025-avi-1059 | Multiples vulnérabilités dans Google Pixel | 2025-12-03T00:00:00.000000 | 2025-12-03T00:00:00.000000 |
| certfr-2025-avi-1058 | Multiples vulnérabilités dans Google Chrome | 2025-12-03T00:00:00.000000 | 2025-12-03T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2006-ale-012 | Vulnérabilité de Microsoft PowerPoint | 2006-10-13T00:00:00.000000 | 2008-10-09T00:00:00.000000 |
| certa-2007-ale-005 | Vulnérabilité de Sun Solaris | 2007-02-12T00:00:00.000000 | 2008-09-18T00:00:00.000000 |
| certa-2008-ale-010 | Vulnérabilité dans Microsoft Word | 2008-07-09T00:00:00.000000 | 2008-08-13T00:00:00.000000 |
| certa-2008-ale-009 | Vulnérabilité dans Microsoft Access Snapshot Viewer | 2008-07-08T00:00:00.000000 | 2008-08-13T00:00:00.000000 |
| certa-2008-ale-011 | Vulnérabilité dans Oracle BEA WebLogic Server | 2008-07-24T00:00:00.000000 | 2008-08-08T00:00:00.000000 |
| certa-2008-ale-008 | Vulnérabilité du navigateur Safari | 2008-06-02T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-ale-007 | Multiples vulnérabilités dans Apple iCal | 2008-05-23T00:00:00.000000 | 2008-05-29T00:00:00.000000 |
| certa-2008-ale-005 | Vulnérabilité dans Microsoft Jet Database Engine | 2008-03-25T00:00:00.000000 | 2008-05-14T00:00:00.000000 |
| certa-2008-ale-004 | Vulnérabilité dans VMware | 2008-02-27T00:00:00.000000 | 2008-04-16T00:00:00.000000 |
| certa-2008-ale-003 | Vulnérabilité dans Excel | 2008-01-16T00:00:00.000000 | 2008-03-12T00:00:00.000000 |
| certa-2008-ale-002 | Vulnérabilité dans Joomla! | 2008-01-14T00:00:00.000000 | 2008-02-25T00:00:00.000000 |
| certa-2008-ale-001 | Vulnérabilité dans Apple QuickTime | 2008-01-11T00:00:00.000000 | 2008-02-07T00:00:00.000000 |
| certa-2007-ale-017 | Vulnérabilité dans la gestion RTSP d'Apple QuickTime | 2007-11-27T00:00:00.000000 | 2007-12-14T00:00:00.000000 |
| certa-2007-ale-016 | Vulnérabilité d'Oracle 10g | 2007-11-16T00:00:00.000000 | 2007-11-16T00:00:00.000000 |
| certa-2007-ale-015 | Vulnérabilité dans le traitement des URI sous Windows | 2007-10-10T00:00:00.000000 | 2007-11-14T00:00:00.000000 |
| certa-2007-ale-014 | Vulnérabilité dans Apple QuickTime | 2007-09-13T00:00:00.000000 | 2007-10-12T00:00:00.000000 |
| certa-2007-ale-013 | Vulnérabilité dans Mozilla Firefox | 2007-07-27T00:00:00.000000 | 2007-07-31T00:00:00.000000 |
| certa-2007-ale-012 | Multiples vulnérabilités dans Mozilla Firefox | 2007-06-06T00:00:00.000000 | 2007-07-18T00:00:00.000000 |
| certa-2007-ale-010 | Vulnérabilité de Microsoft DNS Server | 2007-04-16T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-ale-006 | Vulnérabilité dans le logiciel Microsoft Word | 2007-02-16T00:00:00.000000 | 2007-05-09T00:00:00.000000 |
| certa-2007-ale-009 | Vulnérabilité dans BrightStor ARCServe Backup | 2007-03-30T00:00:00.000000 | 2007-04-27T00:00:00.000000 |
| certa-2007-ale-008 | Vulnérabilité dans Mirosoft Windows | 2007-03-29T00:00:00.000000 | 2007-04-03T00:00:00.000000 |
| certa-2007-ale-002 | Vulnérabilité dans Windows | 2007-01-12T00:00:00.000000 | 2007-04-03T00:00:00.000000 |
| certa-2006-ale-013 | Vulnérabilité de MacOS X | 2006-11-23T00:00:00.000000 | 2007-02-16T00:00:00.000000 |
| certa-2006-ale-014 | Vulnérabilités dans Microsoft Word | 2006-12-06T00:00:00.000000 | 2007-02-14T00:00:00.000000 |
| certa-2007-ale-004 | Vulnérabilité dans Microsoft Office | 2007-02-03T00:00:00.000000 | 2007-02-13T00:00:00.000000 |
| certa-2007-ale-001 | Vulnérablité dans Apple Quicktime | 2007-01-04T00:00:00.000000 | 2007-01-24T00:00:00.000000 |
| certa-2007-ale-003 | Filoutage contre le site voyages-sncf.com | 2007-01-15T00:00:00.000000 | 2007-01-15T00:00:00.000000 |
| certa-2006-ale-011 | Multiples vulnérabilités de produits Microsoft | 2006-08-31T00:00:00.000000 | 2006-10-11T00:00:00.000000 |
| certa-2006-ale-010 | Vulnérabilité dans Internet Explorer | 2006-08-23T00:00:00.000000 | 2006-08-25T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2018-204 | UNKNOWN WRITE in __msan_memcpy.part.51 | 2021-01-13T00:01:23.035709Z | 2025-09-25T14:18:29.315747Z |
| osv-2025-424 | UNKNOWN READ in RDKit::RDValue::destroy | 2025-06-03T00:12:35.236863Z | 2025-09-24T14:19:44.921114Z |
| osv-2025-447 | Use-of-uninitialized-value in spvtools::EmitNumericLiteral | 2025-06-09T00:05:11.128452Z | 2025-09-24T14:18:33.220549Z |
| osv-2025-767 | UNKNOWN READ in dcd_int_handler | 2025-09-20T00:19:20.851166Z | 2025-09-20T00:19:20.851464Z |
| osv-2025-766 | Heap-buffer-overflow in Open | 2025-09-20T00:18:10.380843Z | 2025-09-20T00:18:10.381141Z |
| osv-2025-765 | Security exception in com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer | 2025-09-20T00:18:07.994839Z | 2025-09-20T00:18:07.995257Z |
| osv-2025-764 | Global-buffer-overflow in Ogg_CreateES | 2025-09-20T00:15:54.584666Z | 2025-09-20T00:15:54.585041Z |
| osv-2025-762 | Use-of-uninitialized-value in fuzzer_send | 2025-09-19T00:14:45.258709Z | 2025-09-19T00:14:45.259063Z |
| osv-2025-742 | Null-dereference READ in ubsan_GetStackTrace | 2025-09-14T00:15:42.184140Z | 2025-09-14T00:15:42.184553Z |
| osv-2025-729 | UNKNOWN READ in sam_hrecs_free_tags | 2025-09-13T00:08:43.863495Z | 2025-09-13T00:08:43.863848Z |
| osv-2025-723 | Heap-buffer-overflow in processClientServerHello | 2025-09-13T00:02:40.666090Z | 2025-09-13T00:02:40.666412Z |
| osv-2025-357 | Segv on unknown address in pcpp::Packet::computeCalculateFields | 2025-05-12T00:13:14.901744Z | 2025-09-10T14:24:05.862334Z |
| osv-2024-728 | Negative-size-param in pdf_resize_resource_arrays | 2024-08-08T00:09:33.935595Z | 2025-09-09T14:38:01.224913Z |
| osv-2024-677 | Segv on unknown address in gs_gc_reclaim | 2024-07-25T00:06:43.762625Z | 2025-09-09T14:37:05.973820Z |
| osv-2022-524 | Heap-buffer-overflow in Ins_JROF | 2022-07-01T00:01:43.353257Z | 2025-09-09T14:31:56.225132Z |
| osv-2022-73 | Heap-use-after-free in pdfi_cspace_free_callback | 2022-01-22T00:00:41.413569Z | 2025-09-09T14:31:44.774726Z |
| osv-2023-34 | Heap-use-after-free in gc_trace | 2023-01-29T13:00:17.773387Z | 2025-09-09T14:29:25.362507Z |
| osv-2024-340 | Heap-buffer-overflow in Exiv2::AsfVideo::GUIDTag::GUIDTag | 2024-04-30T00:01:53.406015Z | 2025-08-31T14:16:55.848374Z |
| osv-2025-684 | Heap-buffer-overflow in TGAHandler::read | 2025-08-25T00:17:17.781502Z | 2025-08-25T00:17:17.782094Z |
| osv-2025-677 | Heap-buffer-overflow in TGAHandler::read | 2025-08-23T00:05:27.168432Z | 2025-08-23T00:05:27.168725Z |
| osv-2025-373 | Heap-use-after-free in aiMesh::~aiMesh | 2025-05-17T00:11:17.621374Z | 2025-08-22T19:20:38.723565Z |
| osv-2022-908 | Heap-buffer-overflow in element_end | 2022-09-18T00:02:08.324002Z | 2025-08-20T14:46:01.613271Z |
| osv-2025-657 | Heap-use-after-free in ftp_pp_statemachine | 2025-08-20T00:12:09.699805Z | 2025-08-20T00:12:09.700264Z |
| osv-2022-624 | Heap-buffer-overflow in Assimp::MD5::MD5Parser::ParseHeader | 2022-07-25T00:02:02.600456Z | 2025-08-19T09:51:59.993647Z |
| osv-2025-638 | Security exception in com.fasterxml.jackson.databind.deser.std.UntypedObjectDeserializer$Vanilla.deser | 2025-08-17T00:01:49.946822Z | 2025-08-17T14:48:59.288257Z |
| osv-2025-634 | Null-dereference READ in enc_fuzzer@Enc.EncTest | 2025-08-15T00:17:04.845331Z | 2025-08-15T00:17:04.845683Z |
| osv-2025-633 | UNKNOWN WRITE in _lou_handlePassVariableAction | 2025-08-15T00:16:54.142913Z | 2025-08-15T00:16:54.143400Z |
| osv-2025-631 | Null-dereference READ in advanced_api_fuzzer@AdvancedApi.AdvancedApiTest | 2025-08-15T00:02:42.080995Z | 2025-08-15T00:02:42.081563Z |
| osv-2024-772 | UNKNOWN READ in H5SL_search | 2024-08-16T00:00:44.075617Z | 2025-08-14T14:39:54.764895Z |
| osv-2024-1010 | UNKNOWN READ in H5SL_first | 2024-08-16T00:16:31.692553Z | 2025-08-14T14:39:40.358063Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2024-0432 | Malicious plugin names, recipients, or identities can cause arbitrary binary execution | 2024-12-18T12:00:00Z | 2025-01-03T18:23:54Z |
| rustsec-2024-0427 | get-size-derive is unmaintained | 2024-09-15T12:00:00Z | 2024-12-22T09:01:06Z |
| rustsec-2024-0425 | get-size is unmaintained | 2024-09-15T12:00:00Z | 2024-12-22T09:01:06Z |
| rustsec-2024-0423 | gtk-layer-shell-sys GTK3 bindings - no longer maintained | 2024-12-09T12:00:00Z | 2024-12-09T13:12:34Z |
| rustsec-2024-0422 | gtk-layer-shell GTK3 bindings - no longer maintained | 2024-12-09T12:00:00Z | 2024-12-09T13:12:34Z |
| rustsec-2024-0420 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0419 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0418 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0417 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0416 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0415 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0414 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0413 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0412 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0411 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2024-0410 | gtk-rs GTK3 bindings - no longer maintained | 2024-03-04T12:00:00Z | 2024-12-09T12:29:00Z |
| rustsec-2017-0008 | `serial` crate is unmaintained | 2017-07-02T12:00:00Z | 2024-12-04T13:14:28Z |
| rustsec-2020-0169 | multi_mut is Unmaintained | 2020-02-07T12:00:00Z | 2024-12-04T12:55:45Z |
| rustsec-2024-0406 | BTreeMap memory leak when deallocating nodes with overflows | 2024-05-17T12:00:00Z | 2024-12-04T12:44:24Z |
| rustsec-2024-0401 | Denial of service because of stack overflow with malicious decompression input | 2024-11-14T12:00:00Z | 2024-12-04T12:13:35Z |
| rustsec-2024-0395 | The maintainer of chrono-english is unresponsive | 2024-06-24T12:00:00Z | 2024-11-10T20:38:56Z |
| rustsec-2023-0088 | `loopdev` crate is unmaintained; use 'loopdev-3` instead. | 2023-11-13T12:00:00Z | 2024-11-10T16:18:40Z |
| rustsec-2024-0397 | `conrod` is unmaintained | 2024-01-26T12:00:00Z | 2024-11-10T14:25:35Z |
| rustsec-2024-0396 | `conrod_core` is unmaintained | 2024-01-26T12:00:00Z | 2024-11-10T14:25:35Z |
| rustsec-2024-0394 | mmap unmaintained | 2024-06-10T12:00:00Z | 2024-11-10T14:06:58Z |
| rustsec-2024-0390 | minitrace is Unmaintained | 2024-08-14T12:00:00Z | 2024-11-10T13:54:21Z |
| rustsec-2024-0389 | `openslide` is unmaintained | 2024-07-03T12:00:00Z | 2024-11-10T13:42:14Z |
| rustsec-2024-0388 | `derivative` is unmaintained; consider using an alternative | 2024-06-26T12:00:00Z | 2024-11-10T13:34:40Z |
| rustsec-2024-0387 | `opentelemetry_api` has been merged into the `opentelemetry` crate | 2024-07-03T12:00:00Z | 2024-11-10T13:29:25Z |
| rustsec-2024-0386 | strason is unmaintained | 2024-09-04T12:00:00Z | 2024-11-10T13:16:48Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:22660 | Moderate: systemd security update | 2025-12-03T00:00:00Z | 2025-12-04T13:25:23Z |
| alsa-2025:22175 | Important: expat security update | 2025-11-26T00:00:00Z | 2025-12-03T12:07:34Z |
| alsa-2025:22363 | Important: firefox security update | 2025-12-01T00:00:00Z | 2025-12-03T12:05:25Z |
| alsa-2025:22376 | Moderate: libxml2 security update | 2025-12-01T00:00:00Z | 2025-12-03T12:03:31Z |
| alsa-2025:22387 | Moderate: kernel-rt security update | 2025-12-01T00:00:00Z | 2025-12-03T12:01:56Z |
| alsa-2025:22388 | Moderate: kernel security update | 2025-12-01T00:00:00Z | 2025-12-03T11:59:02Z |
| alsa-2025:20928 | Important: ipa security update | 2025-11-11T00:00:00Z | 2025-12-01T08:16:32Z |
| alsa-2025:20954 | Important: sssd security update | 2025-11-11T00:00:00Z | 2025-12-01T08:13:09Z |
| alsa-2025:20958 | Important: tigervnc security update | 2025-11-11T00:00:00Z | 2025-12-01T08:10:34Z |
| alsa-2025:20962 | Important: pcs security update | 2025-11-11T00:00:00Z | 2025-12-01T08:09:09Z |
| alsa-2025:21111 | Important: bind9.18 security update | 2025-11-12T00:00:00Z | 2025-12-01T08:06:30Z |
| alsa-2025:21255 | Moderate: openssl security update | 2025-11-13T00:00:00Z | 2025-12-01T08:04:03Z |
| alsa-2025:21916 | Important: valkey security update | 2025-11-24T00:00:00Z | 2025-12-01T08:02:48Z |
| alsa-2025:21926 | Moderate: kernel security update | 2025-11-24T00:00:00Z | 2025-12-01T08:01:07Z |
| alsa-2025:21968 | Important: gimp security update | 2025-11-24T00:00:00Z | 2025-12-01T07:58:09Z |
| alsa-2025:21974 | Important: mingw-expat security update | 2025-11-24T00:00:00Z | 2025-12-01T07:55:50Z |
| alsa-2025:22063 | Moderate: cups security update | 2025-11-25T00:00:00Z | 2025-11-28T13:48:35Z |
| alsa-2025:22011 | Important: buildah security update | 2025-11-25T00:00:00Z | 2025-11-25T12:06:57Z |
| alsa-2025:21977 | Moderate: libssh security update | 2025-11-24T00:00:00Z | 2025-11-25T12:04:18Z |
| alsa-2025:20983 | Important: podman security update | 2025-11-11T00:00:00Z | 2025-11-25T10:54:40Z |
| alsa-2025:22005 | Moderate: go-rpm-macros security update | 2025-11-25T00:00:00Z | 2025-11-25T10:51:18Z |
| alsa-2025:21220 | Important: podman security update | 2025-11-13T00:00:00Z | 2025-11-25T10:45:01Z |
| alsa-2025:21281 | Important: firefox security update | 2025-11-13T00:00:00Z | 2025-11-25T09:59:17Z |
| alsa-2025:21248 | Moderate: openssl security update | 2025-11-13T00:00:00Z | 2025-11-25T09:31:36Z |
| alsa-2025:21881 | Important: thunderbird security update | 2025-11-20T00:00:00Z | 2025-11-25T09:29:54Z |
| alsa-2025:21917 | Moderate: kernel security update | 2025-11-24T00:00:00Z | 2025-11-25T09:27:51Z |
| alsa-2025:21920 | Moderate: kernel-rt security update | 2025-11-24T00:00:00Z | 2025-11-25T09:25:12Z |
| alsa-2025:21142 | Important: python-kdcproxy security update | 2025-11-12T00:00:00Z | 2025-11-24T12:51:27Z |
| alsa-2025:21691 | Important: haproxy security update | 2025-11-18T00:00:00Z | 2025-11-24T12:50:19Z |
| alsa-2025:21816 | Moderate: delve and golang security update | 2025-11-20T00:00:00Z | 2025-11-24T12:49:17Z |