Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0309 |
N/A
|
HP-UX vgdisplay program gives root access to loca… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.856Z |
| CVE-1999-0310 |
N/A
|
SSH 1.2.25 on HP-UX allows access to new user accounts. |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.885Z |
| CVE-1999-0311 |
N/A
|
fpkg2swpk in HP-UX allows local users to gain roo… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.870Z |
| CVE-1999-0312 |
N/A
|
HP ypbind allows attackers with root privileges t… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.825Z |
| CVE-1999-0313 |
N/A
|
disk_bandwidth on SGI IRIX 6.4 S2MP for Origin/On… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.029Z |
| CVE-1999-0314 |
N/A
|
ioconfig on SGI IRIX 6.4 S2MP for Origin/Onyx2 al… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.863Z |
| CVE-1999-0315 |
N/A
|
Buffer overflow in Solaris fdformat command gives… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.825Z |
| CVE-1999-0316 |
N/A
|
Buffer overflow in Linux splitvt command gives ro… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.899Z |
| CVE-1999-0320 |
N/A
|
SunOS rpc.cmsd allows attackers to obtain root ac… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.888Z |
| CVE-1999-0321 |
N/A
|
Buffer overflow in Solaris kcms_configure command… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.884Z |
| CVE-1999-0324 |
N/A
|
ppl program in HP-UX allows local users to create… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.022Z |
| CVE-1999-0325 |
N/A
|
vhe_u_mnt program in HP-UX allows local users to … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.870Z |
| CVE-1999-0326 |
N/A
|
Vulnerability in HP-UX mediainit program. |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.900Z |
| CVE-1999-0327 |
N/A
|
SGI syserr program allows local users to corrupt files. |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.020Z |
| CVE-1999-0328 |
N/A
|
SGI permissions program allows local users to gai… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.857Z |
| CVE-1999-0329 |
N/A
|
SGI mediad program allows local users to gain roo… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.838Z |
| CVE-1999-0332 |
N/A
|
Buffer overflow in NetMeeting allows denial of se… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.949Z |
| CVE-1999-0334 |
N/A
|
In Solaris 2.2 and 2.3, when fsck fails on startu… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.960Z |
| CVE-1999-0335 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-1999-0032. Reason: This candidate is a duplicate of CVE-1999-0032. Notes: All CVE users should reference CVE-1999-0032 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage | N/A | N/A | 1999-09-29T08:00:00.000Z | 2022-08-17T06:55:29.000Z |
| CVE-1999-0337 |
N/A
|
AIX batch queue (bsh) allows local and remote use… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.945Z |
| CVE-1999-0338 |
N/A
|
AIX Licensed Program Product performance tools al… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.900Z |
| CVE-1999-0339 |
N/A
|
Buffer overflow in the libauth library in Solaris… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.798Z |
| CVE-1999-0340 |
N/A
|
Buffer overflow in Linux Slackware crond program … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.895Z |
| CVE-1999-0341 |
N/A
|
Buffer overflow in the Linux mail program "delive… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.965Z |
| CVE-1999-0342 |
N/A
|
Linux PAM modules allow local users to gain root … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.020Z |
| CVE-1999-0344 |
N/A
|
NT users can gain debug-level access on a system … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.918Z |
| CVE-1999-0346 |
N/A
|
CGI PHP mlog script allows an attacker to read an… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.881Z |
| CVE-1999-0348 |
N/A
|
IIS ASP caching problem releases sensitive inform… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.967Z |
| CVE-1999-0349 |
N/A
|
A buffer overflow in the FTP list (ls) command in… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.021Z |
| CVE-1999-0350 |
N/A
|
Race condition in the db_loader program in ClearC… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.902Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-3f5c-4qxj-vmpf |
7.5 (3.1)
|
Next.js Directory Traversal Vulnerability | 2017-12-05T02:04:14Z | 2024-04-22T19:49:35Z |
| ghsa-2w67-526p-gm73 |
9.8 (3.1)
|
redis-store deserializes untrusted data | 2017-12-06T16:41:25Z | 2023-03-14T21:11:23Z |
| ghsa-x27v-x225-gq8g |
9.8 (3.1)
|
Recurly gem Server-Side Request Forgery in Resource#find method | 2017-12-06T16:43:00Z | 2023-08-29T15:38:45Z |
| ghsa-8c56-cpmw-89x7 |
7.5 (3.1)
|
Out-of-bounds read in nokogiri | 2017-12-13T21:38:24Z | 2021-06-30T18:05:23Z |
| ghsa-vx5c-87qx-cv6c |
9.8 (3.1)
|
Arbitrary Code Execution in mathjs | 2017-12-18T22:27:45Z | 2021-06-10T20:06:12Z |
| ghsa-pv8x-p9hq-j328 |
9.8 (3.1)
|
Arbitrary Code Execution in mathjs | 2017-12-18T22:27:53Z | 2023-09-12T18:41:33Z |
| ghsa-3rpr-mg43-xhq4 |
7.5 (3.1)
|
auth0-js Privilege Escalation Vulnerability | 2017-12-21T00:47:20Z | 2023-09-13T22:14:09Z |
| ghsa-gj4p-3wh3-2rmf |
7.5 (3.1)
|
Arbitrary file read vulnerability in yard server | 2017-12-21T00:47:25Z | 2023-07-05T17:53:08Z |
| ghsa-7fpw-cfc4-3p2c |
8.1 (3.1)
|
Duplicate advisory: High severity vulnerability that affects passport-wsfed-saml2 | 2017-12-28T22:51:45Z | 2023-06-21T22:00:08Z |
| ghsa-h9mj-fghc-664w |
6.5 (3.1)
|
Denial of Service in mqtt | 2017-12-28T22:51:58Z | 2021-09-14T17:16:40Z |
| ghsa-pm9p-9926-w68m |
7.5 (3.1)
|
Denial of Service in ecstatic | 2017-12-28T22:52:47Z | 2021-09-16T18:15:09Z |
| ghsa-8jjf-w7j6-323c |
7.5 (3.1)
|
Samlify vulnerable to Authentication Bypass by allowing tokens to be reused with different usernames | 2018-01-04T21:03:33Z | 2023-08-18T21:00:53Z |
| ghsa-crmx-v835-hcp4 |
|
Moderate severity vulnerability that affects marked | 2018-01-04T21:04:09Z | 2021-12-02T22:47:59Z |
| ghsa-7px7-7xjx-hxm8 |
6.1 (3.1)
|
Marked vulnerable to XSS from data URIs | 2018-01-04T21:04:19Z | 2023-09-07T22:53:21Z |
| ghsa-m7p8-9w66-9frm |
5.9 (3.1)
|
net-ldap Improper Certificate Validation vulnerability | 2018-01-06T01:11:34Z | 2023-01-23T21:24:13Z |
| ghsa-mvw8-v767-qhjm |
5.4 (3.1)
|
Radiant CMS vulnerable to Cross-site Scripting | 2018-01-06T01:11:52Z | 2023-01-26T21:19:48Z |
| ghsa-5jcf-c5rg-rmm8 |
9.8 (3.1)
|
paperclip Server-Side Request Forgery vulnerability | 2018-01-22T13:31:34Z | 2023-01-26T20:24:38Z |
| ghsa-rmxg-73gg-4p98 |
6.1 (3.1)
|
Cross-Site Scripting (XSS) in jquery | 2018-01-22T13:32:06Z | 2021-09-17T18:58:18Z |
| ghsa-mhpp-875w-9cpv |
7.5 (3.1)
|
Denial of Service in jquery | 2018-01-22T13:32:42Z | 2025-09-02T22:35:01Z |
| ghsa-6x45-86q6-rcmr |
5.5 (3.1)
|
Gyazo allows local users to write arbitrary files | 2018-01-22T23:17:39Z | 2023-07-31T20:50:46Z |
| ghsa-rhgq-vv9x-j4p5 |
7.8 (3.1)
|
lawn-login exposes database password to unauthorized users | 2018-01-22T23:45:33Z | 2023-07-31T20:48:53Z |
| ghsa-w222-53c6-c86p |
8.8 (3.1)
|
Remote Code Execution in electron | 2018-01-23T03:57:44Z | 2021-06-10T19:55:43Z |
| ghsa-94cq-7ccq-cmcm |
7.8 (3.1)
|
lynx doesn't properly sanitize user input and exposes database password to unauthorized users | 2018-01-24T17:10:45Z | 2023-01-23T20:52:59Z |
| ghsa-m34x-wgrh-g897 |
7.5 (3.1)
|
Directory traversal vulnerability in Next.js | 2018-01-24T19:38:52Z | 2022-04-28T20:13:30Z |
| ghsa-9pr6-grf4-x2fr |
7.5 (3.1)
|
Omniauth allows POST parameters to be stored in session | 2018-01-29T15:45:28Z | 2022-04-25T22:27:19Z |
| ghsa-832h-xg76-4gv6 |
7.5 (3.1)
|
ReDoS in brace-expansion | 2018-01-29T15:50:46Z | 2021-09-03T22:10:24Z |
| ghsa-h29f-7f56-j8wh |
5.3 (3.1)
|
Sinatra Path Traversal vulnerability | 2018-02-20T19:23:20Z | 2023-01-23T21:16:39Z |
| ghsa-wfwm-chj7-w59r |
5.5 (3.1)
|
Ox gem stack overflow in sax_parse | 2018-03-05T18:29:32Z | 2023-08-29T14:59:54Z |
| ghsa-446m-mv8f-q348 |
7.5 (3.1)
|
Regular Expression Denial of Service in moment | 2018-03-05T18:35:09Z | 2021-08-31T21:44:15Z |
| ghsa-6x77-rpqf-j6mw |
7.5 (3.1)
|
ejs vulnerable to DoS due to weak input validation | 2018-03-05T18:54:33Z | 2023-09-08T21:00:26Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2014-84 |
|
The Execute class in shellutils in logilab-commons before 0.61.0 uses tempfile.mktemp, wh… | logilab-common | 2014-03-11T19:37:00Z | 2021-08-27T03:22:06.108554Z |
| pysec-2014-113 |
|
The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly p… | nova | 2014-03-25T16:55:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-105 |
|
The memcache token backend in OpenStack Identity (Keystone) 2013.1 through 2.013.1.4, 201… | keystone | 2014-04-01T06:35:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-96 |
|
Cross-site scripting (XSS) vulnerability in Roundup before 1.4.20 allows remote attackers… | roundup | 2014-04-10T20:29:00Z | 2021-08-27T03:22:19.707650Z |
| pysec-2014-15 |
|
Cross-site scripting (XSS) vulnerability in the history display in Roundup before 1.4.20 … | roundup | 2014-04-11T15:55:00Z | 2021-07-05T00:01:25.790750Z |
| pysec-2014-16 |
|
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.20 allows… | roundup | 2014-04-11T15:55:00Z | 2021-07-05T00:01:25.823373Z |
| pysec-2014-106 |
|
The V3 API in OpenStack Identity (Keystone) 2013.1 before 2013.2.4 and icehouse before ic… | keystone | 2014-04-15T14:55:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-70 |
|
The auth_token middleware in the OpenStack Python client library for Keystone (aka python… | python-keystoneclient | 2014-04-15T14:55:00Z | 2021-07-25T23:34:52.050807Z |
| pysec-2014-22 |
|
The (1) load_djpeg function in JpegImagePlugin.py, (2) Ghostscript function in EpsImagePl… | pillow | 2014-04-17T14:55:00Z | 2021-07-15T02:22:16.928376Z |
| pysec-2014-23 |
|
The (1) JpegImagePlugin.py and (2) EpsImagePlugin.py scripts in Python Image Library (PIL… | pillow | 2014-04-17T14:55:00Z | 2021-07-15T02:22:17.008543Z |
| pysec-2014-1 |
|
The django.core.urlresolvers.reverse function in Django before 1.4.11, 1.5.x before 1.5.6… | django | 2014-04-23T15:55:00Z | 2021-07-05T00:01:18.476528Z |
| pysec-2014-2 |
|
The caching framework in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, an… | django | 2014-04-23T15:55:00Z | 2021-07-05T00:01:18.594368Z |
| pysec-2014-3 |
|
The (1) FilePathField, (2) GenericIPAddressField, and (3) IPAddressField model field clas… | django | 2014-04-23T15:55:00Z | 2021-07-05T00:01:18.748183Z |
| pysec-2014-87 |
|
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers … | pillow | 2014-04-27T20:55:00Z | 2021-08-27T03:22:10.225452Z |
| pysec-2014-98 |
|
Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Euge… | ajenti | 2014-04-30T23:58:00Z | 2021-12-13T06:35:03.047936Z |
| pysec-2014-72 |
|
Transifex command-line client before 0.10 does not validate X.509 certificates for data t… | transifex-client | 2014-05-02T01:59:00Z | 2021-07-25T23:34:56.578427Z |
| pysec-2014-65 |
|
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to ob… | plone | 2014-05-02T14:55:00Z | 2021-07-25T23:34:47.572941Z |
| pysec-2014-66 |
|
Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators … | plone | 2014-05-02T14:55:00Z | 2021-07-25T23:34:47.632910Z |
| pysec-2014-67 |
|
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to ob… | products-cmfplone | 2014-05-02T14:55:00Z | 2021-07-25T23:34:50.035277Z |
| pysec-2014-68 |
|
Products/CMFPlone/CatalogTool.py in Plone 3.3 through 4.3.2 allows remote administrators … | products-cmfplone | 2014-05-02T14:55:00Z | 2021-07-25T23:34:50.085881Z |
| pysec-2014-93 |
|
PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which a… | pywbem | 2014-05-05T17:06:00Z | 2021-08-27T03:22:18.674694Z |
| pysec-2014-94 |
|
PyWBEM 0.7 and earlier does not verify that the server hostname matches a domain name in … | pywbem | 2014-05-05T17:06:00Z | 2021-08-27T03:22:18.708966Z |
| pysec-2014-112 |
|
The instance rescue mode in OpenStack Compute (Nova) 2013.2 before 2013.2.3 and Icehouse … | nova | 2014-05-08T14:29:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-9 |
|
Incomplete blacklist vulnerability in the lxml.html.clean module in lxml before 3.3.5 all… | lxml | 2014-05-14T19:55:00Z | 2021-07-05T00:01:22.415943Z |
| pysec-2014-19 |
|
Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does n… | django | 2014-05-16T15:55:00Z | 2021-09-01T08:18:55.376993Z |
| pysec-2014-20 |
|
The django.util.http.is_safe_url function in Django 1.4 before 1.4.13, 1.5 before 1.5.8, … | django | 2014-05-16T15:55:00Z | 2021-09-01T08:18:55.675902Z |
| pysec-2014-8 |
|
The default configuration for bccache.FileSystemBytecodeCache in Jinja2 before 2.7.2 does… | jinja2 | 2014-05-19T14:55:00Z | 2021-07-05T00:01:22.043149Z |
| pysec-2014-82 |
|
FileSystemBytecodeCache in Jinja2 2.7.2 does not properly create temporary directories, w… | jinja2 | 2014-05-19T14:55:00Z | 2021-08-27T03:22:05.027573Z |
| pysec-2014-85 |
|
The Server.verify_request function in SimpleGeo python-oauth2 does not check the nonce, w… | oauth2 | 2014-05-20T14:55:00Z | 2021-08-27T03:22:09.637359Z |
| pysec-2014-86 |
|
The (1) make_nonce, (2) generate_nonce, and (3) generate_verifier functions in SimpleGeo … | oauth2 | 2014-05-20T14:55:00Z | 2021-08-27T03:22:09.666793Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-367 | Malicious code in @iwcp/nebula-ui (npm) | 2022-05-31T13:38:50Z | 2022-05-31T13:38:51Z |
| mal-2022-3280 | Malicious code in gatsby-plugin-conecad (npm) | 2022-05-31T13:41:09Z | 2022-05-31T13:41:09Z |
| mal-2022-6360 | Malicious code in support-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| mal-2022-6388 | Malicious code in sync-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:24Z |
| mal-2022-6587 | Malicious code in titles (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| mal-2022-2018 | Malicious code in colors-support (npm) | 2022-06-01T09:02:24Z | 2022-06-01T09:02:25Z |
| mal-2022-3549 | Malicious code in hach-package-manager-bounty-hunter (npm) | 2022-06-01T09:02:55Z | 2022-06-01T09:02:56Z |
| mal-2022-5389 | Malicious code in pocjenkircetest (npm) | 2022-06-01T09:07:44Z | 2022-06-01T09:07:45Z |
| mal-2022-94 | Malicious code in @azure-test2/test2 (npm) | 2022-06-01T09:08:19Z | 2022-06-01T09:08:20Z |
| mal-2022-2429 | Malicious code in depedence-confusion (npm) | 2022-06-01T09:10:16Z | 2022-06-01T09:10:16Z |
| mal-2022-4205 | Malicious code in kntl-digital3 (npm) | 2022-06-01T09:11:57Z | 2022-06-01T09:11:57Z |
| mal-2022-72 | Malicious code in @amcdc/backend-api-swagger (npm) | 2022-06-01T09:12:30Z | 2022-06-01T09:12:38Z |
| mal-2022-569 | Malicious code in @s3p-js-deep-purple/utils (npm) | 2022-06-01T09:14:30Z | 2022-06-01T09:14:30Z |
| mal-2022-5678 | Malicious code in react-transition-group-community-version (npm) | 2022-06-01T09:15:36Z | 2022-06-01T09:15:37Z |
| mal-2022-705 | Malicious code in @visiology-public-utilities/language-utils (npm) | 2022-06-01T09:16:27Z | 2022-06-01T09:16:27Z |
| mal-2022-644 | Malicious code in @tilliwilli/npm-lifecycles (npm) | 2022-06-01T09:17:16Z | 2022-06-01T09:17:17Z |
| mal-2022-352 | Malicious code in @image-process-library/blob-to-base64 (npm) | 2022-06-01T09:19:16Z | 2022-06-01T09:19:16Z |
| mal-2022-2441 | Malicious code in dependencyconfusioncve (npm) | 2022-06-01T09:21:16Z | 2022-06-01T09:21:17Z |
| mal-2022-2442 | Malicious code in dependencyconfusioncve2 (npm) | 2022-06-01T09:21:16Z | 2022-06-01T09:21:16Z |
| mal-2022-59 | Malicious code in @adam_baldwin/sample_4 (npm) | 2022-06-01T09:24:03Z | 2022-06-01T09:24:03Z |
| mal-2022-3917 | Malicious code in inv-cyber (npm) | 2022-06-01T09:25:12Z | 2022-06-01T09:25:12Z |
| mal-2022-3918 | Malicious code in inv-cyber-core (npm) | 2022-06-01T09:25:12Z | 2022-06-01T09:25:12Z |
| mal-2022-60 | Malicious code in @adam_baldwin/tag-tmp (npm) | 2022-06-01T09:25:44Z | 2022-06-01T09:25:45Z |
| mal-2022-1660 | Malicious code in bounty-plz (npm) | 2022-06-01T09:26:02Z | 2022-06-01T09:26:03Z |
| mal-2022-3297 | Malicious code in gc-gsl-editor (npm) | 2022-06-01T09:26:52Z | 2022-06-01T09:26:53Z |
| mal-2022-3300 | Malicious code in gctor-storage (npm) | 2022-06-01T09:26:52Z | 2022-06-01T09:26:58Z |
| mal-2022-5068 | Malicious code in omniprotocol (npm) | 2022-06-01T09:26:52Z | 2022-06-01T09:26:52Z |
| mal-2022-58 | Malicious code in @adam_baldwin/pingback (npm) | 2022-06-01T09:27:08Z | 2022-06-01T09:27:08Z |
| mal-2022-1362 | Malicious code in azure-pipelines-dependency-track (npm) | 2022-06-01T09:27:58Z | 2022-06-01T09:27:58Z |
| mal-2022-3476 | Malicious code in grunt-import-html (npm) | 2022-06-01T09:27:58Z | 2022-06-01T09:28:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2024-0456 | Direct Request ('Forced Browsing') in GitLab | 2024-03-06T10:53:14.072Z | 2025-05-20T10:02:07.006Z |
| bit-gradle-2023-26053 | Gradle usage of long IDs for PGP keys opens potential for collision attacks | 2024-03-06T10:53:14.075Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-44487 | 2024-03-06T10:53:14.274Z | 2026-02-11T09:09:18.507Z | |
| bit-grafana-2023-2801 | 2024-03-06T10:53:15.069Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2022-26377 | mod_proxy_ajp: Possible request smuggling | 2024-03-06T10:53:16.477Z | 2025-05-20T10:02:07.006Z |
| bit-influxdb-2022-36640 | 2024-03-06T10:53:17.690Z | 2025-04-03T14:40:37.652Z | |
| bit-dotnet-2023-36794 | Visual Studio Remote Code Execution Vulnerability | 2024-03-06T10:53:17.695Z | 2025-05-20T10:02:07.006Z |
| bit-django-2022-23833 | 2024-03-06T10:53:17.707Z | 2025-04-03T14:40:37.652Z | |
| bit-drupal-2022-25274 | 2024-03-06T10:53:18.690Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2023-40712 | Apache Airflow: Secrets can be unmasked in the "Rendered Template" | 2024-03-06T10:53:19.281Z | 2025-05-20T10:02:07.006Z |
| bit-discourse-2023-45131 | Unauthenticated access to new private chat messages in Discourse | 2024-03-06T10:53:19.376Z | 2025-11-06T13:25:46.476Z |
| bit-envoy-2023-35941 | Envoy vulnerable to OAuth2 credentials exploit with permanent validity | 2024-03-06T10:53:21.084Z | 2025-05-20T10:02:07.006Z |
| bit-jaeger-2020-10750 | 2024-03-06T10:53:21.198Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-32574 | 2024-03-06T10:53:21.700Z | 2025-04-03T14:40:37.652Z | |
| bit-helm-2022-36055 | Denial of service in Helm | 2024-03-06T10:53:21.994Z | 2025-05-20T10:02:07.006Z |
| bit-gitea-2022-1928 | Cross-site Scripting (XSS) - Stored in go-gitea/gitea | 2024-03-06T10:53:22.292Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2021-22144 | 2024-03-06T10:53:22.503Z | 2025-04-03T14:40:37.652Z | |
| bit-ghost-2022-47194 | 2024-03-06T10:53:22.782Z | 2025-11-06T13:25:46.476Z | |
| bit-golang-2023-39326 | Denial of service via chunk extensions in net/http | 2024-03-06T10:53:23.071Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-0410 | Improper Enforcement of Behavioral Workflow in GitLab | 2024-03-06T10:53:23.990Z | 2025-05-20T10:02:07.006Z |
| bit-gradle-2022-31156 | Gradle's dependency verification can ignore checksum verification when signature verification cannot be performed | 2024-03-06T10:53:24.270Z | 2025-05-20T10:02:07.006Z |
| bit-grafana-2023-22462 | Stored XSS in Grafana Text plugin | 2024-03-06T10:53:25.170Z | 2025-05-20T10:02:07.006Z |
| bit-harbor-2022-46463 | 2024-03-06T10:53:25.383Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2022-23943 | mod_sed: Read/write beyond bounds | 2024-03-06T10:53:25.496Z | 2025-05-20T10:02:07.006Z |
| bit-haproxy-2023-25950 | 2024-03-06T10:53:25.686Z | 2025-04-03T14:40:37.652Z | |
| bit-dotnet-2023-36793 | Visual Studio Remote Code Execution Vulnerability | 2024-03-06T10:53:27.694Z | 2025-05-20T10:02:07.006Z |
| bit-drupal-2022-25273 | 2024-03-06T10:53:28.666Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2022-22818 | 2024-03-06T10:53:28.699Z | 2025-04-03T14:40:37.652Z | |
| bit-airflow-2023-40611 | Apache Airflow Dag Runs Broken Access Control Vulnerability | 2024-03-06T10:53:28.968Z | 2025-05-20T10:02:07.006Z |
| bit-discourse-2023-44391 | Prevent unauthorized access to summary details in Discourse | 2024-03-06T10:53:30.809Z | 2025-11-06T13:25:46.476Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2023-028 | 2023-06-28T17:21:37.000Z | 2023-07-31T21:17:11.000Z | |
| drupal-contrib-2023-029 | 2023-06-28T17:34:47.000Z | 2023-07-31T21:18:37.000Z | |
| drupal-contrib-2023-030 | 2023-07-12T18:19:42.000Z | 2023-07-12T18:39:39.000Z | |
| drupal-contrib-2023-031 | 2023-07-26T19:15:46.000Z | 2023-07-27T16:05:03.000Z | |
| drupal-contrib-2023-032 | 2023-07-26T19:19:38.000Z | 2023-07-26T20:00:09.000Z | |
| drupal-contrib-2023-033 | 2023-08-02T18:59:27.000Z | 2023-08-02T19:52:35.000Z | |
| drupal-contrib-2023-034 | 2023-08-23T14:51:16.000Z | 2023-08-23T18:45:47.000Z | |
| drupal-contrib-2023-035 | 2023-08-23T14:54:52.000Z | 2023-08-23T18:45:59.000Z | |
| drupal-contrib-2023-037 | 2023-08-23T16:54:32.000Z | 2023-08-23T18:29:48.000Z | |
| drupal-contrib-2023-038 | 2023-08-23T17:00:14.000Z | 2023-08-23T18:47:17.000Z | |
| drupal-contrib-2023-039 | 2023-08-23T17:06:18.000Z | 2023-08-23T18:28:35.000Z | |
| drupal-contrib-2023-040 | 2023-08-23T17:24:02.000Z | 2023-08-23T18:28:12.000Z | |
| drupal-contrib-2023-041 | 2023-08-30T16:22:06.000Z | 2023-08-30T18:51:23.000Z | |
| drupal-contrib-2023-042 | 2023-08-30T16:23:18.000Z | 2023-08-30T18:51:57.000Z | |
| drupal-contrib-2023-043 | 2023-09-06T15:23:32.000Z | 2023-09-06T16:48:26.000Z | |
| drupal-contrib-2023-044 | 2023-09-06T16:33:36.000Z | 2023-09-18T14:27:44.000Z | |
| drupal-contrib-2023-045 | 2023-09-13T15:47:17.000Z | 2023-09-13T17:42:33.000Z | |
| drupal-contrib-2023-047 | 2023-09-27T16:33:34.000Z | 2023-09-28T21:17:46.000Z | |
| drupal-contrib-2023-048 | 2023-10-04T15:41:34.000Z | 2023-10-04T16:35:18.000Z | |
| drupal-contrib-2023-049 | 2023-11-01T16:56:37.000Z | 2023-11-06T14:25:23.000Z | |
| drupal-contrib-2023-050 | 2023-11-08T15:30:45.000Z | 2023-11-08T17:10:18.000Z | |
| drupal-contrib-2023-051 | 2023-11-08T15:33:12.000Z | 2023-11-08T17:10:24.000Z | |
| drupal-contrib-2023-052 | 2023-11-15T14:24:12.000Z | 2023-11-15T17:19:15.000Z | |
| drupal-contrib-2023-053 | 2023-11-29T15:27:05.000Z | 2023-11-29T18:08:04.000Z | |
| drupal-contrib-2023-054 | 2023-12-06T16:16:28.000Z | 2023-12-07T02:47:34.000Z | |
| drupal-contrib-2023-055 | 2023-12-20T17:02:51.000Z | 2023-12-20T17:53:15.000Z | |
| drupal-contrib-2024-002 | 2024-01-10T18:00:05.000Z | 2025-02-20T18:40:20.000Z | |
| drupal-contrib-2024-003 | 2024-01-24T15:42:46.000Z | 2025-02-20T18:39:54.000Z | |
| drupal-contrib-2024-004 | 2024-01-24T15:45:49.000Z | 2025-02-20T18:39:20.000Z | |
| drupal-contrib-2024-005 | 2024-01-24T15:47:36.000Z | 2025-02-20T18:38:57.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2007-000260 | Shihonkanri Plus Ver2 GOOUT directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000290 | InfoBarrier4 self-decrypted file vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000295 | APOP password recovery vulnerability | 2008-05-21T00:00+09:00 | 2009-08-06T11:39+09:00 |
| jvndb-2007-000297 | Apache Tomcat Accept-Language Header Cross-Site Scripting Vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:47+09:00 |
| jvndb-2007-000301 | Canon Network Camera Server VB100 Series vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000322 | Lunascape RSS reader arbitrary script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000329 | Java Web Start vulnerable to execution of unauthorized system classes | 2008-05-21T00:00+09:00 | 2008-06-06T16:22+09:00 |
| jvndb-2007-000395 | Homepage Builder sample CGI programs vulnerable to OS command injection | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000400 | Advance-Flow cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000420 | HP System Management Homepage cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000429 | Meneame cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000434 | ADPLAN cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000446 | Internet Explorer vulnerable in MHTML handling | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000447 | Internet Explorer vulnerable in handling MHTML protocol | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000454 | dotProject cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000456 | Apache Tomcat sample web application cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:48+09:00 |
| jvndb-2007-000457 | Apache Tomcat cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-07-11T13:48+09:00 |
| jvndb-2007-000471 | RaidenHTTPD cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000476 | Hiki arbitrary file deletion vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000486 | rktSNS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000487 | sHTTPd cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000491 | Lhaca LHZ Archive Extended Header Size Processing Buffer Overflow Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000494 | KDDI sample CGI download program directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000507 | Flash Player allows to send arbitrary Referer headers | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000548 | Nessus report function vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000551 | Aruba Mobility Controller Series cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000559 | Yayoi Kaikei improper handling of credential information | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000560 | Safari URL spoofing vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000572 | WebCart cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000598 | Apache Tomcat Host Manager cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00098 | HumHub SQL注入漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00099 | Apache POI拒绝服务漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00100 | Apache Solr跨站脚本漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00101 | McAfee ePolicy Orchestrator 'conditionXML'参数XML外部实体注入漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00102 | Xen拒绝服务漏洞(CNVD-2015-00102) | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00103 | FlexPaper 'FlexPaperViewer.swf'跨站脚本漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00104 | FlexPaper ‘FlexPaperViewer.swf'’内容欺骗漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00105 | Sefrengo CMS 'main.php'存在多个SQL注入漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00106 | Sefrengo CMS 'main.php'跨站脚本漏洞 | 2015-01-07 | 2015-01-08 |
| cnvd-2015-00148 | Microsoft Dynamics CRM跨站脚本漏洞 | 2015-01-07 | 2015-01-09 |
| cnvd-2015-00144 | e107 ' e107_admin/users.php'跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00145 | Hex-Rays IDA Pro缓冲区溢出漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00146 | Ruby RedCloth library跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00147 | Easy File Sharing Web Server跨站脚本漏洞(CNVD-2015-00147) | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00151 | SAP NetWeaver Business Client存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00152 | ZOHO ManageEngine ADSelfService Plus跨站脚本漏洞(CNVD-2015-00152) | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00153 | CGManager本地信息泄露漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00154 | Strongswan IKEv2 Payloads远程拒绝服务漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00155 | D-Bus本地权限提升漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00156 | Asuswrt 'infosvr'远程命令执行漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00157 | Open-Xchange Server/OX App Suite存在未明HTML注入漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00158 | WordPress插件Banner Effect Header 'options-general.php'跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00159 | Kajona 'admin.php'跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00160 | TYPO3存在未明漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00161 | TYPO3 Url任意域修改漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00162 | Smoothwall Express存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00163 | Smoothwall Express跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00164 | Smoothwall Express存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00165 | WordPress插件Simplelife存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00166 | WordPress插件SimpleFlickr存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2015-02601 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02602 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02603 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02604 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02605 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02606 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02607 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02608 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02609 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02610 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02611 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02612 | Уязвимость программной библиотеки для анализа XML-документов Libxml2, связанная с выходом… | 28.04.2015 | 29.03.2021 |
| bdu:2015-02613 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02614 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02615 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02616 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02617 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02618 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02619 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02620 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02621 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02622 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02623 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02624 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02625 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02626 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02627 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02628 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02629 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02630 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2001-avi-118 | Vulnérabilité dans login sous Linux | 2001-10-19T00:00:00.000000 | 2001-11-02T00:00:00.000000 |
| certa-2001-avi-119 | Vulnérabilité de l'interface Web du serveur Novell GroupWise | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-120 | Vulnérabilité dans Xlock sous Solaris | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-121 | Vulnérabilité des Cisco IOS et CatOS sous le protocole CDP | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-122 | Déni de service sur Citrix MetaFrame | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-123 | Vulnérabilités dans procmail | 2001-10-22T00:00:00.000000 | 2001-10-22T00:00:00.000000 |
| certa-2001-avi-124 | Vulnérabilités dans le noyau linux (2.2.x et 2.4.x) | 2001-10-23T00:00:00.000000 | 2001-11-22T00:00:00.000000 |
| certa-2001-avi-125 | Débordement de mémoire de Oracle 9iAS Web Cache | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-126 | Vulnérabilité dans le protocole RDP sous Windows 2000 et NT Server | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-127 | Vulnérabilité sous Mac OS X | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-128 | Vulnérabilité d'Internet Explorer 5.1 sous Mac OS X | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-129 | Vulnérabilité dans la machine virtuelle java (JRE) de SUN. | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-130 | Vulnérabilité d'IGMP sous SGI Irix | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-131 | Vulnérabilités du serveur Apache | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-132 | Vulnérabilités de webalizer | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-133 | Vulnérabilité de ufsrestore sous Solaris. | 2001-10-29T00:00:00.000000 | 2001-10-29T00:00:00.000000 |
| certa-2001-avi-134 | Multiples vulnérabilités dans le SGBD Oracle | 2001-10-31T00:00:00.000000 | 2001-10-31T00:00:00.000000 |
| certa-2001-avi-135 | Vulnérabilité dans sdiff | 2001-10-31T00:00:00.000000 | 2001-10-31T00:00:00.000000 |
| certa-2001-avi-136 | Vulnérabilités dans Oracle Label Security | 2001-10-31T00:00:00.000000 | 2001-10-31T00:00:00.000000 |
| certa-2001-avi-137 | Vulnérabilité de UPnP sous Windows | 2001-11-06T00:00:00.000000 | 2001-11-06T00:00:00.000000 |
| certa-2001-avi-138 | Vulnérabilité des SYNCOOKIES dans le noyau Linux | 2001-11-07T00:00:00.000000 | 2001-11-07T00:00:00.000000 |
| certa-2001-avi-139 | Vulnérabilité de CDE | 2001-11-13T00:00:00.000000 | 2002-03-27T00:00:00.000000 |
| certa-2001-avi-140 | Vulnérabilités dans Internet Explorer | 2001-11-15T00:00:00.000000 | 2001-11-15T00:00:00.000000 |
| certa-2001-avi-141 | Vulnérabilités de Lotus domino Server 5.x | 2001-11-15T00:00:00.000000 | 2001-11-15T00:00:00.000000 |
| certa-2001-avi-142 | Vulnérabilité des utilitaires 'ppp' | 2001-11-16T00:00:00.000000 | 2001-11-16T00:00:00.000000 |
| certa-2001-avi-143 | Vulnérabilité dans les routeurs Cisco | 2001-11-16T00:00:00.000000 | 2001-11-16T00:00:00.000000 |
| certa-2001-avi-144 | Vulnérabilités liées aux ACL dans les routeurs CISCO 12000 | 2001-11-20T00:00:00.000000 | 2001-11-20T00:00:00.000000 |
| certa-2001-avi-145 | Vulnérabilités dans le service d'impression lpsched sous IRIX | 2001-11-20T00:00:00.000000 | 2001-11-20T00:00:00.000000 |
| certa-2001-avi-146 | Vulnérabilité dans Windows Media Player | 2001-11-20T00:00:00.000000 | 2001-11-20T00:00:00.000000 |
| certa-2001-avi-147 | Corruption de cache ARP des équipements CISCO | 2001-11-22T00:00:00.000000 | 2001-11-22T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2015-ale-005 | Vulnérabilité dans Adobe Flash Player | 2015-07-08T00:00:00.000000 | 2015-07-10T00:00:00.000000 |
| certfr-2015-ale-006 | Vulnérabilité dans Adobe Flash Player | 2015-07-11T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| certfr-2015-ale-007 | Vulnérabilité dans Oracle Java SE | 2015-07-13T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| certfr-2015-ale-008 | Vulnérabilité dans le pilote de gestion des polices de caractères de Microsoft Windows | 2015-07-20T00:00:00.000000 | 2015-07-30T00:00:00.000000 |
| certfr-2015-ale-009 | Vulnérabilité dans Apple Mac OS X | 2015-07-24T00:00:00.000000 | 2015-12-22T00:00:00.000000 |
| certfr-2015-ale-010 | Multiples vulnérabilités dans Google Android | 2015-07-28T00:00:00.000000 | 2015-10-06T00:00:00.000000 |
| certfr-2015-ale-011 | Vulnérabilité dans Adobe Flash Player | 2015-10-14T00:00:00.000000 | 2015-10-19T00:00:00.000000 |
| certfr-2015-ale-012 | Campagne de messages électroniques non sollicités de type Dridex | 2015-10-23T00:00:00.000000 | 2015-11-26T00:00:00.000000 |
| certfr-2015-ale-013 | Vulnérabilité dans Joomla! | 2015-12-14T00:00:00.000000 | 2016-08-01T00:00:00.000000 |
| certfr-2015-ale-014 | Vulnérabilité dans Juniper ScreenOS | 2015-12-18T00:00:00.000000 | 2016-04-11T00:00:00.000000 |
| certfr-2015-ale-015 | Campagne de messages électroniques non sollicités de type TeslaCrypt | 2015-12-21T00:00:00.000000 | 2016-03-10T00:00:00.000000 |
| certfr-2016-ale-001 | Campagne de messages électroniques non sollicités de type Locky | 2016-02-19T00:00:00.000000 | 2016-04-07T00:00:00.000000 |
| certfr-2016-ale-002 | Vulnérabilité dans Adobe Flash Player | 2016-04-06T00:00:00.000000 | 2016-04-08T00:00:00.000000 |
| certfr-2016-ale-003 | Vulnérabilité dans Adobe Flash Player | 2016-05-11T00:00:00.000000 | 2016-05-12T00:00:00.000000 |
| certfr-2016-ale-004 | Vulnérabilité dans Adobe Flash Player | 2016-06-15T00:00:00.000000 | 2016-06-16T00:00:00.000000 |
| certfr-2016-ale-005 | Multiples vulnérabilités dans les pare-feux Cisco | 2016-08-18T00:00:00.000000 | 2016-09-05T00:00:00.000000 |
| certfr-2016-ale-006 | Campagne de messages électroniques non sollicités de type Zepto/Odin | 2016-09-05T00:00:00.000000 | 2016-11-17T00:00:00.000000 |
| certfr-2016-ale-007 | Vulnérabilité dans Cisco IOS, IOS XE et IOS XR | 2016-09-19T00:00:00.000000 | 2016-09-19T00:00:00.000000 |
| certfr-2016-ale-008 | Vulnérabilité dans Microsoft Windows | 2016-11-02T00:00:00.000000 | 2016-11-09T00:00:00.000000 |
| certfr-2016-ale-009 | Campagne d'attaque contre des routeurs DSL | 2016-12-01T00:00:00.000000 | 2017-01-26T00:00:00.000000 |
| certfr-2016-ale-010 | Vulnérabilité dans les routeurs Netgear | 2016-12-13T00:00:00.000000 | 2016-12-26T00:00:00.000000 |
| certfr-2017-ale-001 | Vulnérabilité dans Cisco WebEx | 2017-01-25T00:00:00.000000 | 2017-01-31T00:00:00.000000 |
| certfr-2017-ale-002 | Vulnérabilité dans Microsoft Windows | 2017-02-20T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| certfr-2017-ale-003 | Vulnérabilité dans les navigateurs Microsoft | 2017-02-27T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| certfr-2017-ale-004 | Vulnérabilité dans Apache Struts | 2017-03-10T00:00:00.000000 | 2017-05-10T00:00:00.000000 |
| certfr-2017-ale-005 | Vulnérabilité dans les commutateurs Cisco | 2017-03-20T00:00:00.000000 | 2017-05-10T00:00:00.000000 |
| certfr-2017-ale-006 | Multiples vulnérabilités dans SCADA Siemens RUGGEDCOM ROX I | 2017-03-29T00:00:00.000000 | 2017-03-29T00:00:00.000000 |
| certfr-2017-ale-007 | Vulnérabilité dans Microsoft Office | 2017-04-10T00:00:00.000000 | 2017-04-12T00:00:00.000000 |
| certfr-2017-ale-008 | Multiples vulnérabilités dans Microsoft Windows XP et Windows Server 2003 | 2017-04-14T00:00:00.000000 | 2017-09-06T00:00:00.000000 |
| certfr-2017-ale-009 | Vulnérabilité dans Microsoft Malware Protection Engine | 2017-05-09T00:00:00.000000 | 2017-05-15T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2020-357 | Heap-buffer-overflow in r_read_le32 | 2020-07-01T00:00:04.961488Z | 2022-04-13T03:04:36.567512Z |
| osv-2020-360 | Heap-use-after-free in read_chunks_after_idat | 2020-07-01T00:00:05.129333Z | 2022-04-13T03:04:33.682982Z |
| osv-2020-364 | Stack-use-after-return in ihevcd_process_thread | 2020-07-01T00:00:05.352256Z | 2023-04-20T22:35:28.979054Z |
| osv-2020-365 | UNKNOWN READ in fuzzshark_ip_proto-udp | 2020-07-01T00:00:05.383535Z | 2022-04-13T03:04:37.870514Z |
| osv-2020-366 | UNKNOWN READ in bebytes2ushort | 2020-07-01T00:00:05.421205Z | 2022-04-13T03:04:41.559197Z |
| osv-2020-369 | UNKNOWN READ in ot::TimerScheduler::Remove | 2020-07-01T00:00:05.571696Z | 2022-04-13T03:04:38.951596Z |
| osv-2020-370 | Heap-use-after-free in ih264_inter_pred_luma_horz_hpel_vert_qpel_ssse3 | 2020-07-01T00:00:05.612589Z | 2022-04-13T03:36:38.304614Z |
| osv-2020-372 | Heap-buffer-overflow in circular_memcpy | 2020-07-01T00:00:05.776845Z | 2022-04-13T03:04:41.152670Z |
| osv-2020-373 | UNKNOWN READ in url_decode | 2020-07-01T00:00:05.814415Z | 2022-04-13T03:04:31.715630Z |
| osv-2020-374 | Heap-use-after-free in wmem_strbuf_get_str | 2020-07-01T00:00:05.857808Z | 2022-04-13T03:04:37.811763Z |
| osv-2020-376 | Heap-buffer-overflow in perfetto::trace_processor::fuchsia_trace_utils::ReadTimestamp | 2020-07-01T00:00:05.968178Z | 2023-02-24T01:37:02.630745Z |
| osv-2020-377 | Heap-buffer-overflow in symbols | 2020-07-01T00:00:06.002017Z | 2022-04-13T03:04:36.709304Z |
| osv-2020-379 | Heap-buffer-overflow in UA_unbase64 | 2020-07-01T00:00:06.148009Z | 2022-04-13T03:04:41.369625Z |
| osv-2020-380 | Stack-buffer-overflow in ot::MeshCoP::ChannelMaskEntry::GetMask | 2020-07-01T00:00:06.263172Z | 2022-04-13T03:04:39.008953Z |
| osv-2020-381 | Use-of-uninitialized-value in crc32 | 2020-07-01T00:00:06.294878Z | 2022-04-13T03:04:40.514300Z |
| osv-2020-383 | Stack-buffer-overflow in ot::NetworkData::Leader::IsStableUpdated | 2020-07-01T00:00:06.392501Z | 2022-04-13T03:04:39.050756Z |
| osv-2020-384 | Heap-buffer-overflow in agentx_parse_string | 2020-07-01T00:00:06.466746Z | 2022-04-13T03:04:35.805999Z |
| osv-2020-386 | Heap-buffer-overflow in OPENSSL_strlcpy | 2020-07-01T00:00:06.528477Z | 2022-04-13T03:04:38.742191Z |
| osv-2020-388 | Stack-use-after-return in bool OT::Coverage::serialize<hb_map_iter_t<hb_map_iter_t<hb_filter_iter_t<OT::Co | 2020-07-01T00:00:06.690091Z | 2022-04-13T03:04:33.050351Z |
| osv-2020-389 | Use-of-uninitialized-value in smtp_state_ehlo_resp | 2020-07-01T00:00:06.761801Z | 2022-04-13T03:04:42.827258Z |
| osv-2020-391 | Use-of-uninitialized-value in mprint | 2020-07-01T00:00:06.825617Z | 2022-04-13T03:04:30.780960Z |
| osv-2020-392 | Stack-buffer-overflow in nc4_get_att | 2020-07-01T00:00:06.889412Z | 2022-04-13T03:04:42.107611Z |
| osv-2020-393 | Heap-buffer-overflow in Elf32_r_bin_elf_compiler | 2020-07-01T00:00:06.928110Z | 2022-04-13T03:04:36.630830Z |
| osv-2020-394 | Global-buffer-overflow in parse_headers | 2020-07-01T00:00:06.992887Z | 2022-04-13T03:04:31.696233Z |
| osv-2020-396 | UNKNOWN READ in ot::TaskletScheduler::PopTasklet | 2020-07-01T00:00:07.092682Z | 2022-04-13T03:04:38.909313Z |
| osv-2020-398 | Stack-buffer-overflow in ihevcd_ref_list | 2020-07-01T00:00:07.241400Z | 2022-04-13T03:04:31.010237Z |
| osv-2020-399 | Heap-use-after-free in sdb_free | 2020-07-01T00:00:07.312045Z | 2022-04-13T03:04:36.584151Z |
| osv-2020-405 | Stack-buffer-overflow in ZSTD_decodeLiteralsBlock | 2020-07-01T00:00:07.677115Z | 2022-04-13T03:19:42.457329Z |
| osv-2020-406 | Global-buffer-overflow in lwan_strbuf_append_str | 2020-07-01T00:00:07.709109Z | 2022-04-13T03:04:31.720558Z |
| osv-2020-407 | Heap-double-free in opt_cleanup | 2020-07-01T00:00:07.757751Z | 2022-04-13T03:04:38.725198Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2020-0084 | crate has been superseded by `sn_client` | 2020-12-07T12:00:00Z | 2020-12-07T17:22:02Z |
| rustsec-2020-0085 | crate has been renamed to `sn_node` | 2020-12-07T12:00:00Z | 2020-12-07T17:22:02Z |
| rustsec-2020-0086 | crate has been renamed to `sn_client` | 2020-12-07T12:00:00Z | 2020-12-07T17:22:02Z |
| rustsec-2020-0090 | Thex<T> allows data races of non-Send types across threads | 2020-12-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0104 | ImageChunkMut needs bounds on its Send and Sync traits | 2020-12-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0118 | Future<T> lacks bounds on Send and Sync. | 2020-12-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0124 | ArcGuard's Send and Sync should have bounds on RC | 2020-12-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0089 | nanorand 0.5.0 - RNGs failed to generate properly for non-64-bit numbers | 2020-12-09T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0139 | dces' World type can cause data races | 2020-12-09T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0091 | Dangling reference in `access::Map` with Constant | 2020-12-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0097 | Soundness issue with base::Error | 2020-12-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0099 | Aovec<T> lacks bound on its Send and Sync traits allowing data races | 2020-12-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0141 | MvccRwLock allows data races & aliasing violations | 2020-12-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0148 | Multiple soundness issues in `Ptr` | 2020-12-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0093 | Async-h1 request smuggling possible with long unread bodies | 2020-12-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0150 | RingBuffer can create multiple mutable references and cause data races | 2020-12-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0098 | UsbContext trait did not require implementers to be Send and Sync. | 2020-12-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0112 | ButtplugFutureStateShared allows data race to (!Send|!Sync) objects | 2020-12-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0127 | SyncRef's clone() and debug() allow data races | 2020-12-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0129 | ShmWriter allows sending non-Send type across threads | 2020-12-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0152 | ImmediateIO and TransactionalIO can cause data races | 2020-12-18T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0106 | Queues allow non-Send types to be sent to other threads, allowing data races | 2020-12-19T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0095 | difference is unmaintained | 2020-12-20T12:00:00Z | 2025-08-30T06:09:56Z |
| rustsec-2020-0108 | Soundness issue: Input<R> can be misused to create data race to an object | 2020-12-20T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0105 | Update unsound DrainFilter and RString::retain | 2020-12-21T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0101 | conquer-once's OnceCell lacks Send bound for its Sync trait. | 2020-12-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0109 | stderr is unmaintained; use eprintln instead | 2020-12-22T12:00:00Z | 2021-01-20T19:29:04Z |
| rustsec-2020-0114 | `Demuxer` can carry non-Send types across thread boundaries | 2020-12-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0143 | Queues allow non-Send types to be sent to other threads, allowing data races | 2020-12-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0155 | `Read` on uninitialized buffer in `fill_buf()` and `read_up_to()` | 2020-12-27T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2021:4042 | Important: flatpak security update | 2021-11-01T13:11:58Z | 2021-11-12T10:20:56Z |
| alsa-2021:4056 | Important: kernel security, bug fix, and enhancement update | 2021-11-02T07:47:41Z | 2021-11-02T18:48:59Z |
| alsa-2021:4058 | Moderate: samba security update | 2021-11-02T07:48:59Z | 2021-11-03T08:35:17Z |
| alsa-2021:4060 | Moderate: libsolv security update | 2021-11-02T07:49:29Z | 2021-11-03T08:35:17Z |
| alsa-2021:4123 | Important: firefox security update | 2021-11-03T19:23:08Z | 2021-11-12T10:20:56Z |
| alsa-2021:4130 | Important: thunderbird security update | 2021-11-04T16:03:41Z | 2021-11-12T10:20:56Z |
| alsa-2021:4139 | Moderate: resource-agents security, bug fix, and enhancement update | 2021-11-09T08:20:04Z | 2021-11-12T10:21:02Z |
| alsa-2021:4142 | Low: pcs security, bug fix, and enhancement update | 2021-11-09T08:21:49Z | 2021-11-12T10:21:02Z |
| alsa-2021:4149 | Moderate: python-pillow security update | 2021-11-09T08:24:34Z | 2021-11-12T10:20:56Z |
| alsa-2021:4150 | Moderate: python36:3.6 security and bug fix update | 2021-11-09T08:24:37Z | 2021-11-09T12:44:54Z |
| alsa-2021:4151 | Moderate: python27:2.7 security update | 2021-11-09T08:24:39Z | 2021-11-09T12:45:07Z |
| alsa-2021:4153 | Moderate: dnsmasq security and bug fix update | 2021-11-09T08:24:48Z | 2021-11-12T10:20:56Z |
| alsa-2021:4154 | Moderate: container-tools:rhel8 security, bug fix, and enhancement update | 2021-11-09T08:24:51Z | 2022-02-02T17:58:49Z |
| alsa-2021:4156 | Moderate: go-toolset:rhel8 security, bug fix, and enhancement update | 2021-11-09T08:25:49Z | 2021-12-16T11:29:11Z |
| alsa-2021:4158 | Moderate: python-lxml security update | 2021-11-09T08:26:20Z | 2021-11-12T10:20:56Z |
| alsa-2021:4160 | Moderate: python39:3.9 and python39-devel:3.9 security update | 2021-11-09T08:26:25Z | 2021-11-09T12:46:25Z |
| alsa-2021:4161 | Moderate: python-jinja2 security update | 2021-11-09T08:26:43Z | 2021-11-12T10:20:56Z |
| alsa-2021:4172 | Moderate: qt5 security, bug fix, and enhancement update | 2021-11-09T08:31:20Z | 2021-11-12T10:21:01Z |
| alsa-2021:4173 | Moderate: exiv2 security, bug fix, and enhancement update | 2021-11-09T08:31:22Z | 2021-11-12T10:21:01Z |
| alsa-2021:4179 | Low: file-roller security update | 2021-11-09T08:32:50Z | 2021-11-12T10:20:56Z |
| alsa-2021:4181 | Moderate: mutt security, bug fix, and enhancement update | 2021-11-09T08:33:45Z | 2021-11-12T10:20:56Z |
| alsa-2021:4191 | Moderate: virt:rhel and virt-devel:rhel security, bug fix, and enhancement update | 2021-11-09T08:35:34Z | 2021-12-23T15:15:26Z |
| alsa-2021:4198 | Moderate: edk2 security, bug fix, and enhancement update | 2021-11-09T08:37:02Z | 2021-11-12T10:20:56Z |
| alsa-2021:4201 | Moderate: babel security and bug fix update | 2021-11-09T08:37:19Z | 2021-11-12T10:20:56Z |
| alsa-2021:4213 | Moderate: php:7.4 security, bug fix, and enhancement update | 2021-11-09T08:42:20Z | 2021-11-09T12:52:36Z |
| alsa-2021:4221 | Moderate: container-tools:2.0 security update | 2021-11-09T08:45:58Z | 2021-11-09T12:54:00Z |
| alsa-2021:4222 | Moderate: container-tools:3.0 security and bug fix update | 2021-11-09T08:46:34Z | 2022-02-02T18:04:53Z |
| alsa-2021:4226 | Moderate: grafana security, bug fix, and enhancement update | 2021-11-09T08:46:47Z | 2021-11-12T10:20:56Z |
| alsa-2021:4231 | Moderate: libwebp security update | 2021-11-09T08:47:24Z | 2021-11-12T10:20:56Z |
| alsa-2021:4235 | Moderate: jasper security update | 2021-11-09T08:48:32Z | 2021-11-12T10:21:01Z |