Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0351 |
N/A
|
FTP PASV "Pizza Thief" denial of service and unau… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.976Z |
| CVE-1999-0353 |
N/A
|
rpc.pcnfsd in HP gives remote root access by chan… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.019Z |
| CVE-1999-0355 |
N/A
|
Local or remote users can force ControlIT 4.5 to … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.893Z |
| CVE-1999-0357 |
N/A
|
Windows 98 and other operating systems allows rem… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.899Z |
| CVE-1999-0362 |
N/A
|
WS_FTP server remote denial of service through cw… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.069Z |
| CVE-1999-0363 |
N/A
|
SuSE 5.2 PLP lpc program has a buffer overflow th… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.119Z |
| CVE-1999-0365 |
N/A
|
The metamail package allows remote command execut… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.099Z |
| CVE-1999-0366 |
N/A
|
In some cases, Service Pack 4 for Windows NT 4.0 … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.127Z |
| CVE-1999-0367 |
N/A
|
NetBSD netstat command allows local users to acce… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.886Z |
| CVE-1999-0368 |
N/A
|
Buffer overflows in wuarchive ftpd (wu-ftpd) and … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.941Z |
| CVE-1999-0369 |
N/A
|
The Sun sdtcm_convert calendar utility for OpenWi… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.102Z |
| CVE-1999-0371 |
N/A
|
Lynx allows a local user to overwrite sensitive f… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.961Z |
| CVE-1999-0372 |
N/A
|
The installer for BackOffice Server includes acco… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.089Z |
| CVE-1999-0373 |
N/A
|
Buffer overflow in the "Super" utility in Debian … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.034Z |
| CVE-1999-0374 |
N/A
|
Debian GNU/Linux cfengine package is susceptible … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.020Z |
| CVE-1999-0375 |
N/A
|
Buffer overflow in webd in Network Flight Recorde… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.160Z |
| CVE-1999-0376 |
N/A
|
Local users in Windows NT can obtain administrato… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.169Z |
| CVE-1999-0377 |
N/A
|
Process table attack in Unix systems allows a rem… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.942Z |
| CVE-1999-0379 |
N/A
|
Microsoft Taskpads allows remote web sites to exe… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.036Z |
| CVE-1999-0382 |
N/A
|
The screen saver in Windows NT does not verify th… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.882Z |
| CVE-1999-0383 |
N/A
|
ACC Tigris allows public access without a login. |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.948Z |
| CVE-1999-0384 |
N/A
|
The Forms 2.0 ActiveX control (included with Visu… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.891Z |
| CVE-1999-0385 |
N/A
|
The LDAP bind function in Exchange 5.5 has a buff… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.137Z |
| CVE-1999-0386 |
N/A
|
Microsoft Personal Web Server and FrontPage Perso… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.942Z |
| CVE-1999-0388 |
N/A
|
DataLynx suGuard trusts the PATH environment vari… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.030Z |
| CVE-1999-0391 |
N/A
|
The cryptographic challenge of SMB authentication… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:51.955Z |
| CVE-1999-0392 |
N/A
|
Buffer overflow in Thomas Boutell's cgic library … |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.030Z |
| CVE-1999-0396 |
N/A
|
A race condition between the select() and accept(… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.090Z |
| CVE-1999-0402 |
N/A
|
wget 1.5.3 follows symlinks to change permissions… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.088Z |
| CVE-1999-0404 |
N/A
|
Buffer overflow in the Mail-Max SMTP server for W… |
n/a |
n/a |
1999-09-29T08:00:00.000Z | 2024-08-01T16:34:52.159Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-w7q9-xr2x-wh7x |
6.1 (3.1)
|
delayed_job_web Cross-site Scripting vulnerability | 2018-03-05T19:06:00Z | 2023-08-29T11:24:57Z |
| ghsa-6jqp-j69q-pm62 |
7.5 (3.1)
|
AWS Lambda parser is vulnerable to Regular Expression Denial of Service | 2018-03-05T19:16:56Z | 2022-04-25T22:28:16Z |
| ghsa-vqcm-7f7f-r539 |
7.8 (3.1)
|
brbackup exposes database password to unauthorized users | 2018-03-05T19:32:06Z | 2022-04-25T22:09:39Z |
| ghsa-8p2p-p8mg-x3cw |
5.3 (3.1)
|
Insight API transaction broadcast endpoint can result in Full Path Disclosure | 2018-03-05T19:33:54Z | 2022-04-25T22:32:08Z |
| ghsa-pxr8-w3jq-rcwj |
6.1 (3.1)
|
rails_admin ruby gem XSS | 2018-03-05T19:37:23Z | 2023-07-03T21:59:02Z |
| ghsa-h6rj-8r3c-9gpj |
9.8 (3.1)
|
bson is vulnerable to denial of service due to incorrect regex validation | 2018-03-05T19:43:21Z | 2022-04-25T22:38:49Z |
| ghsa-325j-24f4-qv5x |
5.9 (3.1)
|
Regular Expression Denial of Service in ssri | 2018-03-07T22:22:20Z | 2021-08-31T20:21:06Z |
| ghsa-688c-3x49-6rqj |
5.9 (3.1)
|
rack-protection gem timing attack vulnerability when validating CSRF token | 2018-03-07T22:22:22Z | 2023-08-29T15:23:28Z |
| ghsa-wpq7-q8j4-72jg |
8.8 (3.1)
|
Auth0-js bypasses CSRF checks | 2018-03-07T22:22:24Z | 2022-04-25T22:40:41Z |
| ghsa-6wpv-cj6x-v3jw |
5.9 (3.1)
|
http vulnerable to Exposure of Sensitive Information to an Unauthorized Actor | 2018-03-13T16:15:57Z | 2023-01-25T23:04:00Z |
| ghsa-82gw-pqf7-q3j2 |
8.8 (3.1)
|
pym.js CSRF Vulnerability | 2018-03-13T20:38:51Z | 2023-09-11T18:19:05Z |
| ghsa-7h42-5vj2-cq39 |
8.1 (3.1)
|
tiny-json-http missing SSL certificate validation | 2018-03-13T20:42:00Z | 2023-09-13T22:19:39Z |
| ghsa-hwhh-2fwm-cfgw |
6.1 (3.1)
|
Doorkeeper is vulnerable to stored XSS and code execution | 2018-03-13T20:44:48Z | 2022-04-26T17:36:10Z |
| ghsa-pcm6-g2qp-9gw8 |
7.8 (3.1)
|
Cap-Strap gem for Ruby places credentials on the useradd command line | 2018-03-16T01:13:46Z | 2023-07-03T23:45:19Z |
| ghsa-7f42-p84j-f58p |
7.5 (3.1)
|
Sanitize vulnerable to Improper Input Validation and Cross-site Scripting | 2018-03-21T11:56:32Z | 2023-01-23T20:47:11Z |
| ghsa-x7rv-cr6v-4vm4 |
6.1 (3.1)
|
Cross-site Scripting in loofah | 2018-03-21T11:57:11Z | 2023-07-05T20:45:55Z |
| ghsa-8xwg-wv7v-4vqp |
8.1 (3.1)
|
Electron Vulnerable to Code Execution by Re-Enabling Node.js Integration | 2018-03-26T16:41:17Z | 2023-09-13T19:06:52Z |
| ghsa-fjqr-fx3f-g4rv |
8.8 (3.1)
|
Electron protocol handler browser vulnerable to Command Injection | 2018-03-26T16:41:20Z | 2022-04-26T14:35:22Z |
| ghsa-882p-jqgm-f45g |
6.5 (3.1)
|
Uncontrolled resource consumption in nokogiri | 2018-04-13T16:17:46Z | 2023-05-04T19:56:39Z |
| ghsa-vpch-rxw3-fgx8 |
6.1 (3.1)
|
Cross-Site Scripting in @risingstack/protect | 2018-04-25T14:30:43Z | 2021-09-20T22:10:09Z |
| ghsa-jp4x-w63m-7wgm |
8.8 (3.1)
|
Prototype Pollution in hoek | 2018-04-26T15:25:17Z | 2025-05-29T22:49:49Z |
| ghsa-px3r-jm9g-c8w8 |
6.1 (3.1)
|
rails-html-sanitizer Cross-site Scripting vulnerability | 2018-04-26T15:41:10Z | 2023-03-01T18:54:07Z |
| ghsa-gvpx-9459-w3mj |
6.1 (3.1)
|
Cross-Site Scripting in @ckeditor/ckeditor5-link | 2018-05-23T20:37:46Z | 2021-09-13T13:35:54Z |
| ghsa-mq35-wqvf-r23c |
6.1 (3.1)
|
Sinatra Cross-site Scripting vulnerability | 2018-06-05T21:32:06Z | 2023-01-23T21:24:55Z |
| ghsa-3pxp-6963-46r9 |
9.8 (3.1)
|
Command Injection in pdfinfojs | 2018-06-07T19:43:00Z | 2023-01-31T01:38:38Z |
| ghsa-4662-j96g-mv46 |
|
Arbitrary Code Injection in reduce-css-calc | 2018-06-07T19:43:06Z | 2020-08-31T18:12:20Z |
| ghsa-vwjc-q9px-r9vq |
|
Denial of Service in ecstatic | 2018-06-07T19:43:11Z | 2023-05-22T15:35:11Z |
| ghsa-rc8h-3fv6-pxv8 |
|
Denial of Service in hapi | 2018-06-07T19:43:15Z | 2020-08-31T18:09:46Z |
| ghsa-39pj-gq8q-9pfj |
7.5 (3.1)
|
Authentication Weakness in keystone | 2018-06-07T19:43:20Z | 2021-08-31T20:54:56Z |
| ghsa-vwrf-r5r4-7775 |
|
Incorrect handling of CORS preflight request headers in hapi | 2018-06-07T19:43:25Z | 2020-08-31T18:09:06Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2014-110 |
|
Multiple cross-site scripting (XSS) vulnerabilities in apps/common/templates/calculate_fo… | mayan-edms | 2014-05-27T13:55:00Z | 2024-11-21T14:22:54.240407Z |
| pysec-2014-100 |
|
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… | freeipa | 2014-05-29T14:19:00Z | 2024-11-21T14:22:50.537629Z |
| pysec-2014-103 |
|
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… | ipa | 2014-05-29T14:19:00Z | 2024-11-21T14:22:51.957056Z |
| pysec-2014-89 |
|
python-gnupg before 0.3.5 allows context-dependent attackers to execute arbitrary command… | python-gnupg | 2014-06-09T19:55:00Z | 2021-08-27T03:22:18.100904Z |
| pysec-2014-78 |
|
Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets be… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.219875Z |
| pysec-2014-79 |
|
Cross-site scripting (XSS) vulnerability in gravatars/templatetags/gravatars.py in Djblet… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.303468Z |
| pysec-2014-99 |
|
Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in rout… | ajenti | 2014-06-18T14:55:00Z | 2021-12-13T06:35:03.086455Z |
| pysec-2014-114 |
|
Cross-site scripting (XSS) vulnerability in lua/host_details.lua in ntopng 1.1 allows rem… | ntopng | 2014-06-19T10:50:00Z | 2024-11-21T14:22:57.09034Z |
| pysec-2014-21 |
|
IPython Notebook 0.12 through 1.x before 1.2 does not validate the origin of websocket re… | ipython | 2014-08-07T11:13:00Z | 2021-11-10T21:26:51.333186Z |
| pysec-2014-18 |
|
Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local… | salt | 2014-08-22T17:55:00Z | 2021-07-05T00:01:26.140564Z |
| pysec-2014-10 |
|
PIL/IcnsImagePlugin.py in Python Imaging Library (PIL) and Pillow before 2.3.2 and 2.5.x … | pillow | 2014-08-25T14:55:00Z | 2021-07-05T00:01:23.718339Z |
| pysec-2014-107 |
|
The MySQL token driver in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Ju… | keystone | 2014-08-25T14:55:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-108 |
|
The V3 API in OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Ju… | keystone | 2014-08-25T14:55:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-109 |
|
OpenStack Identity (Keystone) 2014.1.x before 2014.1.2.1 and Juno before Juno-3 does not … | keystone | 2014-08-25T14:55:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2014-4 |
|
The core.urlresolvers.reverse function in Django before 1.4.14, 1.5.x before 1.5.9, 1.6.x… | django | 2014-08-26T14:55:00Z | 2021-07-05T00:01:18.862505Z |
| pysec-2014-5 |
|
The default configuration for the file upload handling system in Django before 1.4.14, 1.… | django | 2014-08-26T14:55:00Z | 2021-07-05T00:01:18.973883Z |
| pysec-2014-6 |
|
The contrib.auth.middleware.RemoteUserMiddleware middleware in Django before 1.4.14, 1.5.… | django | 2014-08-26T14:55:00Z | 2021-07-05T00:01:19.085708Z |
| pysec-2014-7 |
|
The administrative interface (contrib.admin) in Django before 1.4.14, 1.5.x before 1.5.9,… | django | 2014-08-26T14:55:00Z | 2021-07-05T00:01:19.203370Z |
| pysec-2014-115 |
|
The urlopen function in pym/portage/util/_urlopen.py in Gentoo Portage 2.1.12, when using… | portage | 2014-09-29T22:55:00Z | 2024-11-21T14:22:59.10272Z |
| pysec-2014-27 |
|
registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers … | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:28.919312Z |
| pysec-2014-28 |
|
ZPublisher.HTTPRequest._scrubHeader in Zope 2 before 2.13.19, as used in Plone before 4.3… | plone | 2014-09-30T14:55:00Z | 2021-07-25T23:34:43.396566Z |
| pysec-2014-29 |
|
The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before b… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.087946Z |
| pysec-2014-30 |
|
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.194034Z |
| pysec-2014-31 |
|
The App.Undo.UndoSupport.get_request_var_or_attr function in Zope before 2.12.21 and 3.13… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.299631Z |
| pysec-2014-32 |
|
Cross-site scripting (XSS) vulnerability in kssdevel.py in Plone before 4.2.3 and 4.3 bef… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.407022Z |
| pysec-2014-33 |
|
z3c.form, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.513262Z |
| pysec-2014-34 |
|
uid_catalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obt… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.620104Z |
| pysec-2014-35 |
|
gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users wit… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.732595Z |
| pysec-2014-36 |
|
Cross-site scripting (XSS) vulnerability in python_scripts.py in Plone before 4.2.3 and 4… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.835907Z |
| pysec-2014-37 |
|
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.952455Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-6067 | Malicious code in sg-dome (npm) | 2022-06-01T09:27:58Z | 2022-06-01T09:27:58Z |
| mal-2022-6068 | Malicious code in sg-orbit (npm) | 2022-06-01T09:27:58Z | 2022-06-01T09:28:03Z |
| mal-2022-618 | Malicious code in @superbet-group/testsandbox (npm) | 2022-06-01T09:30:48Z | 2022-06-01T09:30:48Z |
| mal-2022-1056 | Malicious code in apnic-bootstrap4 (npm) | 2022-06-02T09:02:44Z | 2022-06-02T09:02:45Z |
| mal-2022-4290 | Malicious code in lexical-monorepo (npm) | 2022-06-02T10:28:04Z | 2022-06-02T10:28:05Z |
| mal-2022-2320 | Malicious code in dai-pg (npm) | 2022-06-02T10:38:35Z | 2022-06-02T10:38:36Z |
| mal-2022-3849 | Malicious code in insights-explorer (npm) | 2022-06-02T10:38:35Z | 2022-06-02T10:38:36Z |
| mal-2022-5059 | Malicious code in olx-hubot (npm) | 2022-06-02T10:38:35Z | 2022-06-02T10:38:36Z |
| mal-2022-6963 | Malicious code in volcan0x (npm) | 2022-06-02T10:38:35Z | 2022-06-02T10:38:41Z |
| mal-2022-7230 | Malicious code in wormhole-client (npm) | 2022-06-02T10:38:35Z | 2022-06-02T10:38:36Z |
| mal-2022-4465 | Malicious code in makerdao-governance-bot (npm) | 2022-06-02T10:38:36Z | 2022-06-02T10:38:41Z |
| mal-2022-7231 | Malicious code in wormhole-icco (npm) | 2022-06-02T10:38:36Z | 2022-06-02T10:38:37Z |
| mal-2022-4947 | Malicious code in npmbulabula (npm) | 2022-06-02T10:41:59Z | 2022-06-02T10:41:59Z |
| mal-2022-6909 | Malicious code in vfdp-ui-framework (npm) | 2022-06-02T10:43:40Z | 2022-06-02T10:43:41Z |
| mal-2022-168 | Malicious code in @chegg-me-components/header (npm) | 2022-06-02T10:47:20Z | 2022-06-02T10:47:20Z |
| mal-2022-200 | Malicious code in @design-components/customer (npm) | 2022-06-02T10:47:20Z | 2022-06-02T10:47:20Z |
| mal-2022-503 | Malicious code in @pixiv-vroid-hub/vroid-hub-viewer (npm) | 2022-06-02T10:47:20Z | 2022-06-02T10:47:20Z |
| mal-2022-7068 | Malicious code in web-excess (npm) | 2022-06-02T10:49:17Z | 2022-06-02T10:49:17Z |
| mal-2022-2770 | Malicious code in epic-ue-fonts (npm) | 2022-06-02T10:50:08Z | 2022-06-02T10:50:08Z |
| mal-2022-2524 | Malicious code in discordjs-selfbotjs (npm) | 2022-06-02T10:58:04Z | 2022-06-02T10:58:05Z |
| mal-2022-1998 | Malicious code in color-xzibit (npm) | 2022-06-02T10:58:54Z | 2022-06-02T10:58:55Z |
| mal-2022-6342 | Malicious code in stylis-ifl4 (npm) | 2022-06-02T11:02:35Z | 2022-06-02T11:02:36Z |
| mal-2022-1043 | Malicious code in api-token-admin (npm) | 2022-06-02T11:02:51Z | 2022-06-02T11:02:51Z |
| mal-2022-4780 | Malicious code in nab-packages-react-utils-nab (npm) | 2022-06-03T00:00:00Z | 2023-09-05T02:23:23Z |
| mal-2022-2379 | Malicious code in ddd-demo (npm) | 2022-06-08T08:19:30Z | 2022-06-08T08:19:30Z |
| mal-2022-2380 | Malicious code in ddd-demo2 (npm) | 2022-06-08T08:19:30Z | 2022-06-08T08:19:30Z |
| mal-2022-2381 | Malicious code in ddd-demo3 (npm) | 2022-06-08T08:19:45Z | 2022-06-08T08:19:54Z |
| mal-2022-2307 | Malicious code in d2l-rubric (npm) | 2022-06-08T08:33:40Z | 2022-06-08T08:33:41Z |
| mal-2022-2308 | Malicious code in d2l-rubric-polymer (npm) | 2022-06-08T08:33:40Z | 2022-06-08T08:33:41Z |
| mal-2022-4659 | Malicious code in mock-solc-0.6 (npm) | 2022-06-08T08:37:55Z | 2022-06-08T08:37:55Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-ghost-2022-41697 | 2024-03-06T10:53:30.902Z | 2025-04-03T14:40:37.652Z | |
| bit-gitea-2022-1058 | Open Redirect on login in go-gitea/gitea | 2024-03-06T10:53:31.004Z | 2025-05-20T10:02:07.006Z |
| bit-helm-2022-36049 | Flux2 Helm Controller denial of service | 2024-03-06T10:53:31.970Z | 2025-05-20T10:02:07.006Z |
| bit-gradle-2022-30586 | 2024-03-06T10:53:33.004Z | 2025-04-03T14:40:37.652Z | |
| bit-envoy-2023-27496 | Envoy may crash when a redirect url without a state param is received in the oauth filter | 2024-03-06T10:53:33.396Z | 2025-05-20T10:02:07.006Z |
| bit-consul-2021-3121 | 2024-03-06T10:53:33.669Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2024-0402 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab | 2024-03-06T10:53:34.701Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2021-22137 | 2024-03-06T10:53:35.098Z | 2025-04-03T14:40:37.652Z | |
| bit-grafana-2023-2183 | 2024-03-06T10:53:35.301Z | 2025-04-03T14:40:37.652Z | |
| bit-golang-2023-39325 | HTTP/2 rapid reset can cause excessive work in net/http | 2024-03-06T10:53:35.567Z | 2025-05-20T10:02:07.006Z |
| bit-airflow-2023-40273 | Session fixation in Apache Airflow web interface | 2024-03-06T10:53:37.079Z | 2025-05-20T10:02:07.006Z |
| bit-harbor-2020-29662 | 2024-03-06T10:53:37.807Z | 2025-04-03T14:40:37.652Z | |
| bit-django-2021-45452 | 2024-03-06T10:53:37.905Z | 2025-04-03T14:40:37.652Z | |
| bit-apache-2022-22721 | core: Possible buffer overflow with very large or unlimited LimitXMLRequestBody | 2024-03-06T10:53:38.076Z | 2025-05-20T10:02:07.006Z |
| bit-drupal-2022-25271 | 2024-03-06T10:53:39.007Z | 2025-04-03T14:40:37.652Z | |
| bit-haproxy-2023-25725 | 2024-03-06T10:53:39.092Z | 2025-04-03T14:40:37.652Z | |
| bit-dotnet-2023-36792 | Visual Studio Remote Code Execution Vulnerability | 2024-03-06T10:53:40.388Z | 2025-05-20T10:02:07.006Z |
| bit-gitea-2022-0905 | Missing Authorization in go-gitea/gitea | 2024-03-06T10:53:40.961Z | 2025-05-20T10:02:07.006Z |
| bit-ghost-2022-41654 | 2024-03-06T10:53:41.472Z | 2025-04-03T14:40:37.652Z | |
| bit-discourse-2023-44388 | Malicious requests can fill up the log files resulting in a deinal of service in Discourse | 2024-03-06T10:53:42.285Z | 2025-11-06T13:25:46.476Z |
| bit-gradle-2022-23630 | Dependency verification bypass in Gradle | 2024-03-06T10:53:42.475Z | 2025-05-20T10:02:07.006Z |
| bit-jenkins-2024-23898 | 2024-03-06T10:53:43.665Z | 2025-04-03T14:40:37.652Z | |
| bit-helm-2022-23526 | Helm contains Denial of service through schema file | 2024-03-06T10:53:44.587Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2021-22135 | 2024-03-06T10:53:44.675Z | 2025-04-03T14:40:37.652Z | |
| bit-consul-2021-28156 | 2024-03-06T10:53:45.007Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2023-7028 | Weak Password Recovery Mechanism for Forgotten Password in GitLab | 2024-03-06T10:53:45.400Z | 2025-10-22T09:08:25.162Z |
| bit-airflow-2023-39508 | Apache Airflow: Airflow "Run task" feature allows execution with unnecessary priviledges | 2024-03-06T10:53:46.702Z | 2025-05-20T10:02:07.006Z |
| bit-apache-2022-22720 | HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier | 2024-03-06T10:53:47.761Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27493 | Envoy doesn't escape HTTP header values | 2024-03-06T10:53:47.786Z | 2025-05-20T10:02:07.006Z |
| bit-harbor-2020-13794 | 2024-03-06T10:53:48.187Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| drupal-contrib-2024-006 | 2024-01-24T15:54:55.000Z | 2025-02-20T18:38:32.000Z | |
| drupal-contrib-2024-007 | 2024-01-31T17:22:36.000Z | 2025-02-20T18:38:01.000Z | |
| drupal-contrib-2024-008 | 2024-02-07T17:56:55.000Z | 2025-02-20T18:37:40.000Z | |
| drupal-contrib-2024-009 | 2024-02-14T19:31:10.000Z | 2025-02-20T18:37:01.000Z | |
| drupal-contrib-2024-010 | 2024-02-21T16:58:11.000Z | 2025-02-20T18:36:16.000Z | |
| drupal-contrib-2024-011 | 2024-02-28T18:14:40.000Z | 2025-02-20T19:10:16.000Z | |
| drupal-contrib-2024-012 | 2024-02-28T18:19:01.000Z | 2025-02-20T19:09:55.000Z | |
| drupal-contrib-2024-014 | 2024-02-28T18:36:35.000Z | 2025-02-20T19:09:20.000Z | |
| drupal-contrib-2024-015 | 2024-03-06T17:06:37.000Z | 2025-02-20T19:08:51.000Z | |
| drupal-contrib-2024-016 | 2024-03-27T17:16:26.000Z | 2025-02-20T19:08:34.000Z | |
| drupal-contrib-2024-017 | 2024-04-24T13:16:40.000Z | 2025-02-20T18:44:32.000Z | |
| drupal-contrib-2024-018 | 2024-04-24T14:23:34.000Z | 2025-02-20T18:44:08.000Z | |
| drupal-contrib-2024-020 | 2024-05-22T16:03:46.000Z | 2025-02-20T18:43:21.000Z | |
| drupal-contrib-2024-021 | 2024-05-22T16:21:55.000Z | 2025-02-20T19:14:35.000Z | |
| drupal-contrib-2024-022 | 2024-05-29T16:44:55.000Z | 2025-02-20T19:14:10.000Z | |
| drupal-contrib-2024-023 | 2024-05-29T16:52:42.000Z | 2025-02-20T19:13:53.000Z | |
| drupal-contrib-2024-024 | 2024-05-29T16:58:59.000Z | 2025-02-20T19:13:35.000Z | |
| drupal-contrib-2024-025 | 2024-06-05T16:45:02.000Z | 2025-02-20T19:13:15.000Z | |
| drupal-contrib-2024-026 | 2024-07-31T15:59:06.000Z | 2025-02-20T19:12:56.000Z | |
| drupal-contrib-2024-027 | 2024-08-07T17:19:30.000Z | 2025-02-20T19:12:37.000Z | |
| drupal-contrib-2024-028 | 2024-08-07T17:30:20.000Z | 2025-02-20T19:12:22.000Z | |
| drupal-contrib-2024-029 | 2024-08-07T17:36:15.000Z | 2025-02-20T19:12:05.000Z | |
| drupal-contrib-2024-030 | 2024-08-21T16:23:02.000Z | 2025-02-20T19:11:48.000Z | |
| drupal-contrib-2024-033 | 2024-08-28T15:32:41.000Z | 2025-02-20T19:24:02.000Z | |
| drupal-contrib-2024-034 | 2024-09-04T15:35:55.000Z | 2025-02-20T19:23:44.000Z | |
| drupal-contrib-2024-035 | 2024-09-04T15:40:44.000Z | 2025-02-20T19:23:27.000Z | |
| drupal-contrib-2024-036 | 2024-09-04T15:42:05.000Z | 2025-02-20T19:23:09.000Z | |
| drupal-contrib-2024-037 | 2024-09-04T16:15:41.000Z | 2025-02-20T19:22:50.000Z | |
| drupal-contrib-2024-038 | 2024-09-04T16:20:17.000Z | 2025-02-20T19:22:30.000Z | |
| drupal-contrib-2024-039 | 2024-09-11T16:21:22.000Z | 2025-02-20T19:22:14.000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2007-000625 | Tuigwaa cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000626 | Mayaa cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000639 | Shopping Basket Pro directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000640 | Fulltext search CGI from futomi's CGI Cafe vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000645 | 7-ZIP32.DLL buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000646 | Fuktommy.com httpd.pl including HTML preprocessor vulnerable to directory traversal | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000647 | Fuktommy.com httpd.pl included in its HTML preprocessor vulnerable in allowing an attacker to view arbitrary CGI source code | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000678 | Fingerprint Authentication Software for Sony Pocket Bit installs hidden folders and files | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000697 | Lhaplus buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000699 | JP1/NETM/DM Manager SQL Injection Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000700 | Cosminexus javadoc Cross-Site Scripting Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000701 | Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java Buffer Overflow Vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000702 | Cosminexus Developer's Kit for Java Buffer Overflow and Denial of Service Vulnerabilities | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000710 | Cosminexus Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000711 | TPBroker Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000712 | Cosminexus Agent Process Crash Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000727 | Safari allows access from HTTP to HTTPS | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000729 | Aipo session fixation vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000730 | Webmin OS command injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000745 | PowerArchiver buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000772 | Hitachi Web Server SSL Client Authentication Vulnerability | 2008-05-21T00:00+09:00 | 2014-05-23T18:32+09:00 |
| jvndb-2007-000773 | Hitachi Web Server Cross-Site Scripting Vulnerability with Server-Status Page | 2008-05-21T00:00+09:00 | 2014-05-21T18:27+09:00 |
| jvndb-2007-000779 | MouseoverDictionary vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000801 | NetCommons cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000802 | Lotus Domino cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000803 | Cross-site scripting vulnerability in updir.php in UPDIR.NET | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000804 | Sleipnir and Grani Bookmark Search vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000805 | RoundCube Webmail cross-site request forgery vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000806 | Feed2JS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000807 | FileMaker cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00167 | WordPress插件twimp-wp跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00168 | WordPress插件Twitter LiveBlog跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00169 | WordPress插件TweetScribe跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00170 | WordPress插件Wp Unique Article Header Image存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00171 | WordPress插件Post to Twitter存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00172 | WordPress插件Simple visitor stat存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00173 | WordPress Social Slider插件SQL注入漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00174 | HESK存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00175 | CosmoShop ePRO存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00176 | CosmoShop ePRO跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00177 | WordPress插件gSlideShow存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00178 | WordPress插件PWGRandom存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00179 | WordPress插件Sodahead Polls存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00180 | PHP Fileinfo component拒绝服务漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00181 | WordPress插件PictoBrowser跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00182 | Easewe FTP OCX任意文件执行漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00183 | WordPress插件Cart66 Lite SQL注入漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00184 | concrete5存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00185 | Roundcube Webmail存在多个跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00186 | ManageEngine Desktop Central MSP远程代码执行漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00187 | Brother MFC-J4410DW打印机'url'参数存在多个跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00188 | TP-Link TL-WR840N 'Import Configuration'选项跨站请求伪造漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00189 | NotePad++缓冲区溢出漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00190 | Spitfire CMS跨站脚本漏洞 | 2015-01-08 | 2015-01-09 |
| cnvd-2015-00191 | SysAid On-Premise绝对路径遍历漏洞 | 2015-01-08 | 2015-01-12 |
| cnvd-2015-00192 | vBulletin跨站请求伪造漏洞 | 2015-01-08 | 2015-01-12 |
| cnvd-2015-00193 | WordPress插件Relevanssi跨站脚本漏洞 | 2015-01-08 | 2015-01-12 |
| cnvd-2015-00194 | NYU OpenSSO Integration重定向漏洞 | 2015-01-08 | 2015-01-12 |
| cnvd-2015-00195 | Installatron GQ File Manager SQL注入漏洞 | 2015-01-08 | 2015-01-12 |
| cnvd-2015-00196 | Zabbix 'chart_bar.php'存在多个SQL注入漏洞 | 2015-01-08 | 2015-01-12 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2015-02631 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02632 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02633 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02634 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02635 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02636 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02637 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02638 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02639 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02640 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02641 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02642 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02643 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02644 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02645 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02646 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02647 | Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02648 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02649 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02650 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02651 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02652 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02653 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02654 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02655 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02656 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02657 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02658 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| bdu:2015-02659 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 05.07.2024 |
| bdu:2015-02660 | Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… | 28.04.2015 | 28.11.2016 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2001-avi-148 | Vulnérabilité dans le service d'impression sous HP-UX | 2001-11-22T00:00:00.000000 | 2001-11-22T00:00:00.000000 |
| certa-2001-avi-149 | Vulnérabilités dans le package susehelp de SuSE | 2001-11-26T00:00:00.000000 | 2001-11-26T00:00:00.000000 |
| certa-2001-avi-150 | Vulnérabilité du serveur Xsun sous Solaris | 2001-11-26T00:00:00.000000 | 2001-11-26T00:00:00.000000 |
| certa-2001-avi-151 | Vulnérabilité de Xview sous Solaris | 2001-11-26T00:00:00.000000 | 2001-11-26T00:00:00.000000 |
| certa-2001-avi-152 | Vulnérabilité de « patchadd » sous Solaris | 2001-11-26T00:00:00.000000 | 2001-11-26T00:00:00.000000 |
| certa-2001-avi-153 | Vulnérabilité de wu-ftpd | 2001-11-29T00:00:00.000000 | 2001-12-03T00:00:00.000000 |
| certa-2001-avi-154 | Vulnérabilité de CBAC sous CISCO IOS | 2001-11-29T00:00:00.000000 | 2001-11-29T00:00:00.000000 |
| certa-2001-avi-155 | Vulnérabilités de Mailx sous Solaris | 2001-11-30T00:00:00.000000 | 2001-11-30T00:00:00.000000 |
| certa-2001-avi-156 | Fichiers temporaires mal sécurisés créés par divers shells | 2001-11-30T00:00:00.000000 | 2001-11-30T00:00:00.000000 |
| certa-2001-avi-157 | Multiples vulnérabilités d'implémentations LDAP | 2001-12-03T00:00:00.000000 | 2001-12-03T00:00:00.000000 |
| certa-2001-avi-158 | Multiples vulnérabilités de l'agent dbsnmp du SGBD Oracle. | 2001-12-04T00:00:00.000000 | 2001-12-04T00:00:00.000000 |
| certa-2001-avi-159 | Risque de compromission locale avec OpenSSH | 2001-12-07T00:00:00.000000 | 2001-12-07T00:00:00.000000 |
| certa-2001-avi-160 | Vulnérabilité d'OWA dans Microsoft Exchange 5.5 | 2001-12-07T00:00:00.000000 | 2001-12-07T00:00:00.000000 |
| certa-2001-avi-161 | Vulnérabilité de l'exécutable login | 2001-12-13T00:00:00.000000 | 2001-12-19T00:00:00.000000 |
| certa-2001-avi-162 | Déni de service potentiel de Postfix | 2001-12-17T00:00:00.000000 | 2001-12-17T00:00:00.000000 |
| certa-2001-avi-163 | Vulnérabilités dans Internet Explorer 5.5 et 6 | 2001-12-17T00:00:00.000000 | 2001-12-17T00:00:00.000000 |
| certa-2001-avi-164 | Vulnérabilité du serveur pfinger | 2001-12-20T00:00:00.000000 | 2001-12-20T00:00:00.000000 |
| certa-2001-avi-165 | Vulnérabilité de UPnP sous Windows | 2001-12-24T00:00:00.000000 | 2001-12-24T00:00:00.000000 |
| certa-2001-avi-166 | Vulnérabilité du serveur web de Lotus Domino associé à SSL | 2001-12-24T00:00:00.000000 | 2001-12-24T00:00:00.000000 |
| certa-2001-avi-167 | Vulnérabilités dans le serveur SQL Microsoft | 2001-12-24T00:00:00.000000 | 2001-12-24T00:00:00.000000 |
| certa-2002-avi-001 | Vulnérabilité dans glibc sous linux | 2002-01-02T00:00:00.000000 | 2002-01-14T00:00:00.000000 |
| certa-2002-avi-002 | Multiples vulnérabilités dans Oracle9i Application Server | 2002-01-02T00:00:00.000000 | 2002-01-02T00:00:00.000000 |
| certa-2002-avi-003 | Multiples vulnérabilités dans Oracle 9iAS Web Cache | 2002-01-02T00:00:00.000000 | 2002-01-02T00:00:00.000000 |
| certa-2002-avi-004 | Vulnérabilité dans <TT>Mutt</TT> | 2002-01-08T00:00:00.000000 | 2002-01-14T00:00:00.000000 |
| certa-2002-avi-005 | Multiples vulnérabilités dans Netscape Enterprise Server et iPlanet Web Server | 2002-01-14T00:00:00.000000 | 2002-01-14T00:00:00.000000 |
| certa-2002-avi-006 | Vulnérabilité dans Sudo | 2002-01-16T00:00:00.000000 | 2002-01-16T00:00:00.000000 |
| certa-2002-avi-007 | Vulnérabilité du daemon <TT>nsd</TT> sous SGI Irix | 2002-01-17T00:00:00.000000 | 2002-01-17T00:00:00.000000 |
| certa-2002-avi-008 | Vulnérabilité dans pine | 2002-01-18T00:00:00.000000 | 2002-01-18T00:00:00.000000 |
| certa-2002-avi-009 | Vulnérabilité de la commande at | 2002-01-21T00:00:00.000000 | 2002-01-21T00:00:00.000000 |
| certa-2002-avi-010 | Vulnérabilité dans stunnel | 2002-01-22T00:00:00.000000 | 2002-01-22T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2017-ale-010 | Propagation d'un rançongiciel exploitant les vulnérabilités MS17-010 | 2017-05-12T00:00:00.000000 | 2017-06-27T00:00:00.000000 |
| certfr-2017-ale-011 | Campagne de messages électroniques non sollicités de type Jaff | 2017-05-14T00:00:00.000000 | 2017-06-27T00:00:00.000000 |
| certfr-2017-ale-012 | Campagne de maliciels prenant l'apparence d'un rançongiciel à multiples capacités de propagation | 2017-06-27T00:00:00.000000 | 2017-08-03T00:00:00.000000 |
| certfr-2017-ale-013 | Présence de code malveillant dans Piriform CCleaner | 2017-09-18T00:00:00.000000 | 2017-10-09T00:00:00.000000 |
| certfr-2017-ale-015 | Vulnérabilités dans la bibliothèque Infineon RSA | 2017-10-16T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-ale-014 | Vulnérabilité dans le protocole WPA/WPA2 | 2017-10-18T00:00:00.000000 | 2017-10-19T00:00:00.000000 |
| certfr-2017-ale-016 | Campagne de rançongiciel Bad Rabbit | 2017-10-25T00:00:00.000000 | 2017-10-27T00:00:00.000000 |
| certfr-2017-ale-017 | Vulnérabilité dans le serveur de messagerie Exim | 2017-11-27T00:00:00.000000 | 2018-02-01T00:00:00.000000 |
| certfr-2017-ale-018 | Vulnérabilité dans Apple MacOS High Sierra | 2017-11-29T00:00:00.000000 | 2017-11-30T00:00:00.000000 |
| certfr-2017-ale-019 | Vulnérabilité d'usurpation d'identité dans plusieurs clients de messagerie | 2017-12-05T00:00:00.000000 | 2018-03-07T00:00:00.000000 |
| certfr-2017-ale-020 | Vulnérabilité dans des implémentations de TLS | 2017-12-13T00:00:00.000000 | 2018-04-06T00:00:00.000000 |
| certfr-2018-ale-001 | Multiples vulnérabilités de fuite d'informations dans des processeurs | 2018-01-04T00:00:00.000000 | 2018-10-10T00:00:00.000000 |
| certfr-2018-ale-002 | Vulnérabilité dans Cisco Adaptive Security Appliance | 2018-02-01T00:00:00.000000 | 2018-04-06T00:00:00.000000 |
| certfr-2018-ale-003 | Vulnérabilité dans Adobe Flash Player | 2018-02-02T00:00:00.000000 | 2018-02-07T00:00:00.000000 |
| certfr-2018-ale-004 | Vulnérabilité dans le serveur de messagerie Exim | 2018-03-07T00:00:00.000000 | 2018-07-30T00:00:00.000000 |
| certfr-2018-ale-005 | Multiples vulnérabilités dans Drupal | 2018-03-29T00:00:00.000000 | 2018-07-30T00:00:00.000000 |
| certfr-2018-ale-006 | Vulnérabilité dans Cisco IOS et IOS XE Smart Install Client | 2018-04-06T00:00:00.000000 | 2018-07-30T00:00:00.000000 |
| certfr-2018-ale-007 | Multiples vulnérabilités dans S/MIME et OpenPGP | 2018-05-14T00:00:00.000000 | 2018-10-10T00:00:00.000000 |
| certfr-2018-ale-008 | Campagne de messages électroniques non sollicités de type Locky Locker | 2018-08-03T00:00:00.000000 | 2018-10-10T00:00:00.000000 |
| certfr-2018-ale-009 | Vulnérabilité dans Microsoft Windows | 2018-08-29T00:00:00.000000 | 2018-09-17T00:00:00.000000 |
| certfr-2018-ale-010 | Vulnérabilité activement exploitée dans le framework STRUTS 2 | 2018-08-29T00:00:00.000000 | 2018-10-10T00:00:00.000000 |
| certfr-2018-ale-011 | Vulnérabilité dans le client Git | 2018-10-08T00:00:00.000000 | 2018-10-12T00:00:00.000000 |
| certfr-2018-ale-012 | Vulnérabilité dans Wallix AdminBastion | 2018-10-26T00:00:00.000000 | 2019-02-04T00:00:00.000000 |
| certfr-2018-ale-013 | Vulnérabilité dans Microsoft Internet Explorer | 2018-12-20T00:00:00.000000 | 2019-02-04T00:00:00.000000 |
| certfr-2019-ale-001 | Vulnérabilité dans le gestionnaire de paquets APT | 2019-01-22T00:00:00.000000 | 2019-02-27T00:00:00.000000 |
| certfr-2019-ale-002 | Vulnérabilités affectant l'écosystème Microsoft Exchange et Active Directory | 2019-01-30T00:00:00.000000 | 2019-03-06T00:00:00.000000 |
| certfr-2019-ale-003 | Campagnes de rançongiciels | 2019-01-31T00:00:00.000000 | 2019-06-20T00:00:00.000000 |
| certfr-2019-ale-004 | Multiples vulnérabilités dans Microsoft Edge et Internet Explorer | 2019-04-01T00:00:00.000000 | 2019-04-17T00:00:00.000000 |
| certfr-2019-ale-005 | Vulnérabilité dans Oracle WebLogic | 2019-04-26T00:00:00.000000 | 2019-06-20T00:00:00.000000 |
| certfr-2019-ale-007 | Vulnérabilité dans le serveur DHCP de Windows | 2019-05-15T00:00:00.000000 | 2019-06-20T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2020-408 | Heap-buffer-overflow in _iri_unescape_inline | 2020-07-01T00:00:07.867096Z | 2022-04-13T03:04:41.747993Z |
| osv-2020-410 | Global-buffer-overflow in lex_multiline_string | 2020-07-01T00:00:07.995615Z | 2022-04-13T03:04:31.725276Z |
| osv-2020-412 | Heap-buffer-overflow in BEInt<unsigned short, 2>::operator unsigned short | 2020-07-01T00:00:08.080711Z | 2022-04-13T03:04:32.847965Z |
| osv-2020-413 | Stack-buffer-overflow in ot::NetworkData::NetworkDataTlv::GetNext | 2020-07-01T00:00:08.114688Z | 2022-04-13T03:04:39.061092Z |
| osv-2020-414 | Heap-use-after-free in WelsDec::MapColToList0 | 2020-07-01T00:00:08.178314Z | 2022-04-13T03:04:37.393513Z |
| osv-2020-416 | Use-of-uninitialized-value in UA_ServerConfig_clean | 2020-07-01T00:00:08.299104Z | 2022-04-13T03:04:41.265587Z |
| osv-2020-417 | Heap-buffer-overflow in idn2_to_ascii_4i | 2020-07-01T00:00:08.331193Z | 2022-04-13T03:04:41.460832Z |
| osv-2020-418 | Use-of-uninitialized-value in isMatchAtCPBoundary | 2020-07-01T00:00:08.369511Z | 2022-04-13T03:04:34.083961Z |
| osv-2020-420 | UNKNOWN WRITE in uffd_cleanup | 2020-07-01T00:00:08.489132Z | 2022-04-13T03:04:42.095380Z |
| osv-2020-423 | Heap-buffer-overflow in stdalloc__strdup | 2020-07-01T00:00:08.690856Z | 2022-04-13T03:04:35.188247Z |
| osv-2020-424 | Heap-buffer-overflow in sav_parse_long_string_missing_values_record | 2020-07-01T00:00:08.721678Z | 2022-04-13T03:04:40.624731Z |
| osv-2020-425 | Heap-buffer-overflow in ihevcd_parse_coding_unit | 2020-07-01T00:00:08.799539Z | 2022-04-13T03:04:30.934302Z |
| osv-2020-427 | Stack-buffer-overflow in Mat_uint32Swap | 2020-07-01T00:00:08.917488Z | 2022-04-13T03:04:43.096948Z |
| osv-2020-429 | Heap-buffer-overflow in MEM_read32 | 2020-07-01T00:00:08.999234Z | 2022-04-13T03:04:31.653842Z |
| osv-2020-430 | Stack-use-after-return in OSSL_PARAM_get_int32 | 2020-07-01T00:00:09.096641Z | 2022-04-13T03:04:38.763723Z |
| osv-2020-431 | Global-buffer-overflow in parse_headers | 2020-07-01T00:00:09.131195Z | 2022-04-13T03:04:31.753751Z |
| osv-2020-433 | UNKNOWN READ in icu_64::UCharsTrie::branchNext | 2020-07-01T00:00:09.276939Z | 2022-04-13T03:04:34.078177Z |
| osv-2020-434 | Heap-buffer-overflow in format_generic_odp_key | 2020-07-01T00:00:09.309832Z | 2022-04-13T03:04:40.780011Z |
| osv-2020-435 | Heap-buffer-overflow in ares_parse_aaaa_reply | 2020-07-01T00:00:09.430097Z | 2022-04-13T03:04:36.416216Z |
| osv-2020-438 | Use-of-uninitialized-value in ARM_post_printer | 2020-07-01T00:00:09.576759Z | 2022-04-13T03:04:39.911191Z |
| osv-2020-439 | UNKNOWN WRITE in ares-test-fuzz.c | 2020-07-01T00:00:09.657657Z | 2022-04-13T03:04:36.421240Z |
| osv-2020-440 | UNKNOWN READ in r_uleb128 | 2020-07-01T00:00:09.710794Z | 2022-04-13T03:04:36.683164Z |
| osv-2020-441 | Heap-buffer-overflow in r_buf_cpy | 2020-07-01T00:00:09.757737Z | 2022-04-13T03:04:36.533413Z |
| osv-2020-442 | Heap-buffer-overflow in CRYPTO_strdup | 2020-07-01T00:00:09.812508Z | 2022-04-13T03:04:38.758794Z |
| osv-2020-447 | UNKNOWN READ in yyparse | 2020-07-01T00:00:10.057682Z | 2022-04-13T03:04:39.703625Z |
| osv-2020-448 | Heap-use-after-free in read_chunks_before_idat | 2020-07-01T00:00:10.159770Z | 2022-04-13T03:04:33.677865Z |
| osv-2020-449 | Heap-buffer-overflow in perfetto::trace_processor::FuchsiaTraceParser::ParseTracePacket | 2020-07-01T00:00:10.213693Z | 2023-02-24T01:44:59.598379Z |
| osv-2020-452 | UNKNOWN READ in _fini | 2020-07-01T00:00:10.397492Z | 2022-04-13T03:04:41.608146Z |
| osv-2020-455 | Heap-buffer-overflow in r_core_lines_initcache | 2020-07-01T00:00:10.523473Z | 2022-04-13T03:04:36.647898Z |
| osv-2020-461 | Index-out-of-bounds in parse_file_extra_owner | 2020-07-01T00:00:10.823501Z | 2022-04-13T03:04:41.205848Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2020-0103 | `impl Random` on arrays can lead to dropping uninitialized memory | 2020-12-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0132 | `FixedCapacityDequeLike::clone()` can cause dropping uninitialized memory | 2020-12-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0153 | `read` on uninitialized buffer may cause UB (bite::read::BiteReadExpandedExt::read_framed_max) | 2020-12-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2020-0154 | InputStream::read_exact : `Read` on uninitialized buffer causes UB | 2020-12-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0006 | Exposes internally used raw pointer | 2021-01-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0008 | reading on uninitialized buffer can cause UB (`impl<R> BufRead for GreedyAccessReader<R>`) | 2021-01-02T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0012 | Reading uninitialized memory can cause UB (`Deserializer::read_vec`) | 2021-01-02T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0084 | `Read` on uninitialized buffer can cause UB (impl of `ReadKVExt`) | 2021-01-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0085 | 'Read' on uninitialized memory may cause UB | 2021-01-03T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0001 | XSS in mdBook's search page | 2021-01-04T12:00:00Z | 2021-10-19T22:14:35Z |
| rustsec-2021-0002 | interfaces2 is unmaintained, use interfaces instead | 2021-01-04T12:00:00Z | 2021-01-06T16:07:19Z |
| rustsec-2021-0011 | EventList's From<EventList> conversions can double drop on panic. | 2021-01-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0039 | panic in user-provided `Endian` impl triggers double drop of T | 2021-01-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0143 | kamadak-exif DoS with untrusted PNG data | 2021-01-04T12:00:00Z | 2022-09-08T10:52:02Z |
| rustsec-2021-0088 | `Read` on uninitialized memory may cause UB (fn preamble_skipcount()) | 2021-01-05T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0015 | `Sectors::get` accesses unclaimed/uninitialized memory | 2021-01-06T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0007 | `Frame::copy_from_raw_parts` can lead to segfault without `unsafe` | 2021-01-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0027 | Loading a bgzip block can write out of bounds if size overflows. | 2021-01-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0086 | `Read` on uninitialized buffer may cause UB ( `read_entry()` ) | 2021-01-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0087 | columnar: `Read` on uninitialized buffer may cause UB (ColumnarReadExt::read_typed_vec()) | 2021-01-07T12:00:00Z | 2025-02-01T00:07:11Z |
| rustsec-2021-0090 | Reading on uninitialized memory may cause UB ( `util::read_spv()` ) | 2021-01-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0091 | Reading on uninitialized buffer may cause UB ( `gfx_auxil::read_spirv()` ) | 2021-01-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0003 | Buffer overflow in SmallVec::insert_many | 2021-01-08T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0005 | Double drop upon panic in 'fn map_array()' | 2021-01-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0009 | panic safety issue in `impl TransformContent<S, D> for [S; (2|3|4)]` | 2021-01-10T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0045 | FromIterator implementation for Vector/Matrix can drop uninitialized memory | 2021-01-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0010 | panic safety: double drop may happen within `util::{mutate, mutate2}` | 2021-01-12T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0040 | panic safety: double drop or uninitialized drop of T upon panic | 2021-01-12T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0004 | Missing Send bound for Lazy | 2021-01-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2021-0013 | Soundness issues in `raw-cpuid` | 2021-01-20T12:00:00Z | 2023-06-13T13:10:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2021:4236 | Low: tcpdump security and bug fix update | 2021-11-09T08:48:42Z | 2021-11-12T10:20:56Z |
| alsa-2021:4241 | Moderate: libtiff security and bug fix update | 2021-11-09T08:50:38Z | 2021-11-12T10:21:01Z |
| alsa-2021:4251 | Moderate: openjpeg2 security update | 2021-11-09T08:51:11Z | 2021-11-12T10:21:01Z |
| alsa-2021:4256 | Moderate: graphviz security update | 2021-11-09T08:52:05Z | 2021-11-12T10:21:01Z |
| alsa-2021:4257 | Moderate: httpd:2.4 security, bug fix, and enhancement update | 2021-11-09T08:52:38Z | 2022-01-26T07:27:24Z |
| alsa-2021:4270 | Moderate: rust-toolset:rhel8 security, bug fix, and enhancement update | 2021-11-09T08:54:06Z | 2021-11-12T17:54:17Z |
| alsa-2021:4288 | Moderate: libjpeg-turbo security and bug fix update | 2021-11-09T08:56:07Z | 2021-11-12T10:21:01Z |
| alsa-2021:4292 | Moderate: squid:4 security, bug fix, and enhancement update | 2021-11-09T08:56:14Z | 2021-11-09T13:01:13Z |
| alsa-2021:4315 | Moderate: spamassassin security update | 2021-11-09T08:58:53Z | 2021-11-12T10:20:56Z |
| alsa-2021:4316 | Low: zziplib security update | 2021-11-09T08:59:11Z | 2021-11-12T10:21:01Z |
| alsa-2021:4319 | Moderate: compat-exiv2-026 security update | 2021-11-09T09:00:36Z | 2021-11-12T10:20:56Z |
| alsa-2021:4321 | Moderate: linuxptp security, bug fix, and enhancement update | 2021-11-09T09:00:47Z | 2021-11-12T10:20:56Z |
| alsa-2021:4324 | Moderate: python-psutil security update | 2021-11-09T09:01:04Z | 2021-11-12T10:20:56Z |
| alsa-2021:4325 | Moderate: lasso security and enhancement update | 2021-11-09T09:01:05Z | 2021-11-12T10:21:01Z |
| alsa-2021:4326 | Moderate: libX11 security update | 2021-11-09T09:01:07Z | 2021-11-12T10:20:56Z |
| alsa-2021:4339 | Moderate: grilo security update | 2021-11-09T09:02:57Z | 2021-11-12T10:21:01Z |
| alsa-2021:4356 | Moderate: kernel security, bug fix, and enhancement update | 2021-11-09T09:08:02Z | 2021-11-12T10:21:01Z |
| alsa-2021:4358 | Moderate: glibc security, bug fix, and enhancement update | 2021-11-09T09:08:59Z | 2021-11-12T10:21:01Z |
| alsa-2021:4361 | Moderate: NetworkManager security, bug fix, and enhancement update | 2021-11-09T09:11:14Z | 2021-11-12T10:21:01Z |
| alsa-2021:4364 | Moderate: binutils security update | 2021-11-09T09:11:20Z | 2021-11-12T10:20:56Z |
| alsa-2021:4368 | Moderate: openssh security update | 2021-11-09T09:11:41Z | 2021-11-12T10:20:56Z |
| alsa-2021:4373 | Low: pcre security update | 2021-11-09T09:12:45Z | 2023-03-13T16:33:45Z |
| alsa-2021:4374 | Moderate: file security update | 2021-11-09T09:13:30Z | 2021-11-12T10:21:01Z |
| alsa-2021:4381 | Moderate: GNOME security, bug fix, and enhancement update | 2021-11-09T09:15:15Z | 2021-11-12T10:21:01Z |
| alsa-2021:4384 | Moderate: bind security and bug fix update | 2021-11-09T09:16:00Z | 2021-11-12T10:20:56Z |
| alsa-2021:4385 | Moderate: glib2 security and bug fix update | 2021-11-09T09:16:02Z | 2021-11-12T10:21:01Z |
| alsa-2021:4386 | Low: gcc security and bug fix update | 2021-11-09T09:16:05Z | 2021-11-12T10:21:01Z |
| alsa-2021:4387 | Low: libssh security update | 2021-11-09T09:16:07Z | 2021-11-12T10:20:56Z |
| alsa-2021:4393 | Moderate: cups security and bug fix update | 2021-11-09T09:16:27Z | 2021-11-12T10:20:56Z |
| alsa-2021:4396 | Moderate: sqlite security update | 2021-11-09T09:16:47Z | 2021-11-12T10:20:56Z |