Security DB

Security Vulnerabily database. Tracking patch and vulnerability datasource

Join the service (Beta)

Latest Software Updates

Produit Date
Symfony 2020-10-28 12:02:51
Celery 2020-10-28 06:02:45
Centreon 2020-10-27 18:02:25
Node.js 2020-10-27 18:02:23
Nginx 2020-10-27 18:02:22
Magento 2020-10-27 12:03:14
Redis 2020-10-27 12:03:07
Yoast SEO 2020-10-27 12:03:04
Stormshield 2020-10-27 12:03:01
Nextcloud 2020-10-24 12:03:32
Logstash 2020-10-24 00:02:42

Vulnerabilities of tracked products

Titre Date
Vigil@nce - OpenVPN: out-of-bounds memory reading via resolve_remote, analyzed on 28/08/2020 2020-10-28 12:01:25
Addressed remote code execution vulnerability in AvailableApps.php that allowed escalation of privileges in Western Digital My Cloud NAS devices prior to 5.04.114 (issue 3 of 3). 2020-10-28 06:02:31
Addressed remote code execution vulnerability in DsdkProxy.php due to insufficient sanitization and insufficient validation of user input in Western Digital My Cloud NAS devices prior to 5.04.114 2020-10-28 06:02:31
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. 2020-10-28 06:02:30
Potential sensitive information can be displayed in cleartext in FortiOS CLI window 2020-10-28 00:01:15
CERTFR-2020-AVI-680 : Multiples vulnérabilités dans Stormshield Network Security (27 octobre 2020) 2020-10-27 18:01:13
Ubuntu Security Notice USN-4602-2 2020-10-27 18:00:45
Ubuntu Security Notice USN-4583-2 2020-10-27 18:00:45
Ubuntu Security Notice USN-4605-1 2020-10-27 18:00:45
Ubuntu Security Notice USN-4604-1 2020-10-27 18:00:45
Ubuntu Security Notice USN-4599-2 2020-10-27 18:00:45
Ubuntu Security Notice USN-4562-2 2020-10-27 18:00:45
An out-of-bounds read in the JavaScript Interpreter in Facebook Hermes prior to commit 8cb935cd3b2321c46aa6b7ed8454d95c75a7fca0 allows attackers to cause a denial of service attack or possible further memory corruption via crafted JavaScript. 2020-10-27 12:02:52
postgresql:10: Multiple vulnerabilities 2020-10-27 12:02:43
java-1.8.0-openjdk: Multiple vulnerabilities 2020-10-27 12:02:40
VMWare: Multiple vulnerabilities 2020-10-27 12:02:40
tomcat: Multiple vulnerabilities 2020-10-27 12:02:40
Vigil@nce - Joomla Core: three vulnerabilities, analyzed on 26/08/2020 2020-10-27 12:01:17
CMS Made Simple 2.1.6 Server-Side Template Injection 2020-10-27 12:00:56
Ubuntu Security Notice USN-4602-1 2020-10-27 12:00:48
Ubuntu Security Notice USN-4593-2 2020-10-27 12:00:48
Ubuntu Security Notice USN-4552-2 2020-10-27 12:00:48
WordPress Plugin Rest Google Maps < 7.11.18 SQL Injection 2020-10-27 12:00:18
Vigil@nce - VMware ESXi, VMware vCenter Server: denial of service via Authentication Services, analyzed on 24/08/2020 2020-10-24 12:02:20
Vigil@nce - Squid cache: information disclosure via HTTP Request Smuggling, analyzed on 24/08/2020 2020-10-24 12:02:20
Vigil@nce - Squid cache: overload via Cache Digest Response, analyzed on 24/08/2020 2020-10-24 12:02:20
Vigil@nce - Squid cache: information disclosure via HTTP Request Splitting, analyzed on 24/08/2020 2020-10-24 12:02:20
Vigil@nce - Node.js next: open redirect, analyzed on 09/10/2020 2020-10-24 12:02:20
A CSRF vulnerability in Eyoucms v1.2.7 allows an attacker to add an admin account via login.php. 2020-10-24 00:02:21
VMware Horizon Client for Windows (5.x prior to 5.5.0) contains an information disclosure vulnerability. 2020-10-24 00:02:19