Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-63748 | N/A | QaTraq 6.9.2 allows authenticated users to upload… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:53:27.624Z |
| cve-2025-63917 | N/A | PDFPatcher thru 1.1.3.4663 executable's XML bookm… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:48:24.068Z |
| cve-2016-1019 | N/A | Adobe Flash Player 21.0.0.197 and earlier allows … |
n/a |
n/a |
2016-04-07T10:00:00.000Z | 2025-11-17T19:47:42.867Z |
| cve-2025-13298 | itsourcecode Web-Based Internet Laboratory Management … |
itsourcecode |
Web-Based Internet Laboratory Management System |
2025-11-17T19:32:06.284Z | 2025-11-17T19:45:18.247Z | |
| cve-2016-4117 | N/A | Adobe Flash Player 21.0.0.226 and earlier allows … |
n/a |
n/a |
2016-05-11T01:00:00.000Z | 2025-11-17T19:45:00.514Z |
| cve-2025-63747 | N/A | QaTraq 6.9.2 ships with administrative account cr… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:42:04.128Z |
| cve-2016-4171 | N/A | Unspecified vulnerability in Adobe Flash Player 2… |
n/a |
n/a |
2016-06-16T14:00:00.000Z | 2025-11-17T19:40:40.799Z |
| cve-2025-34247 | 5.1 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Netw… |
Advantech |
WebAccess/VPN |
2025-11-06T19:49:37.330Z | 2025-11-17T19:38:11.514Z |
| cve-2025-34246 | 5.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:49:01.611Z | 2025-11-17T19:38:11.350Z |
| cve-2025-34245 | 5.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:48:21.189Z | 2025-11-17T19:38:11.183Z |
| cve-2025-34244 | 5.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:47:41.796Z | 2025-11-17T19:38:11.026Z |
| cve-2025-34243 | 5.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:47:04.733Z | 2025-11-17T19:38:10.859Z |
| cve-2025-34242 | 8.6 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:46:20.183Z | 2025-11-17T19:38:10.701Z |
| cve-2025-34241 | 5.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via Ajax… |
Advantech |
WebAccess/VPN |
2025-11-06T19:45:39.944Z | 2025-11-17T19:38:10.537Z |
| cve-2025-34240 | 8.6 (v4.0) | Advantech WebAccess/VPN < 1.1.5 SQL Injection via AppM… |
Advantech |
WebAccess/VPN |
2025-11-06T19:45:02.692Z | 2025-11-17T19:38:10.379Z |
| cve-2025-34239 | 8.6 (v4.0) | Advantech WebAccess/VPN < 1.1.5 Command Injection in A… |
Advantech |
WebAccess/VPN |
2025-11-06T19:44:18.796Z | 2025-11-17T19:38:10.205Z |
| cve-2025-34238 | 6.9 (v4.0) | Advantech WebAccess/VPN < 1.1.5 Path Traversal via Aja… |
Advantech |
WebAccess/VPN |
2025-11-06T19:43:35.153Z | 2025-11-17T19:38:10.021Z |
| cve-2025-34237 | 6.3 (v4.0) | Advantech WebAccess/VPN < 1.1.5 Stored XSS via Standal… |
Advantech |
WebAccess/VPN |
2025-11-06T19:40:50.496Z | 2025-11-17T19:38:09.854Z |
| cve-2025-34236 | 6.2 (v4.0) | Advantech WebAccess/VPN < 1.1.5 Stored XSS via Network… |
Advantech |
WebAccess/VPN |
2025-11-06T19:39:40.112Z | 2025-11-17T19:38:09.659Z |
| cve-2018-4878 | N/A | A use-after-free vulnerability was discovered in … |
n/a |
Adobe Flash Player before 28.0.0.161 |
2018-02-06T20:00:00.000Z | 2025-11-17T19:33:19.689Z |
| cve-2019-9053 | N/A | An issue was discovered in CMS Made Simple 2.2.8.… |
n/a |
n/a |
2019-03-26T16:15:38.000Z | 2025-11-17T19:19:52.125Z |
| cve-2025-9501 | N/A | W3 Total Cache < 2.8.13 - Unauthenticated Command Injection |
Unknown |
W3 Total Cache |
2025-11-17T06:00:02.110Z | 2025-11-17T19:19:15.463Z |
| cve-2025-64276 | N/A | WordPress Survey Maker plugin <= 5.1.9.4 - Broken Acce… |
Ays Pro |
Survey Maker |
2025-11-13T09:24:31.911Z | 2025-11-17T19:18:03.008Z |
| cve-2025-64369 | N/A | WordPress Contact Form Email plugin <= 1.3.58 - Broken… |
codepeople |
Contact Form Email |
2025-11-13T09:24:33.215Z | 2025-11-17T19:16:59.884Z |
| cve-2025-4618 | 4.4 (v4.0) | Prisma Browser: Sensitive Information Disclosure Vulne… |
Palo Alto Networks |
Prisma Browser |
2025-11-14T17:53:38.487Z | 2025-11-17T19:14:40.902Z |
| cve-2020-25019 | N/A | jitsi-meet-electron (aka Jitsi Meet Electron) bef… |
n/a |
n/a |
2020-08-29T16:07:29.000Z | 2025-11-17T19:13:58.652Z |
| cve-2025-13246 | shsuishang ShopSuite ModulithShop JwtAuthenticationFil… |
shsuishang |
ShopSuite ModulithShop |
2025-11-16T10:02:05.658Z | 2025-11-17T19:12:55.781Z | |
| cve-2024-46335 | N/A | PHPGurukul Complaint Management System 2.0 is vul… |
n/a |
n/a |
2025-11-17T00:00:00.000Z | 2025-11-17T19:11:59.223Z |
| cve-2025-13247 | PHPGurukul Tourism Management System user-bookings.php… |
PHPGurukul |
Tourism Management System |
2025-11-16T10:32:07.025Z | 2025-11-17T19:10:08.929Z | |
| cve-2025-13248 | SourceCodester Patients Waiting Area Queue Management … |
SourceCodester |
Patients Waiting Area Queue Management System |
2025-11-16T11:02:06.412Z | 2025-11-17T19:08:48.358Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2022-002451 | Multiple vulnerabilities in SVMPC1 and SVMPC2 | 2022-10-13T17:27+09:00 | 2024-05-30T16:38+09:00 |
| jvndb-2023-000037 | Joruri Gw vulnerable to cross-site scripting | 2023-04-17T14:19+09:00 | 2024-05-30T16:19+09:00 |
| jvndb-2023-001493 | Multiple mobile printing apps for Android vulnerable to improper intent handling | 2023-04-13T11:09+09:00 | 2024-05-30T15:48+09:00 |
| jvndb-2023-000038 | EC-CUBE plugin "NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series)" vulnerable to authentication bypass | 2023-04-19T14:06+09:00 | 2024-05-30T15:11+09:00 |
| jvndb-2024-000056 | awkblog vulnerable to OS command injection | 2024-05-30T14:39+09:00 | 2024-05-30T14:39+09:00 |
| jvndb-2023-001411 | Yokogawa Electric CENTUM series vulnerable to cleartext storage of sensitive information | 2023-04-06T14:59+09:00 | 2024-05-29T18:23+09:00 |
| jvndb-2022-000097 | Multiple vulnerabilities in DENSHI NYUSATSU CORE SYSTEM | 2022-12-15T15:18+09:00 | 2024-05-29T17:40+09:00 |
| jvndb-2023-000031 | Multiple vulnerabilities in JustSystems products | 2023-04-04T15:22+09:00 | 2024-05-29T17:32+09:00 |
| jvndb-2023-000035 | Improper restriction of XML external entity references (XXE) in Shinseiyo Sogo Soft | 2023-04-19T14:49+09:00 | 2024-05-29T16:58+09:00 |
| jvndb-2023-000034 | JB Inquiry form vulnerable to exposure of private personal information to an unauthorized actor | 2023-04-14T15:48+09:00 | 2024-05-29T16:44+09:00 |
| jvndb-2023-000050 | Multiple vulnerabilities in WordPress Plugin "MW WP Form" and "Snow Monkey Forms" | 2023-05-15T14:29+09:00 | 2024-05-29T16:27+09:00 |
| jvndb-2024-000055 | Redmine DMSF Plugin vulnerable to path traversal | 2024-05-29T14:13+09:00 | 2024-05-29T14:13+09:00 |
| jvndb-2024-000054 | EC-Orange vulnerable to authorization bypass | 2024-05-29T14:06+09:00 | 2024-05-29T14:06+09:00 |
| jvndb-2024-003249 | ELECOM wireless LAN routers vulnerable to OS command injection | 2024-05-29T12:33+09:00 | 2024-05-29T12:33+09:00 |
| jvndb-2023-000040 | WordPress Plugin "Appointment and Event Booking Calendar for WordPress - Amelia" vulnerable to cross-site scripting | 2023-04-24T13:41+09:00 | 2024-05-28T16:59+09:00 |
| jvndb-2023-000039 | WordPress plugin "LIQUID SPEECH BALLOON" vulnerable to cross-site request forgery | 2023-04-19T14:24+09:00 | 2024-05-28T16:56+09:00 |
| jvndb-2024-000053 | Multiple vulnerabilities in Unifier and Unifier Cast | 2024-05-28T14:47+09:00 | 2024-05-28T14:47+09:00 |
| jvndb-2024-000052 | Multiple vulnerabilities in UTAU | 2024-05-28T14:23+09:00 | 2024-05-28T14:23+09:00 |
| jvndb-2023-001639 | Heap-based buffer overflow vulnerability in OMRON CX-Drive | 2023-04-25T14:31+09:00 | 2024-05-27T18:11+09:00 |
| jvndb-2023-000029 | Multiple vulnerabilities in Seiko Solutions SkyBridge MB-A100/A110/A200/A130 SkySpider MB-R210 | 2023-03-31T15:54+09:00 | 2024-05-27T17:08+09:00 |
| jvndb-2023-000059 | Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT | 2023-06-09T15:18+09:00 | 2024-05-27T16:38+09:00 |
| jvndb-2023-000043 | Multiple vulnerabilities in MicroEngine Mailform | 2023-05-10T13:57+09:00 | 2024-05-24T17:07+09:00 |
| jvndb-2023-000045 | WordPress Plugin "VK Blocks" and "VK All in One Expansion Unit" vulnerable to cross-site scripting | 2023-05-09T15:14+09:00 | 2024-05-24T17:05+09:00 |
| jvndb-2023-001926 | Cross-site Scripting Vulnerability in Hitachi Ops Center Analyzer | 2023-05-24T11:40+09:00 | 2024-05-24T17:01+09:00 |
| jvndb-2023-000047 | Beekeeper Studio vulnerable to code injection | 2023-05-12T16:42+09:00 | 2024-05-24T16:17+09:00 |
| jvndb-2023-000046 | SR-7100VN vulnerable to privilege escalation | 2023-05-09T13:58+09:00 | 2024-05-24T16:13+09:00 |
| jvndb-2023-000061 | Chatwork Desktop Application (Mac) vulnerable to code injection | 2023-06-13T13:38+09:00 | 2024-05-24T16:02+09:00 |
| jvndb-2023-002055 | Multiple vulnerabilities in KbDevice digital video recorders | 2023-06-07T11:52+09:00 | 2024-05-24T15:57+09:00 |
| jvndb-2023-000049 | Multiple vulnerabilities in Cybozu Garoon | 2023-05-15T14:29+09:00 | 2024-05-24T15:26+09:00 |
| jvndb-2024-000051 | Splunk Config Explorer vulnerable to cross-site scripting | 2024-05-24T13:50+09:00 | 2024-05-24T13:50+09:00 |