EUVD security advisories are official notifications released by the European Union to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure security.
CommVault security advisories are official notifications released by CommVault to address security vulnerabilities and updates. These advisories provide important information about the vulnerabilities, their potential impact, and recommendations for users to apply necessary patches or updates to ensure the security of their systems.
Data about new vulnerabilities come directly from Go package maintainers or sources such as MITRE and GitHub. Reports are curated by the Go Security team.
Casbin Casdoor Authorization Bypass for creating an admin account was added on May, 4 and is found in 1 product.
View more detail on CVE-2025-4210
Commvault Innovation Unauthenticated Upload RCE was added on Apr, 28 and is found in 1 product.
View more detail on CVE-2025-34028
WinZip Alternative Data Stream Propagation Bypass was added on May, 4 and is found in 1 product.
View more detail on CVE-2025-33028
Erlang OTP SSH Server Authentication Bypass was added on Apr, 23 and is found in 1 product.
View more detail on CVE-2025-32433
Craft CMS Generate Transform RCE was added on May, 1 and is found in 1 product.
View more detail on CVE-2025-32432
SAP NetWeaver Visual Composer Arbitrary File Upload was added on Apr, 30 and is found in 1 product.
View more detail on CVE-2025-31324
CrushFTP Authorization Bypass RCE was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-31161
Vite Arbitrary File Disclosure was added on Apr, 3 and is found in 1 product.
View more detail on CVE-2025-30208
Apache Parquet Avro Deserialization was added on Apr, 24 and is found in 1 product.
View more detail on CVE-2025-30065
Next.js Authorization Middleware Bypass was added on Mar, 23 and is found in 1 product.
View more detail on CVE-2025-29927
FoxCMS Case Display Page Command Injection was added on Apr, 30 and is found in 1 product.
View more detail on CVE-2025-29306
CrushFTP Authorization Bypass RCE was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-2825
Apache Camel Header Filter Bypass RCE was added on Apr, 6 and is found in 1 product.
View more detail on CVE-2025-27636
Apache Tomcat partial PUT CVE-2025-24813 Java Deserialization RCE was added on Mar, 18 and is found in 1 product.
View more detail on CVE-2025-24813
GLPI PDFFont Remote Code Execution was added on Apr, 17 and is found in 1 product.
View more detail on CVE-2025-24801
GLPI Blind SQL Injection Credential Leak was added on Apr, 6 and is found in 1 product.
View more detail on CVE-2025-24799
Windows 11 NTLMv2 Hash Leak was added on Apr, 24 and is found in 1 product.
View more detail on CVE-2025-24054
Ivanti Connect Secure X-Forwarded-For Buffer Overflow was added on Apr, 16 and is found in 3 products.
View more detail on CVE-2025-22457
Kubernetes ingress-nginx admission controller RCE was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-1974
Citrix NetScaler Console Session ID Disclosure was added on Apr, 29 and is found in 1 product.
View more detail on CVE-2024-6235
GeoVision ntpdate.sh Command Injection was added on May, 15 and is found in 20 products.
View more detail on CVE-2024-6047
Appsmith Postgres Insecure Configuration RCE was added on Apr, 6 and is found in 1 product.
View more detail on CVE-2024-55963
Fortinet FortiSwitch Unauthenticated Admin Password Reset was added on Apr, 15 and is found in 1 product.
View more detail on CVE-2024-48887
Sitecore XP Information Disclosure was added on Mar, 17 and is found in 1 product.
View more detail on CVE-2024-46938
SonicWall SMA100 Arbitrary File Leak was added on May, 4 and is found in 1 product.
View more detail on CVE-2024-38475
Splunk Preauth Path Traversal was added on Mar, 30 and is found in 1 product.
View more detail on CVE-2024-36991
SysAid On-Premises Authenticated RCE was added on May, 14 and is found in 1 product.
View more detail on CVE-2024-36394
WordPress Royal Elementor Addons Plugins Arbitrary File Upload RCE was added on Apr, 3 and is found in 1 product.
View more detail on CVE-2023-5360
MajorDoMo thumb.php Command Injection was added on Apr, 10 and is found in 1 product.
View more detail on CVE-2023-50917
NETGEAR NMS300 Arbitrary File Upload was added on Apr, 17 and is found in 1 product.
View more detail on CVE-2023-38098
frangoteam FUXA Command Injection RCE was added on May, 12 and is found in 1 product.
View more detail on CVE-2023-33831
Magnus Solution Magnus Billing Unauthenticated Command Injection was added on May, 8 and is found in 1 product.
View more detail on CVE-2023-30258
Ivanti Endpoint Manager .NET Remoting Endpoint RCE was added on Apr, 9 and is found in 1 product.
View more detail on CVE-2023-28324
Authentication Bypass / Password Retrieval was added on May, 11 and is found in 1 product.
View more detail on CVE-2023-26258
Netatalk GetAppl Heap Buffer Overflow was added on Mar, 27 and is found in 1 product.
View more detail on CVE-2022-45188
FortiOS SSL-VPN /remote/error Heap Overflow was added on Apr, 17 and is found in 2 products.
View more detail on CVE-2022-42475
Netatalk CopyApplFile Stack Buffer Overflow was added on Mar, 19 and is found in 1 product.
View more detail on CVE-2022-23125
Polkit Out-of-Bounds Read and Write Vulnerability was added on Apr, 21 and is found in 1 product.
View more detail on CVE-2021-4034
VMware vCenter Server OVA Upload RCE was added on Mar, 20 and is found in 1 product.
View more detail on CVE-2021-21972
ManageEngine Desktop Central Deserialization RCE (mdmLogUploader) was added on Mar, 25 and is found in 1 product.