/v4/advisory, /v4/advisory/list, /v4/backup, and /v4/backup/{feed}src_ip and src_asn filters to vulncheck-canaries indexesmalicious-packages indexpypi, go, nuget and npmThis index contains information related to malicious extensions for Microsoft's Visual Studio Code.
Browse the malicious-vscode-exts index
Omron end of life notices are product status updates found on Zebra's product and notice pages indicating when specific hardware and software products have reached or are approaching end of sale, end of support, or end of life status. These pages provide information about discontinuation timelines, helping organizations plan equipment refresh cycles and maintain operational continuity.
Zebra end of life notices are product status updates found on Zebra's product and notice pages indicating when specific hardware and software products have reached or are approaching end of sale, end of support, or end of life status. These pages provide information about discontinuation timelines, helping organizations plan equipment refresh cycles and maintain operational continuity.
The Hewlett-Packard Enterprise EOL data feed contains data pertaining to the lifecycle of Hewlett-Packard Enterprise's product line, including end of sales and end of security support dates. The data is formatted to conform to the OpenEOX standard.
The Hewlett-Packard EOL data feed contains data pertaining to the lifecycle of Hewlett-Packard's product line, including end of sales and end of security support dates. The data is formatted to conform to the OpenEOX standard.
Citrix NetScaler ADC and Gateway Race Condition was added on Mar, 22 and is found in 3 products.
View more detail on CVE-2026-4368
Gravity SMTP REST API Sensitive Information Exposure was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2026-4020
Langflow Unauthenticated Public Flow Code Injection was added on Mar, 26 and is found in 1 product.
View more detail on CVE-2026-33017
Budibase Authentication Bypass via Webhook Path Pattern was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-31816
Citrix NetScaler ADC and Gateway Out-of-Bounds Read was added on Mar, 22 and is found in 3 products.
View more detail on CVE-2026-3055
WWBN AVideo Encoder getImage.php Command Injection was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-29058
Gradio Absolute Path Traversal Arbitrary File Read was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-28414
Sooperset MCP-Atlassian Arbitrary File Read SSRF was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2026-27826
Sooperset MCP-Atlassian Arbitrary File Write SSRF was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2026-27825
MJDM MajorDoMo Console Eval Remote Code Execution was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-27174
Progress ShareFile Authentication Bypass was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-2699
n8n Authenticated Workflow JS Destructuring Expression Evaluation RCE was added on Mar, 26 and is found in 1 product.
View more detail on CVE-2026-25049
MCPJam Inspector MCP Server Installation Remote Code Execution was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2026-23744
axllent Mailpit Server-Side Request Forgery was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2026-21859
Fortinet FortiClient EMS Unauthenticated Site Header SQL Injection was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-21643
WPFunnels Mail Mint Information Disclosure via Unauthenticated REST API was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2026-2025
Cisco Catalyst SD-WAN Manager API Authentication Bypass was added on Mar, 25 and is found in 1 product.
View more detail on CVE-2026-20129
Ivanti Endpoint Manager Authentication Bypass was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2026-1603
Featured Image From URL fifu-plugin.log Log File Information Exposure was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-9985
StoryChief WordPress Plugin webhook Arbitrary File Upload was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-7441
BMC FootPrints Password Reset Authentication Bypass was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-71257
SPIP Saisies PHP Code Injection Remote Code Execution was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2025-71243
LottieFiles Missing Authorization Settings Disclosure was added on Apr, 1 and is found in 1 product.
View more detail on CVE-2025-68043
Astro Cloudflare Adapter SSRF was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-58179
Dify remote-files Server-Side Request Forgery was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-56520
Agent0AI Agent-Zero download_work_dir_file Arbitrary File Download was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-55523
NestJS devtools-integration Unsafe Sandbox Remote Code Execution was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-54782
binarytorch LaRecipe Server-Side Template Injection Remote Code Execution was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-53833
APM Remote Code Execution was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-53521
Ubiquiti UniFi Access Backup Export Command Injection was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-52665
Samsung MagicINFO 9 Server Path Traversal Arbitrary File Upload was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-4632
LB-LINK Router set_hidessid_cfg Command Injection was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-45985
KUNBUS RevPi Webstatus Authentication Bypass was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-41646
Evertz SDVN 3080ipx-10G Authentication Bypass and Command Injection was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-4009
Smartbedded MeteoBridge template.cgi Command Injection was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-4008
codedropz Drag and Drop Multiple File Upload for Contact Form 7 Arbitrary File Upload was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-3515
ETQ Reliance Authentication Bypass via Trailing Space was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-34143
WeiPHP WeiPHP Path Traversal Arbitrary File Read was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-34045
Beward N100 ServerName or TimeZone Command Injection was added on Mar, 19 and is found in 1 product.
View more detail on CVE-2025-34042
Zhiyuan OA Platform wpsAssistServlet Arbitrary File Upload was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-34040
EnGenius EnShare Cloud Service usbinteract.cgi Command Injection was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-34035
Moodle Jmol Filter Local File Inclusion was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-34031
Karel IP1211 Local File Inclusion was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-34023
Infoblox NetMRI Login Unauthenticated SQL Injection was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-32814
mojoPortal BetterImageGallery imagehandler Directory Traversal was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-28367
Hirsch Enterphone MESH Default Credential Login was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-26793
File Away Plugin fileaway-stats Arbitrary File Read was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-2539
Omnissa Workspace ONE UEM Path Traversal was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-25231
Aquatronica Controller System Information Disclosure via tcp.php was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-25037
mySCADA myPRO Manager getSettings Authentication Credential Disclosure was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-22896
Landray EIS replyid SQL Injection was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-22214
HUSKY WooCommerce Products Filter woof_text_search Local File Inclusion was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-1661
Sangfor OSM Arbitrary File Upload was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2025-15503
WordPress ACF Extended Unauthenticated Remote Code Execution via prepare_form was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-13486
NUUO Camera log Parameter Command Injection was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2025-1338
Twonky Server Authentication Bypass Log File Exposure was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-13315
wpexperts Post SMTP Email Log Disclosure was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2025-11833
Elber ESE Authentication Bypass Password Reset was added on Mar, 29 and is found in 1 product.
View more detail on CVE-2025-0674
WPSwings WooCommerce Ultimate Gift Card Arbitrary File Upload was added on Mar, 26 and is found in 1 product.
View more detail on CVE-2024-8425
TP-Link Archer C20 Authentication Bypass via Referer Header was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2024-57049
Netgear DGN2200 Authentication Bypass via x=1.gif was added on Apr, 2 and is found in 1 product.
View more detail on CVE-2024-57046
MasterSAM Star Gate Directory Traversal File Read was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2024-55457
Brother MFC-L9570CDW Information Disclosure via mnt_info.csv was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2024-51977
Aviatrix Controller OS Command Injection was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2024-50603
NetAlertX logs.php Directory Traversal File Read was added on Mar, 24 and is found in 1 product.
View more detail on CVE-2024-48766
Dynamicweb Dynamicweb Unauthenticated Admin User Creation was added on Mar, 22 and is found in 1 product.
View more detail on CVE-2022-25369
Apache Continuum Command Injection was added on Mar, 22 and is found in 1 product.