| 282455 | Smartbedded Meteobridge < 6.2 RCE (CVE-2025-4008) | high |
| 282328 | Atlassian Confluence < 8.5.31 / 8.6.x < 9.2.13 / 9.3.x < 10.2.2 (CONFSERVER-101788) | critical |
| 282325 | Atlassian Confluence < 8.5.10 / 9.2.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101477) | high |
| 282324 | Atlassian Confluence < 8.5.17 / 8.6.x < 9.2.6 / 9.3.1 < 9.4.0 / 9.5.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101480) | high |
| 282323 | Atlassian Confluence < 8.5.10 / 8.6.x < 9.2.5 / 9.3.x < 9.3.1 / 9.4.x < 9.5.1 / 10.0.x < 10.0.2 (CONFSERVER-101479) | high |
| 282322 | Atlassian Confluence 10.1.x< 10.1.1 (CONFSERVER-101485) | high |
| 282321 | Atlassian Confluence < 9.2.6 / 9.3.x < 9.4.0 / < 9.4.0 / 9.5.x < 9.5.2 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101488) | critical |
| 282316 | HPE OneView RCE (CVE-2025-37164) | critical |
| 281853 | Joomla 3.9.x < 5.4.2 / 6.0.x < 6.0.2 Joomla 6.0.2 & 5.4.2 Security & Bugfix Release (5942-joomla-6-0-2-and-5-4-2-security-bugfix-release) | high |
| 281846 | Atlassian Confluence < 8.5.18 / 8.6.x < 9.2.1 / 9.3.x < 9.3.1 / 9.4.x < 9.5.4 / 10.0.x < 10.0.2 / 10.1.0 (CONFSERVER-101486) | high |
| 280123 | Mattermost Server 10.11.x < 10.11.8 / 10.12.x < 10.12.4 / 11.0.x <= 11.0.6 / 11.1.x <= 11.1.1 Improper Authentication (MMSA-2025-00555) | high |
| 279436 | WatchGuard Firebox OS 11.x / 12.x < 12.3.1_Update4 12.4.x < 12.5.15 / 12.6.x < 12.11.6 / 2025.x < 2025.1.4 Out of Bounds Write (CVE-2025-14733) | critical |
| 279415 | PHP 8.1.x < 8.1.34 Multiple Vulnerabilities | high |
| 279274 | PHP 8.2.x < 8.2.30 Multiple Vulnerabilities | high |
| 279270 | PHP 8.4.x < 8.4.16 Multiple Vulnerabilities | high |
| 279128 | PHP 8.5.x < 8.5.1 Multiple Vulnerabilities | high |
| 279127 | PHP 8.3.x < 8.3.29 Multiple Vulnerabilities | high |
| 279000 | SonicWall SMA 1000 Series <= 12.4.3-03093 / 12.5.x <= 12.5.0-02283 Local Privilege Escalation (SNWLID-2025-0019) | medium |
| 278978 | Kibana 7.0.x < 8.19.8 / 9.0.x < 9.1.8 / 9.2.x < 9.2.2 XSS (ESA-2025-28) | medium |
| 278526 | Unraid < 6.8.1 Multiple Vulnerabilities | critical |
| 278130 | Jenkins plugins Multiple Vulnerabilities (2025-12-10) | medium |
| 278129 | Jenkins LTS < 2.528.3 / Jenkins weekly < 2.541 Multiple Vulnerabilities | medium |
| 278112 | WordPress Plugin 'Sneeit Framework' < 8.4 Code Execution | critical |
| 278111 | Mattermost Server 10.5.x <= 10.5.12 / 10.11.x <= 10.11.4 Improper Access Control (MMSA-2025-00517) | medium |
| 278110 | Mattermost Server 10.5.x <= 10.5.12 / 10.11.x <= 10.11.4 / 10.12.x <= 10.12.1 / 11.0.x <= 11.0.3 Improper Authentication (MMSA-2025-00547) | critical |
| 278109 | Mattermost Server 10.5.x <= 10.5.12 / 10.11.x <= 10.11.4 / 10.12.x <= 10.12.1 / 11.0.x <= 11.0.2 Multiple Vulnerabilities (CVE-2025-12421, MMSA-2025-00526, CVE-2025-12756) | critical |
| 277601 | rConfig RCE (CVE-2020-10221) | high |
| 277585 | React Server Components 19.0 / 19.1.0 / 19.1.1 / 19.2.0 Remote Code Execution (React2Shell) | critical |
| 277584 | WatchGuard Firebox OS 2025.1 / 12.x < 12.11.4 / 12.5.x < 12.5.13 / 11.x Out of Bounds Write Vulnerability | critical |
| 277116 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1204) | medium |
| 277115 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.1 (SVD-2025-1203) | medium |
| 277114 | Splunk Enterprise 9.2 < 9.2.10, 9.3 < 9.3.8, 9.4 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1202) | medium |
| 277113 | Splunk Enterprise 9.2 < 9.2.10, 9.3 < 9.3.8, 9.4 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1208) | medium |
| 277112 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1201) | medium |
| 277111 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1206) | medium |
| 277110 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1209) | high |
| 277109 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.2 (SVD-2025-1205) | medium |
| 277106 | Splunk Enterprise 9.2.0 < 9.2.10, 9.3.0 < 9.3.8, 9.4.0 < 9.4.6, 10.0 < 10.0.1 (SVD-2025-1207) | low |
| 276820 | Apache Roller < 6.1.5 Insufficient Session Expiration on Password Change (CVE-2025-24859) | high |
| 275872 | Kibana 8.12.x < 8.19.7 / 9.1.x < 9.1.7 / 9.2.x < 9.2.1 (ESA-2025-24) | medium |
| 275848 | Atlassian Confluence < 8.5.25 / 8.6.x < 9.2.7 / 9.3.x < 10.0.2 (CONFSERVER-100907) | high |
| 275845 | Mattermost Server < 11.0.0 Multiple Vulnerabilities (MMSA-2024-00337, MMSA-2025-00493, MMSA-2025-00540) | high |
| 275844 | Mattermost Server 10.5.x < 10.5.12 / 10.11.x 10.11.4 / 10.12.x < 10.12.1 / 11.0.0 Multiple Vulnerabilities (MMSA-2025-00541, MMSA-2025-00492) | medium |
| 275839 | Mattermost Server 10.5.x < 10.5.12 / 10.11.x 10.11.4 / 11.0.0 Missing Authorization (MMSA-2025-00518) | medium |
| 275455 | ManageEngine OpManager Stored XSS (CVE-2025-9227) | medium |
| 275434 | NetScaler ADC and NetScaler Gateway XSS (CTX695486) | medium |
| 275249 | Drupal 8.x/9.x/10.x < 10.4.9 / 10.5.x < 10.5.6 / 11.1.x < 11.1.9 / 11.2.x < 11.2.8 Multiple Vulnerabilities (drupal-2025-11-12) | critical |
| 275170 | Splunk Enterprise 9.2.0 < 9.2.9, 9.3.0 < 9.3.7, 9.4.0 < 9.4.5, 10.0.0 < 10.0.1 (SVD-2025-1101) | low |
| 275169 | Splunk Enterprise 9.2.0 < 9.2.9, 9.3.0 < 9.3.7, 9.4.0 < 9.4.5, 10.0.0 < 10.0.1 (SVD-2025-1102) | low |
| 275168 | Splunk Enterprise 9.2.0 < 9.2.9, 9.3.0 < 9.3.7, 9.4.0 < 9.4.5, 10.0.0 < 10.0.1 (SVD-2025-1103) | high |
