month report
December 2005
Data as of Jun 4, 2026, 13:24 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
December 2005 closed with 693 published CVEs — +179.4% YoY . 22 criticals, microsoft led volume, mostly via ie. Biggest breakout: phpbb group at ×4.0 their 12-month median. Top weakness class — CWE-89 (25 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
693
— MoM+179.4% YoY
Severity mix
22 / 288
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.3%
2 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
7380.9
n=2
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in December 2005
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
89SQL Injection119Memory Buffer Bounds79XSS264CWE-26420Improper Input Validation200Information Exposure189CWE-189287Improper Authentication399CWE-39994Code Injectionmicrosoft11apple11gentoo foundation inc.21сообщество свободного программного обеспечения3efiction projectmacromediaphpmyadmin1hitachilyris technologies incsunblackboardhorde1
Breakout vendors
CVE count ≥3× their own 12-period median.
- 4.0×phpbb group4 CVE
- 3.5×phpmyadmin7 CVE
- 3.0×xpdf3 CVE
- 3.0×david harris3 CVE
- 3.0×mcafee3 CVE
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #5efiction project7 CVE
- #8hitachi6 CVE
- #9lyris technologies inc6 CVE
- #11blackboard5 CVE
- #15cfmagic4 CVE
- #17coinsoft technologies4 CVE
- #18deerfield4 CVE
- #19fad solutions4 CVE
- #21iatek4 CVE
- #22icewarp4 CVE
Top vendors
Ranked by distinct CVE count this period.
- 12 CVECVSS 6.6PoC 1ie (5) · windows 2003 server (4) · internet explorer (4)
- 9 CVECVSS 6.7mac os x server (8) · mac os x (6) · itunes (1)
- 9 CVECVSS 6.7gentoo linux (9)
- 8 CVECVSS 5.1PoC 2debian gnu/linux (8)
- 7 CVECVSS 6.3NEWPoC 3efiction (7)
- 7 CVECVSS 6.0PoC 1coldfusion (4) · jrun (2) · flash media server (1)
- 7 CVECVSS 6.5×3.5PoC 1phpmyadmin (7)
- 6 CVECVSS 6.1NEWbusiness logic (3) · cosminexus collaboration portal (2) · groupmax collaboration portal (2)
- 6 CVECVSS 5.9NEWPoC 1listmanager (6)
- 6 CVECVSS 5.3java communications services delegated administrator (1) · java system application server (1) · netra 1280 (1)
- 5 CVE1 critCVSS 6.6NEWPoC 1academic suite (5)
- 5 CVECVSS 3.8PoC 1horde application framework (1) · imp (1) · kronolith h3 (1)
- 5 CVE1 critCVSS 6.2aix (4) · websphere application server (1)
- 5 CVECVSS 5.2PoC 4mantis (5)
- 4 CVECVSS 5.6NEWmagic forum personal (2) · magic list pro (1) · magic book professional (1)
- 4 CVE1 critCVSS 7.8ios (2) · catalyst 2948g-l3 (1) · catalyst 2950 (1)
- 4 CVECVSS 6.3NEWPoC 2phpcoin (4)
- 4 CVECVSS 6.0NEWPoC 1visnetic mail server (4)
- 4 CVECVSS 6.0NEWdrzes hms (4)
- 4 CVE1 critCVSS 8.3hp-ux (3) · systems insight manager (1)
- 4 CVECVSS 4.9NEWPoC 1intranetapp (1) · portalapp (1) · projectapp (1)
- 4 CVECVSS 6.0NEWPoC 1web mail (4)
- 4 CVECVSS 7.4NEWPoC 1mailenable enterprise (4) · mailenable professional (3)
- 4 CVECVSS 6.0NEWPoC 1mail server (4)
- 4 CVECVSS 5.0×4.0PoC 1phpbb (4)
- 4 CVECVSS 5.5NEWPoC 1statistik (4)
- 4 CVECVSS 6.9serverprotect (2) · pc-cillin 2005 (1) · serverprotect earthagent (1)
- 4 CVECVSS 6.8NEWportal solutions (2) · keyword frequency counter (1) · edating professional (1)
- 4 CVECVSS 6.3NEWwebcalendar (4)
- 3 CVE2 critCVSS 8.3NEWnetvanta (3)
- 3 CVECVSS 7.2PoC 1modular messaging message storage server (1) · tn2602ap ip media resource 320 circuit pack (1) · wireless ap-3 (1)
- 3 CVECVSS 4.5NEWPoC 1ica program neighborhood client (1) · metaframe secure access manager (1) · nfuse (1)
- 3 CVECVSS 6.1NEWcommunity enterprise (3)
- 3 CVECVSS 5.9×3.0PoC 1pegasus mail (2) · mercury mail transport system (1)
- 3 CVECVSS 4.9NEWdrupal (3)
- 3 CVECVSS 6.4NEWPoC 2trac (3)
- 3 CVE1 critCVSS 6.3NEWPoC 3flatnuke (3)
- 3 CVECVSS 6.9NEWPoC 1ftgate (3)
- 3 CVECVSS 7.5NEWPoC 2orca blog (1) · orca knowledgebase (1) · orca ringmaker (1)
- 3 CVECVSS 5.8NEWezdatabase (3)
- 3 CVECVSS 5.6NEWPoC 2limbo cms (3)
- 3 CVECVSS 4.0PoC 2linux kernel (3)
- 3 CVECVSS 5.7NEWPoC 1logisphere (3)
- 3 CVECVSS 6.4×3.0virusscan security center (1) · mcinsctl.dll (1) · common management agent (1)
- 3 CVECVSS 4.3NEWamazon search directory (1) · hot links pro (1) · hot links sql (1)
- 3 CVECVSS 4.6NEWdev hound (3)
- 3 CVECVSS 6.4NEWPoC 1php fusion (3)
- 3 CVECVSS 6.4NEWlink up gold (2) · ad manager pro (1)
- 3 CVECVSS 6.4NEWPoC 2plogger (3)
- 3 CVECVSS 6.1NEWtoendacms (3)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | microsoft | 12 | · | · | · | PoC 1 | ie (5) · windows 2003 server (4) · internet explorer (4) | — | |
| 2 | apple | 9 | · | · | · | mac os x server (8) · mac os x (6) · itunes (1) | — | ||
| 3 | gentoo foundation inc. | 9 | · | · | · | gentoo linux (9) | — | ||
| 4 | сообщество свободного программного обеспечения | 8 | · | · | · | PoC 2 | debian gnu/linux (8) | — | |
| 5 | efiction project | 7 | · | · | · | NEWPoC 3 | efiction (7) | — | |
| 6 | macromedia | 7 | · | · | · | PoC 1 | coldfusion (4) · jrun (2) · flash media server (1) | — | |
| 7 | phpmyadmin | 7 | · | · | · | ×3.5PoC 1 | phpmyadmin (7) | — | |
| 8 | hitachi | 6 | · | · | · | NEW | business logic (3) · cosminexus collaboration portal (2) · groupmax collaboration portal (2) | — | |
| 9 | lyris technologies inc | 6 | · | · | · | NEWPoC 1 | listmanager (6) | — | |
| 10 | sun | 6 | · | · | · | java communications services delegated administrator (1) · java system application server (1) · netra 1280 (1) | — | ||
| 11 | blackboard | 5 | 1 | · | · | NEWPoC 1 | academic suite (5) | — | |
| 12 | horde | 5 | · | · | · | PoC 1 | horde application framework (1) · imp (1) · kronolith h3 (1) | — | |
| 13 | ibm | 5 | 1 | · | · | aix (4) · websphere application server (1) | — | ||
| 14 | mantis | 5 | · | · | · | PoC 4 | mantis (5) | — | |
| 15 | cfmagic | 4 | · | · | · | NEW | magic forum personal (2) · magic list pro (1) · magic book professional (1) | — | |
| 16 | cisco | 4 | 1 | · | · | ios (2) · catalyst 2948g-l3 (1) · catalyst 2950 (1) | — | ||
| 17 | coinsoft technologies | 4 | · | · | · | NEWPoC 2 | phpcoin (4) | — | |
| 18 | deerfield | 4 | · | · | · | NEWPoC 1 | visnetic mail server (4) | — | |
| 19 | fad solutions | 4 | · | · | · | NEW | drzes hms (4) | — | |
| 20 | hp | 4 | 1 | · | · | hp-ux (3) · systems insight manager (1) | — | ||
| 21 | iatek | 4 | · | · | · | NEWPoC 1 | intranetapp (1) · portalapp (1) · projectapp (1) | — | |
| 22 | icewarp | 4 | · | · | · | NEWPoC 1 | web mail (4) | — | |
| 23 | mailenable | 4 | · | · | · | NEWPoC 1 | mailenable enterprise (4) · mailenable professional (3) | — | |
| 24 | merak | 4 | · | · | · | NEWPoC 1 | mail server (4) | — | |
| 25 | phpbb group | 4 | · | · | · | ×4.0PoC 1 | phpbb (4) | — | |
| 26 | php web | 4 | · | · | · | NEWPoC 1 | statistik (4) | — | |
| 27 | trend micro | 4 | · | · | · | serverprotect (2) · pc-cillin 2005 (1) · serverprotect earthagent (1) | — | ||
| 28 | web4future | 4 | · | · | · | NEW | portal solutions (2) · keyword frequency counter (1) · edating professional (1) | — | |
| 29 | webcalendar | 4 | · | · | · | NEW | webcalendar (4) | — | |
| 30 | adtran | 3 | 2 | · | · | NEW | netvanta (3) | — | |
| 31 | avaya | 3 | · | · | · | PoC 1 | modular messaging message storage server (1) · tn2602ap ip media resource 320 circuit pack (1) · wireless ap-3 (1) | — | |
| 32 | citrix | 3 | · | · | · | NEWPoC 1 | ica program neighborhood client (1) · metaframe secure access manager (1) · nfuse (1) | — | |
| 33 | citysoft | 3 | · | · | · | NEW | community enterprise (3) | — | |
| 34 | david harris | 3 | · | · | · | ×3.0PoC 1 | pegasus mail (2) · mercury mail transport system (1) | — | |
| 35 | drupal | 3 | · | · | · | NEW | drupal (3) | — | |
| 36 | edgewall software | 3 | · | · | · | NEWPoC 2 | trac (3) | — | |
| 37 | flatnuke | 3 | 1 | · | · | NEWPoC 3 | flatnuke (3) | — | |
| 38 | floosietek | 3 | · | · | · | NEWPoC 1 | ftgate (3) | — | |
| 39 | greywyvern | 3 | · | · | · | NEWPoC 2 | orca blog (1) · orca knowledgebase (1) · orca ringmaker (1) | — | |
| 40 | indexcor | 3 | · | · | · | NEW | ezdatabase (3) | — | |
| 41 | limbo cms | 3 | · | · | · | NEWPoC 2 | limbo cms (3) | — | |
| 42 | linux | 3 | · | · | · | PoC 2 | linux kernel (3) | — | |
| 43 | logisphere | 3 | · | · | · | NEWPoC 1 | logisphere (3) | — | |
| 44 | mcafee | 3 | · | · | · | ×3.0 | virusscan security center (1) · mcinsctl.dll (1) · common management agent (1) | — | |
| 45 | mr. cgi guy | 3 | · | · | · | NEW | amazon search directory (1) · hot links pro (1) · hot links sql (1) | — | |
| 46 | nexus concepts | 3 | · | · | · | NEW | dev hound (3) | — | |
| 47 | php fusion | 3 | · | · | · | NEWPoC 1 | php fusion (3) | — | |
| 48 | php web scripts | 3 | · | · | · | NEW | link up gold (2) · ad manager pro (1) | — | |
| 49 | plogger | 3 | · | · | · | NEWPoC 2 | plogger (3) | — | |
| 50 | toenda software development | 3 | · | · | · | NEW | toendacms (3) | — |