Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-40394 | 4 (v3.1) | Varnish Cache 9 before 9.0.1 and Varnish Enterpri… |
varnish-software |
Varnish Cache |
2026-04-12T19:17:34.334Z | 2026-04-13T15:45:55.804Z |
| cve-2026-40393 | 8.1 (v3.1) | In Mesa before 25.3.6 and 26 before 26.0.1, out-o… |
mesa3d |
Mesa |
2026-04-12T18:49:18.984Z | 2026-04-13T15:47:05.804Z |
| cve-2026-40386 | 4 (v3.1) | In libexif through 0.6.25, an integer underflow i… |
libexif project |
libexif |
2026-04-12T18:19:08.684Z | 2026-04-14T16:33:07.044Z |
| cve-2026-40385 | 4 (v3.1) | In libexif through 0.6.25, an unsigned 32bit inte… |
libexif project |
libexif |
2026-04-12T18:16:30.420Z | 2026-04-14T16:33:12.567Z |
| cve-2019-25713 | 7.1 (v4.0) 7.1 (v3.1) | MyT-PM 1.5.1 SQL Injection via Charge[group_total] Parameter |
MyT |
Project Management |
2026-04-12T12:28:57.031Z | 2026-04-13T17:28:06.510Z |
| cve-2019-25712 | 6.9 (v4.0) 6.2 (v3.1) | BlueAuditor 1.7.2.0 Buffer Overflow Denial of Service … |
NSauditor |
BlueAuditor |
2026-04-12T12:28:56.276Z | 2026-04-13T18:16:09.521Z |
| cve-2019-25711 | 6.9 (v4.0) 6.2 (v3.1) | SpotFTP Password Recover 2.4.2 Denial of Service via N… |
NSauditor |
SpotFTP Password Recover |
2026-04-12T12:28:55.601Z | 2026-04-13T15:13:03.838Z |
| cve-2019-25710 | 8.8 (v4.0) 8.2 (v3.1) | Dolibarr ERP-CRM 8.0.4 SQL Injection via rowid Parameter |
Dolibarr |
Dolibarr ERP-CRM |
2026-04-12T12:28:54.936Z | 2026-04-13T12:07:35.021Z |
| cve-2019-25709 | 9.3 (v4.0) 9.8 (v3.1) | CF Image Hosting Script 1.6.5 Unauthorized Database Access |
Davidtavarez |
CF Image Hosting Script |
2026-04-12T12:28:54.207Z | 2026-04-15T15:24:31.713Z |
| cve-2019-25708 | 5.3 (v4.0) 4.3 (v3.1) | Heatmiser Wifi Thermostat 1.7 Cross-Site Request Forgery |
Heatmiser |
Heatmiser Wifi Thermostat |
2026-04-12T12:28:53.542Z | 2026-04-13T18:06:18.134Z |
| cve-2019-25707 | 7.1 (v4.0) 7.1 (v3.1) | eBrigade ERP 4.5 SQL Injection via pdf.php |
Ebrigade |
eBrigade ERP |
2026-04-12T12:28:52.833Z | 2026-04-13T17:28:35.299Z |
| cve-2019-25706 | 8.7 (v4.0) 7.5 (v3.1) | Across DR-810 ROM-0 Unauthenticated File Disclosure |
Across |
DR-810 |
2026-04-12T12:28:52.102Z | 2026-04-13T18:16:20.733Z |
| cve-2019-25705 | 8.6 (v4.0) 8.4 (v3.1) | Echo Mirage 3.1 Stack Buffer Overflow via Rules Action Field |
Sourceforge |
Echo Mirage |
2026-04-12T12:28:51.242Z | 2026-04-13T15:30:51.755Z |
| cve-2019-25703 | 7.1 (v4.0) 7.1 (v3.1) | ImpressCMS 1.3.11 SQL Injection via bid Parameter |
Impresscms |
ImpressCMS |
2026-04-12T12:28:50.523Z | 2026-04-13T12:08:59.239Z |
| cve-2019-25701 | 8.6 (v4.0) 8.4 (v3.1) | Easy Video to iPod Converter 1.6.20 Local Buffer Overf… |
Divxtodvd |
Easy Video to iPod Converter |
2026-04-12T12:28:49.786Z | 2026-04-15T15:22:49.255Z |
| cve-2019-25699 | 7.1 (v4.0) 7.1 (v3.1) | Newsbull Haber Script 1.0.0 Authenticated SQL Injectio… |
Newsbull |
Newsbull Haber Script |
2026-04-12T12:28:49.056Z | 2026-04-13T18:06:18.270Z |
| cve-2019-25697 | 8.8 (v4.0) 8.2 (v3.1) | CMSsite 1.0 SQL Injection via category.php |
VictorAlagwu |
CMSsite |
2026-04-12T12:28:48.309Z | 2026-04-13T17:29:00.738Z |
| cve-2019-25695 | 8.6 (v4.0) 8.4 (v3.1) | R 3.4.4 Local Buffer Overflow Windows XP SP3 |
r-project |
R |
2026-04-12T12:28:47.555Z | 2026-04-13T18:16:31.139Z |
| cve-2019-25693 | 7.1 (v4.0) 7.1 (v3.1) | ResourceSpace 8.6 SQL Injection via collection_edit.php |
Resourcespace |
ResourceSpace |
2026-04-12T12:28:46.757Z | 2026-04-13T15:36:40.688Z |
| cve-2019-25691 | 8.6 (v4.0) 8.4 (v3.1) | Faleemi Desktop Software 1.8 Local Buffer Overflow SEH… |
Faleemi |
Faleemi Desktop Software |
2026-04-12T12:28:45.957Z | 2026-04-13T12:11:35.418Z |
| cve-2019-25689 | 8.6 (v4.0) 8.4 (v3.1) | HTML5 Video Player 1.2.5 Local Buffer Overflow Non-SEH |
Html5Videoplayer |
HTML5 Video Player |
2026-04-12T12:28:45.236Z | 2026-04-15T15:21:21.456Z |
| cve-2018-25258 | 8.6 (v4.0) 8.4 (v3.1) | RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass |
R-Project |
RGui |
2026-04-12T12:28:44.496Z | 2026-04-13T18:06:18.442Z |
| cve-2018-25257 | 7.1 (v4.0) 7.1 (v3.1) | Adianti Framework 5.5.0 and 5.6.0 SQL Injection via Profile |
adianti |
Adianti Framework |
2026-04-12T12:28:43.786Z | 2026-04-13T17:29:36.448Z |
| cve-2017-20239 | 5.1 (v4.0) 6.1 (v3.1) | MDwiki Cross-Site Scripting via Location Hash Parameter |
Dynalon |
MDwiki |
2026-04-12T12:28:42.926Z | 2026-04-13T18:16:41.208Z |
| cve-2026-6126 | zhayujie chatgpt-on-wechat CowAgent Administrative HTT… |
zhayujie |
chatgpt-on-wechat CowAgent |
2026-04-12T10:30:12.107Z | 2026-04-13T12:24:50.364Z | |
| cve-2026-6125 | Dromara warm-flow Workflow Definition save-json SpelHe… |
Dromara |
warm-flow |
2026-04-12T09:30:22.132Z | 2026-04-13T17:47:46.421Z | |
| cve-2026-6124 | Tenda F451 httpd SafeMacFilter fromSafeMacFilter stack… |
Tenda |
F451 |
2026-04-12T09:00:18.190Z | 2026-04-14T16:33:20.025Z | |
| cve-2026-6123 | Tenda F451 httpd addressNat fromAddressNat stack-based… |
Tenda |
F451 |
2026-04-12T08:15:11.890Z | 2026-04-13T20:51:33.016Z | |
| cve-2026-6122 | Tenda F451 httpd L7Prot frmL7ProtForm stack-based overflow |
Tenda |
F451 |
2026-04-12T07:30:14.700Z | 2026-04-14T19:37:43.798Z | |
| cve-2026-6121 | Tenda F451 httpd WrlclientSet stack-based overflow |
Tenda |
F451 |
2026-04-12T07:15:13.799Z | 2026-04-13T12:13:51.214Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2005-000761 | Norton AntiVirus causes abnormal OS termination when a user edits a shared network file | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000760 | McAfee VirusScan Engine buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000759 | McAfee VirusScan Engine buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000758 | msearch directory traversal vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000757 | Cybozu Office browser script execution vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000756 | Tsuru-Kame Mail vulnerable in S/MIME signature verification | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000727 | mod_imap cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2014-05-22T18:03+09:00 |
| jvndb-2005-000707 | Fujitsu Java Runtime Environment reflection API vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000706 | Fujitsu Java Runtime Environment reflection API vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000705 | Fujitsu Java Runtime Environment reflection API vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000695 | Ruby XMLRPC Server Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000601 | OpenSSL version rollback vulnerability | 2008-05-21T00:00+09:00 | 2014-05-22T18:04+09:00 |
| jvndb-2005-000538 | Ruby vulnerability allowing to bypass safe level 4 as a sandbox | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000537 | Webmin and Usermin authentication bypass vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000530 | Vulnerability in multiple web browsers allowing request spoofing attacks | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000396 | Ruby XMLRPC Arbitrary Command Execution Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000343 | DeleGate DNS Message Decompression Denial of Service Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000199 | Sylpheed Filename Buffer Overflow Vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000183 | Apache Tomcat denial of service vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2005-000163 | Sylpheed Email Header Buffer Overflow Vulnerability with non-ASCII Characters | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000594 | DNS cache servers resource consumption by TCP SYN_SENT states | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000593 | LDAP server update function vulnerable to buffer overflow | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000592 | Shuriken Pro3 S/MIME signature verification does not verify the certificate authenticity | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000591 | Shuriken Pro3 S/MIME signature verification does not verify the From address | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000590 | Becky! Internet Mail vulnerability in S/MIME signature verification | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000589 | Toshiba HDD & DVD video recorders can be accessed without authentication | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000588 | SSL-VPN products vulnerable to cookie theft | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000587 | desknet's buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000586 | Virus Buster Corporate Edition vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2004-000554 | Namazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0646 | Vulnérabilité dans MongoDB Ops Manager | 2023-08-10T00:00:00.000000 | 2023-08-10T00:00:00.000000 |
| certfr-2023-avi-0645 | Multiples vulnérabilités dans les produits Microsoft | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0644 | Multiples vulnérabilités dans Microsoft Azure | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0643 | Multiples vulnérabilités dans Microsoft .Net | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0642 | Multiples vulnérabilités dans Microsoft Windows | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0641 | Multiples vulnérabilités dans Microsoft Office | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0640 | Multiples vulnérabilités dans les produits Intel | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0639 | Multiples vulnérabilités dans Xen | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0638 | Multiples vulnérabilités dans Citrix Hypervisor | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0637 | Vulnérabilité dans Fortinet FortiOS | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0636 | Multiples vulnérabilités dans les produits Adobe | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0635 | Multiples vulnérabilités dans les produits SAP | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0634 | Vulnérabilité dans les produits Belden | 2023-08-09T00:00:00.000000 | 2023-08-09T00:00:00.000000 |
| certfr-2023-avi-0633 | Multiples vulnérabilités dans les produits Siemens | 2023-08-08T00:00:00.000000 | 2023-08-08T00:00:00.000000 |
| certfr-2023-avi-0632 | Multiples vulnérabilités dans les produits Schneider Electric | 2023-08-08T00:00:00.000000 | 2023-08-11T00:00:00.000000 |
| certfr-2023-avi-0631 | Multiples vulnérabilités dans Microsoft Edge | 2023-08-08T00:00:00.000000 | 2023-08-08T00:00:00.000000 |
| certfr-2023-avi-0630 | Vulnérabilité dans IBM WebSphere | 2023-08-08T00:00:00.000000 | 2023-08-08T00:00:00.000000 |
| certfr-2023-avi-0629 | Multiples vulnérabilités dans Google Android | 2023-08-08T00:00:00.000000 | 2023-08-08T00:00:00.000000 |
| certfr-2023-avi-0628 | Multiples vulnérabilités dans PHP | 2023-08-07T00:00:00.000000 | 2023-08-07T00:00:00.000000 |
| certfr-2023-avi-0627 | Multiples vulnérabilités dans IBM Spectrum | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0626 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0625 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0624 | Multiples vulnérabilités dans le noyau Linux de Debian | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0623 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0622 | Multiples vulnérabilités dans le noyau Linux de DebianLTS | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0621 | Multiples vulnérabilités dans PHP | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0620 | Vulnérabilité dans les produits WithSecure | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0619 | Multiples vulnérabilités dans VMware Horizon Server | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0618 | Multiples vulnérabilités dans Axis License Plate Verifier | 2023-08-04T00:00:00.000000 | 2023-08-04T00:00:00.000000 |
| certfr-2023-avi-0617 | Vulnérabilité dans Check Point Enterprise Endpoint Security | 2023-08-03T00:00:00.000000 | 2023-08-03T00:00:00.000000 |