Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-6754 | N/A | Use-after-free in the JavaScript Engine component |
Mozilla |
Firefox |
2026-04-21T12:40:50.577Z | 2026-04-21T23:34:46.471Z |
| cve-2026-6753 | N/A | Incorrect boundary conditions in the WebRTC component |
Mozilla |
Firefox |
2026-04-21T12:40:49.893Z | 2026-04-21T23:34:45.288Z |
| cve-2026-6752 | N/A | Incorrect boundary conditions in the WebRTC component |
Mozilla |
Firefox |
2026-04-21T12:40:49.079Z | 2026-04-21T23:34:44.029Z |
| cve-2026-6751 | N/A | Uninitialized memory in the Audio/Video: Web Codecs co… |
Mozilla |
Firefox |
2026-04-21T12:40:48.315Z | 2026-04-21T23:34:42.935Z |
| cve-2026-6750 | N/A | Privilege escalation in the Graphics: WebRender component |
Mozilla |
Firefox |
2026-04-21T12:40:47.476Z | 2026-04-21T23:34:41.650Z |
| cve-2026-6749 | N/A | Information disclosure due to uninitialized memory in … |
Mozilla |
Firefox |
2026-04-21T12:40:46.800Z | 2026-04-21T23:34:40.339Z |
| cve-2026-6748 | N/A | Uninitialized memory in the Audio/Video: Web Codecs co… |
Mozilla |
Firefox |
2026-04-21T12:40:45.923Z | 2026-04-21T23:34:39.302Z |
| cve-2026-6747 | N/A | Use-after-free in the WebRTC component |
Mozilla |
Firefox |
2026-04-21T12:40:45.203Z | 2026-04-21T23:34:38.193Z |
| cve-2026-6746 | N/A | Use-after-free in the DOM: Core & HTML component |
Mozilla |
Firefox |
2026-04-21T12:40:44.148Z | 2026-04-21T23:34:37.002Z |
| cve-2026-32147 | 5.3 (v4.0) | SFTP chroot bypass via path traversal in SSH_FXP_FSETSTAT |
Erlang |
OTP |
2026-04-21T12:01:20.350Z | 2026-04-21T13:11:40.325Z |
| cve-2026-41039 | 8.7 (v4.0) | Information Disclosure Vulnerability in Quantum Networ… |
Quantum Networks |
Router QN-I-470 |
2026-04-21T10:28:24.521Z | 2026-04-21T13:13:59.843Z |
| cve-2026-41038 | 7.6 (v4.0) | Weak Password Policy Vulnerability in Quantum Networks… |
Quantum Networks |
Router QN-I-470 |
2026-04-21T10:22:09.254Z | 2026-04-21T13:14:55.975Z |
| cve-2026-41036 | 8.7 (v4.0) | Command Injection Vulnerability in Quantum Networks Ro… |
Quantum Networks |
Router QN-I-470 |
2026-04-21T10:07:47.488Z | 2026-04-21T13:17:54.592Z |
| cve-2026-41037 | 8.7 (v4.0) | Missing Rate Limiting Vulnerability in Quantum Network… |
Quantum Networks |
Router QN-I-470 |
2026-04-21T10:04:56.462Z | 2026-04-21T13:19:09.396Z |
| cve-2026-6553 | 7.3 (v4.0) | TYPO3 CMS Stores Cleartext Password in User Settings Module |
TYPO3 |
TYPO3 CMS |
2026-04-21T10:04:02.525Z | 2026-04-21T13:20:23.515Z |
| cve-2026-39467 | 7.2 (v3.1) | WordPress Responsive Slider by MetaSlider plugin <= 3.… |
MetaSlider |
Responsive Slider by MetaSlider |
2026-04-21T09:35:29.246Z | 2026-04-21T09:35:29.246Z |
| cve-2026-3317 | 5.1 (v4.0) | Reflected Cross-Site Scripting in Navigate CMS application |
Navigate |
Navigate CMS |
2026-04-21T09:03:59.773Z | 2026-04-21T13:22:03.438Z |
| cve-2025-13826 | 8.2 (v4.0) | Incorrect input validation on the Zervit portable HTTP… |
Zervit |
portable HTTP/Web server |
2026-04-21T08:19:57.983Z | 2026-04-21T13:23:30.712Z |
| cve-2026-6711 | Website LLMs.txt <= 8.2.6 - Reflected Cross-Site Scripting |
ryhowa |
Website LLMs.txt |
2026-04-21T06:43:59.951Z | 2026-04-21T13:51:33.148Z | |
| cve-2026-6712 | Website LLMs.txt <= 8.2.6 - Authenticated (Admin+) Sto… |
ryhowa |
Website LLMs.txt |
2026-04-21T06:43:59.539Z | 2026-04-21T13:47:53.867Z | |
| cve-2026-6703 | Responsive Blocks <= 2.2.1 - Missing Authorization to … |
cyberchimps |
Responsive Blocks – Page Builder for Blocks & Patterns |
2026-04-21T06:43:58.955Z | 2026-04-21T16:36:19.694Z | |
| cve-2026-31368 | 7.8 (v3.1) | Privilege Bypass in AiAssistant |
Honor |
AIAssistant |
2026-04-21T06:40:08.446Z | 2026-04-21T13:23:57.396Z |
| cve-2026-31370 | 6.3 (v3.1) | Information Leak Vulnerability in Honor E |
Honor |
Honor E |
2026-04-21T06:30:53.883Z | 2026-04-21T13:25:53.570Z |
| cve-2026-31369 | 3.2 (v3.1) | Privilege Bypass in PcManager |
Honor |
PcManager |
2026-04-21T06:26:52.403Z | 2026-04-21T13:18:27.938Z |
| cve-2026-5965 | 9.3 (v4.0) 9.8 (v3.1) | NewSoft|NewSoftOA - OS Command Injection |
NewSoft |
NewSoftOA |
2026-04-21T03:32:55.138Z | 2026-04-21T13:20:58.795Z |
| cve-2026-6674 | Plugin: CMS für Motorrad Werkstätten <= 1.0.0 - Authen… |
tholstkabelbwde |
Plugin: CMS für Motorrad Werkstätten |
2026-04-21T02:25:40.676Z | 2026-04-21T12:58:21.763Z | |
| cve-2026-6675 | Responsive Blocks <= 2.2.0 - Unauthenticated Open Emai… |
cyberchimps |
Responsive Blocks – Page Builder for Blocks & Patterns |
2026-04-21T02:25:39.847Z | 2026-04-21T13:22:00.182Z | |
| cve-2026-40497 | FreeScout Vulnerable to CSS Injection via Stored Style… |
freescout-help-desk |
freescout |
2026-04-21T01:45:55.492Z | 2026-04-21T13:25:21.103Z | |
| cve-2026-6058 | 4.5 (v3.1) | ** UNSUPPORTED WHEN ASSIGNED ** An improper encod… |
Zyxel |
WRE6505 v2 firmware |
2026-04-21T01:42:07.433Z | 2026-04-21T13:26:29.283Z |
| cve-2026-40496 | FreeScout has Predictable Attachment Token that Allows… |
freescout-help-desk |
freescout |
2026-04-21T01:38:50.117Z | 2026-04-21T13:50:39.454Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-011744 | REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers | 2024-11-01T13:49+09:00 | 2024-11-01T13:49+09:00 |
| jvndb-2024-000117 | Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor | 2024-10-31T16:44+09:00 | 2025-05-19T17:59+09:00 |
| jvndb-2024-000116 | Hikvision network camera security enhancement to prevent cleartext transmission of Dynamic DNS credentials | 2024-10-30T15:07+09:00 | 2024-10-30T15:07+09:00 |
| jvndb-2024-011256 | Multiple vulnerabilities in Sharp and Toshiba Tec MFPs | 2024-10-28T17:33+09:00 | 2024-10-28T17:33+09:00 |
| jvndb-2024-000115 | Chatwork Desktop Application (Windows) uses a potentially dangerous function | 2024-10-28T14:29+09:00 | 2024-10-28T14:29+09:00 |
| jvndb-2024-000114 | Multiple vulnerabilities in baserCMS | 2024-10-25T15:07+09:00 | 2025-02-18T15:35+09:00 |
| jvndb-2024-010802 | Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector | 2024-10-22T13:02+09:00 | 2024-10-22T13:02+09:00 |
| jvndb-2024-000106 | Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software | 2024-10-21T11:58+09:00 | 2024-11-21T11:37+09:00 |
| jvndb-2024-000113 | N-LINE vulnerable to HTML injection | 2024-10-18T14:48+09:00 | 2024-10-25T16:48+09:00 |
| jvndb-2024-000112 | MUSASI version 3 performing authentication on client-side | 2024-10-18T14:40+09:00 | 2024-10-25T16:55+09:00 |
| jvndb-2024-000111 | SHIRASAGI vulnerable to path traversal | 2024-10-16T14:12+09:00 | 2024-10-23T17:35+09:00 |
| jvndb-2024-000110 | Multiple vulnerabilities in Exment | 2024-10-11T14:13+09:00 | 2024-10-11T14:13+09:00 |
| jvndb-2024-000109 | baserCMS plugin "BurgerEditor" vulnerable to directory listing | 2024-10-10T14:57+09:00 | 2024-11-06T14:45+09:00 |
| jvndb-2024-009667 | Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software | 2024-10-03T13:42+09:00 | 2024-10-03T13:42+09:00 |
| jvndb-2024-000108 | Apache Tomcat improper handling of TLS handshake process data | 2024-10-01T17:51+09:00 | 2024-10-01T17:51+09:00 |
| jvndb-2024-009498 | Vulnerability in Cosminexus | 2024-10-01T16:01+09:00 | 2024-10-01T16:01+09:00 |
| jvndb-2024-009481 | Insecure initial password configuration issue in SEIKO EPSON Web Config | 2024-10-01T14:14+09:00 | 2024-11-12T10:25+09:00 |
| jvndb-2024-000107 | RevoWorks Cloud vulnerable to unintended process execution | 2024-09-30T15:17+09:00 | 2024-09-30T15:17+09:00 |
| jvndb-2024-003932 | File Permissions Vulnerability in Hitachi Ops Center Common Services | 2024-09-30T14:15+09:00 | 2024-09-30T14:15+09:00 |
| jvndb-2024-000105 | Multiple vulnerabilities in Smart-tab | 2024-09-30T14:14+09:00 | 2024-09-30T14:14+09:00 |
| jvndb-2024-009396 | SNMP service is enabled by default in Sharp NEC Display Solutions projectors | 2024-09-30T12:46+09:00 | 2024-09-30T12:46+09:00 |
| jvndb-2024-000104 | MF Teacher Performance Management System vulnerable to cross-site scripting | 2024-09-27T15:00+09:00 | 2024-10-10T11:14+09:00 |
| jvndb-2024-000103 | The installer of e-Tax software(common program) vulnerable to privilege escalation | 2024-09-24T16:12+09:00 | 2024-09-24T16:12+09:00 |
| jvndb-2024-000102 | Multiple NTT EAST Home GateWay/Hikari Denwa routers fail to restrict access permissions | 2024-09-24T16:00+09:00 | 2024-10-18T11:02+09:00 |
| jvndb-2024-000101 | Multiple vulnerabilities in PLANEX COMMUNICATIONS network devices | 2024-09-24T15:26+09:00 | 2024-09-24T15:26+09:00 |
| jvndb-2024-008391 | Multiple vulnerabilities in TAKENAKA ENGINEERING digital video recorders | 2024-09-19T14:07+09:00 | 2024-09-19T14:07+09:00 |
| jvndb-2024-000100 | Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce" | 2024-09-18T14:34+09:00 | 2024-09-18T14:34+09:00 |
| jvndb-2024-000099 | Assimp vulnerable to heap-based buffer overflow | 2024-09-18T14:20+09:00 | 2024-09-18T14:20+09:00 |
| jvndb-2020-018328 | Falsification and eavesdropping of contents across multiple websites via Web Rehosting services | 2024-09-12T12:23+09:00 | 2024-09-12T12:23+09:00 |
| jvndb-2023-027250 | Security Problem in Web Browser Permission Mechanism | 2024-09-11T18:19+09:00 | 2024-09-11T18:19+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0166 | Multiples vulnérabilités dans le noyau Linux de Debian | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0165 | Vulnérabilité dans Mattermost Server | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0164 | Multiples vulnérabilités dans PostgreSQL | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0163 | Multiples vulnérabilités dans HAProxy | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0162 | Multiples vulnérabilités dans Juniper Networks Secure Analytics | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0161 | Vulnérabilité dans Tenable Nessus Agent | 2026-02-13T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0160 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0159 | Multiples vulnérabilités dans Keycloak | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0158 | Multiples vulnérabilités dans les produits Apple | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0157 | Multiples vulnérabilités dans les produits Qnap | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0156 | Multiples vulnérabilités dans Google Chrome | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0155 | Multiples vulnérabilités dans SPIP | 2026-02-12T00:00:00.000000 | 2026-02-25T00:00:00.000000 |
| certfr-2026-avi-0154 | Vulnérabilité dans Traefik | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0153 | Multiples vulnérabilités dans les produits Microsoft | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0152 | Multiples vulnérabilités dans Microsoft Azure | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0151 | Vulnérabilité dans Microsoft .Net | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0150 | Multiples vulnérabilités dans Microsoft Windows | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0149 | Multiples vulnérabilités dans Microsoft Office | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0148 | Multiples vulnérabilités dans les produits Intel | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0147 | Multiples vulnérabilités dans les produits Fortinet | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0146 | Multiples vulnérabilités dans GitLab | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0145 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0144 | Multiples vulnérabilités dans Ivanti Endpoint Manager | 2026-02-11T00:00:00.000000 | 2026-02-13T00:00:00.000000 |
| certfr-2026-avi-0143 | Multiples vulnérabilités dans Synology Storage Manager | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0142 | Multiples vulnérabilités dans MongoDB | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0141 | Multiples vulnérabilités dans les produits SAP | 2026-02-10T00:00:00.000000 | 2026-02-10T00:00:00.000000 |
| certfr-2026-avi-0140 | Multiples vulnérabilités dans les produits Axis | 2026-02-10T00:00:00.000000 | 2026-02-10T00:00:00.000000 |
| certfr-2026-avi-0139 | Multiples vulnérabilités dans les produits Siemens | 2026-02-10T00:00:00.000000 | 2026-02-10T00:00:00.000000 |
| certfr-2026-avi-0138 | Multiples vulnérabilités dans les produits Schneider Electric | 2026-02-10T00:00:00.000000 | 2026-02-10T00:00:00.000000 |
| certfr-2026-avi-0137 | Multiples vulnérabilités dans GnuTLS | 2026-02-10T00:00:00.000000 | 2026-02-10T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2006-ale-011 | Multiples vulnérabilités de produits Microsoft | 2006-08-31T00:00:00.000000 | 2006-10-11T00:00:00.000000 |
| certa-2006-ale-010 | Vulnérabilité dans Internet Explorer | 2006-08-23T00:00:00.000000 | 2006-08-25T00:00:00.000000 |
| certa-2006-ale-009 | Vulnérabilité de la librairie MSO.DLL dans Microsoft Office | 2006-07-15T00:00:00.000000 | 2006-08-09T00:00:00.000000 |
| certa-2006-ale-008 | Vulnérabilité d'ExtCalendar | 2006-07-11T00:00:00.000000 | 2006-07-11T00:00:00.000000 |
| certa-2006-ale-007 | Vulnérabilité dans Microsoft Excel | 2006-06-16T00:00:00.000000 | 2006-07-12T00:00:00.000000 |
| certa-2006-ale-006 | Vulnérabilité dans Microsoft Word | 2006-05-20T00:00:00.000000 | 2006-06-14T00:00:00.000000 |
| certa-2006-ale-005 | Vulnérabilité dans Firefox | 2006-04-26T00:00:00.000000 | 2006-05-02T00:00:00.000000 |
| certa-2006-ale-004 | Multiples vulnérabilités sous Mac OS X d'Apple | 2006-04-22T00:00:00.000000 | 2006-05-12T00:00:00.000000 |
| certa-2006-ale-003 | Vulnérabilité de Sendmail | 2006-03-24T00:00:00.000000 | 2006-03-24T00:00:00.000000 |
| certa-2006-ale-002 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2006-03-23T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2006-ale-001 | Vulnérabilité dans le traitement de certains fichiers sous MAC OS X | 2006-02-22T00:00:00.000000 | 2006-03-02T00:00:00.000000 |
| certa-2005-ale-019 | Exploitation d'une vulnérabilité mal corrigée dans Microsoft Windows | 2005-12-28T00:00:00.000000 | 2006-01-06T00:00:00.000000 |
| certa-2005-ale-018 | Vulnérabilité du navigateur Firefox | 2005-12-08T00:00:00.000000 | 2005-12-08T00:00:00.000000 |
| certa-2005-ale-017 | Vulnérabilité de Microsoft Internet Explorer | 2005-11-21T00:00:00.000000 | 2005-12-14T00:00:00.000000 |
| certa-2005-ale-016 | Vulnérabilité de Microsoft Windows RPC | 2005-11-18T00:00:00.000000 | 2005-11-18T00:00:00.000000 |
| certa-2005-ale-014 | Vulnérabilité d'un grand nombre d'antivirus | 2005-10-11T00:00:00.000000 | 2005-10-11T00:00:00.000000 |
| certa-2005-ale-013 | Vulnérabilité dans Citrix Metaframe Presentation | 2005-10-07T00:00:00.000000 | 2013-06-06T00:00:00.000000 |
| certa-2005-ale-012 | Vulnérabilité de Netscape 8 | 2005-09-27T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2005-ale-011 | Vulnérabilité de HelixPlayer et RealPlayer | 2005-09-27T00:00:00.000000 | 2005-10-10T00:00:00.000000 |
| certa-2005-ale-010 | Vulnérabilité dans Qpopper | 2005-09-27T00:00:00.000000 | 2005-09-27T00:00:00.000000 |
| certa-2005-ale-009 | Vulnérabilité dans Mozilla Thunderbird | 2005-09-23T00:00:00.000000 | 2005-09-23T00:00:00.000000 |
| certa-2005-ale-008 | Possible vulnérabilité de la bibliothèque msdds.dll | 2005-08-19T00:00:00.000000 | 2006-04-12T00:00:00.000000 |
| certa-2005-ale-007 | Exploitation de la faille MS05-039 | 2005-08-16T00:00:00.000000 | 2005-08-16T00:00:00.000000 |
| certa-2005-ale-006 | Vulnérabilité du protocole RDP de Microsoft | 2005-07-18T00:00:00.000000 | 2005-08-10T00:00:00.000000 |
| certa-2005-ale-005 | Vulnérabilité d'Internet Explorer | 2005-07-02T00:00:00.000000 | 2005-07-13T00:00:00.000000 |
| certa-2005-ale-004 | Propagation du ver MYTOB | 2005-06-03T00:00:00.000000 | 2005-06-03T00:00:00.000000 |
| certa-2005-ale-003 | Multiples vulnérabilités de Firefox | 2005-05-09T00:00:00.000000 | 2005-05-12T00:00:00.000000 |
| certa-2005-ale-002 | Exploitation d'une vulnérabilité dans Oracle Database Server | 2005-04-28T00:00:00.000000 | 2005-04-28T00:00:00.000000 |
| certa-2005-ale-001 | Vulnérabilité d'Internet Explorer | 2005-01-03T00:00:00.000000 | 2005-01-11T00:00:00.000000 |
| certa-2004-ale-014 | Exploitation massive d'une faille du forum phpBB | 2004-12-22T00:00:00.000000 | 2004-12-22T00:00:00.000000 |