Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-31370 6.3 (v3.1) Information Leak Vulnerability in Honor E Honor
 Honor E
 2026-04-21T06:30:53.883Z 2026-04-21T13:25:53.570Z
cve-2026-31369 3.2 (v3.1) Privilege Bypass in PcManager Honor
 PcManager
 2026-04-21T06:26:52.403Z 2026-04-21T13:18:27.938Z
cve-2026-5965 9.3 (v4.0) 9.8 (v3.1) NewSoft|NewSoftOA - OS Command Injection NewSoft
 NewSoftOA
 2026-04-21T03:32:55.138Z 2026-04-21T13:20:58.795Z
cve-2026-6674 Plugin: CMS für Motorrad Werkstätten <= 1.0.0 - Authen… tholstkabelbwde
 Plugin: CMS für Motorrad Werkstätten
 2026-04-21T02:25:40.676Z 2026-04-21T12:58:21.763Z
cve-2026-6675 Responsive Blocks <= 2.2.0 - Unauthenticated Open Emai… cyberchimps
 Responsive Blocks – Page Builder for Blocks & Patterns
 2026-04-21T02:25:39.847Z 2026-04-21T13:22:00.182Z
cve-2026-40497 FreeScout Vulnerable to CSS Injection via Stored Style… freescout-help-desk
 freescout
 2026-04-21T01:45:55.492Z 2026-04-21T13:25:21.103Z
cve-2026-6058 4.5 (v3.1) ** UNSUPPORTED WHEN ASSIGNED ** An improper encod… Zyxel
 WRE6505 v2 firmware
 2026-04-21T01:42:07.433Z 2026-04-21T13:26:29.283Z
cve-2026-40496 FreeScout has Predictable Attachment Token that Allows… freescout-help-desk
 freescout
 2026-04-21T01:38:50.117Z 2026-04-21T13:50:39.454Z
cve-2026-39973 Apktool: Path Traversal to Arbitrary File Write iBotPeaches
 Apktool
 2026-04-21T01:35:22.396Z 2026-04-21T13:33:14.677Z
cve-2026-40250 OpenEXR has integer overflow in DWA decoder outBufferE… AcademySoftwareFoundation
 openexr
 2026-04-21T01:33:00.212Z 2026-04-21T19:49:07.457Z
cve-2026-40244 OpenEXR has integer overflow in DWA setupChannelData p… AcademySoftwareFoundation
 openexr
 2026-04-21T01:30:55.061Z 2026-04-21T19:31:39.166Z
cve-2026-39886 OpenEXR has HTJ2K Signed Integer Overflow in ht_undo_impl() AcademySoftwareFoundation
 openexr
 2026-04-21T01:27:01.371Z 2026-04-21T13:49:21.573Z
cve-2026-39866 Lawnchair vulnerable to Command Injection via unquoted… LawnchairLauncher
 lawnchair
 2026-04-21T01:19:47.510Z 2026-04-21T19:49:12.997Z
cve-2026-39861 Claude Code: Sandbox Escape via Symlink Following Allo… anthropics
 claude-code
 2026-04-21T00:56:39.062Z 2026-04-21T13:44:49.618Z
cve-2026-39386 Neko has Self-service Privilege Escalation for Authent… m1k1o
 neko
 2026-04-21T00:50:34.656Z 2026-04-21T13:33:54.708Z
cve-2026-40264 OpenBao's Token Store Allows Cross-Namespace Renewal, … openbao
 openbao
 2026-04-21T00:47:38.156Z 2026-04-21T19:30:51.975Z
cve-2026-39396 OpenBao has Decompression Bomb via Unbounded Copy in O… openbao
 openbao
 2026-04-21T00:44:53.943Z 2026-04-21T19:49:18.821Z
cve-2026-39388 OpenBao's Certificate Authentication Allows Token Rene… openbao
 openbao
 2026-04-21T00:43:22.920Z 2026-04-21T19:36:07.865Z
cve-2026-39946 OpenBao allows SQL Injection in PostgreSQL database se… openbao
 openbao
 2026-04-21T00:19:39.578Z 2026-04-21T13:34:21.088Z
cve-2026-39378 nbconvert has an Arbitrary File Read via Path Traversa… jupyter
 nbconvert
 2026-04-21T00:17:00.684Z 2026-04-21T13:43:29.081Z
cve-2026-39377 nbconvert has an Arbitrary File Write via Path Travers… jupyter
 nbconvert
 2026-04-21T00:14:59.937Z 2026-04-21T19:49:24.475Z
cve-2026-39320 Signal K Server has an Unauthenticated Regular Express… SignalK
 signalk-server
 2026-04-21T00:07:10.371Z 2026-04-21T19:36:54.787Z
cve-2026-41527 KDE Kleopatra before 26.08.0 on Windows allows lo… KDE
 Kleopatra
 2026-04-21T00:00:00.000Z 2026-04-21T21:19:44.293Z
cve-2026-40706 8.4 (v3.1) In NTFS-3G 2022.10.3 before 2026.2.25, a heap buf… Tuxera
 NTFS-3G
 2026-04-21T00:00:00.000Z 2026-04-21T21:20:00.477Z
cve-2026-38835 N/A Tenda W30E V2.0 V16.01.0.21 was found to contain … n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T16:59:46.480Z
cve-2026-38834 N/A Tenda W30E V2.0 V16.01.0.21 was found to contain … n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T19:23:17.157Z
cve-2026-37748 N/A Visitor Management System 1.0 by sanjay1313 is vu… n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T18:25:24.762Z
cve-2026-31019 N/A In the Website module of Dolibarr ERP & CRM 22.0.… n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T18:23:33.693Z
cve-2026-31018 N/A In Dolibarr ERP & CRM <= 22.0.4, PHP code detecti… n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T15:31:23.441Z
cve-2026-31014 N/A Dovestones Softwares AD Self Update <4.0.0.5 is v… n/a
 n/a
 2026-04-21T00:00:00.000Z 2026-04-21T18:21:08.828Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2020-018327 Malleability attack against executables encrypted by CBC mode with no integrity check 2024-09-11T18:19+09:00 2024-09-11T18:19+09:00
jvndb-2024-000095 Multiple Alps System Integration products and the OEM products vulnerable to cross-site request forgery 2024-09-09T16:40+09:00 2024-09-09T16:40+09:00
jvndb-2024-000096 Pgpool-II vulnerable to information disclosure 2024-09-09T14:58+09:00 2024-09-09T14:58+09:00
jvndb-2024-000094 "@cosme" App fails to restrict custom URL schemes properly 2024-09-09T14:20+09:00 2024-09-09T14:20+09:00
jvndb-2024-000097 WordPress Plugin "Forminator" vulnerable to cross-site scripting 2024-09-09T13:51+09:00 2024-09-09T13:51+09:00
jvndb-2024-000098 Multiple products from KINGSOFT JAPAN vulnerable to path traversal 2024-09-06T15:07+09:00 2024-09-06T15:07+09:00
jvndb-2024-000090 Secure Boot bypass Vulnerability in PRIMERGY 2024-09-06T14:39+09:00 2024-09-06T14:39+09:00
jvndb-2024-000093 WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting 2024-09-04T13:01+09:00 2024-09-04T13:01+09:00
jvndb-2024-007002 Panasonic Control FPWIN Pro7 vulnerable to stack-based buffer overflow 2024-09-02T14:57+09:00 2024-09-02T14:57+09:00
jvndb-2024-000091 IPCOM vulnerable to information disclosure 2024-08-30T14:56+09:00 2024-08-30T14:56+09:00
jvndb-2024-000092 Multiple vulnerabilities in WordPress plugin "Carousel Slider" 2024-08-30T13:58+09:00 2024-08-30T13:58+09:00
jvndb-2024-000089 WindLDR and WindO/I-NV4 store sensitive information in cleartext 2024-08-29T15:08+09:00 2024-09-24T17:14+09:00
jvndb-2024-006787 xfpt vulnerable to stack-based buffer overflow 2024-08-29T14:07+09:00 2024-08-29T14:07+09:00
jvndb-2024-000088 Multiple vulnerabilities in ELECOM wireless LAN routers and access points 2024-08-27T14:40+09:00 2024-11-26T15:17+09:00
jvndb-2024-006646 Authentication Bypass Vulnerability in Hitachi Ops Center Common Services 2024-08-27T12:01+09:00 2024-08-27T12:01+09:00
jvndb-2024-006367 Unquoted Service Path in Hitachi Device Manager 2024-08-26T16:27+09:00 2024-08-26T16:27+09:00
jvndb-2024-000087 BUFFALO wireless LAN routers and wireless LAN repeaters vulnerable to OS command injection 2024-08-23T14:17+09:00 2024-08-23T14:17+09:00
jvndb-2024-000086 Multiple Safie products vulnerable to improper server certificate verification 2024-08-22T13:51+09:00 2024-08-29T12:23+09:00
jvndb-2020-007305 Installer of Trend Micro Security 2020 (Consumer) may insecurely load Dynamic Link Libraries 2024-08-22T11:33+09:00 2024-08-22T11:33+09:00
jvndb-2017-009536 Packetbeat vulnerable to denial-of-service (DoS) 2024-08-21T17:54+09:00 2024-08-21T17:54+09:00
jvndb-2018-009127 Multiple vulnerabilities in LogonTracer 2024-08-21T17:37+09:00 2024-08-21T17:37+09:00
jvndb-2020-002957 A vulnerability in TOYOTA MOTOR's DCU (Display Control Unit) 2024-08-20T18:12+09:00 2024-08-20T18:12+09:00
jvndb-2020-007306 Trend Micro Security (Consumer) Driver vulnerable to Out-of-bounds Read 2024-08-20T17:52+09:00 2024-08-20T17:52+09:00
jvndb-2024-000085 "Rakuten Ichiba App" fails to restrict custom URL schemes properly 2024-08-20T16:56+09:00 2024-08-20T16:56+09:00
jvndb-2024-005167 EL Injection Vulnerability in Hitachi Tuning Manager 2024-08-15T09:38+09:00 2024-08-15T09:38+09:00
jvndb-2016-000124 WAON service app for Android fails to verify SSL server certificates 2024-08-15T09:36+09:00 2024-08-15T09:36+09:00
jvndb-2024-000083 Firmware update for RICOH JavaTM Platform resets the TLS configuration 2024-08-06T15:13+09:00 2024-08-06T15:13+09:00
jvndb-2024-000079 Cybozu Office vulnerable to bypass browsing restrictions in Custom App 2024-08-06T14:59+09:00 2024-08-06T14:59+09:00
jvndb-2024-000082 Pimax Play and PiTool accept WebSocket connections from unintended endpoints 2024-08-05T13:58+09:00 2024-08-05T13:58+09:00
jvndb-2024-000084 Multiple vulnerabilities in ZEXELON ZWX-2000CSW2-HN 2024-08-05T13:46+09:00 2024-08-05T13:46+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2026-avi-0136 Vulnérabilité dans Fortinet FortiClientEMS 2026-02-09T00:00:00.000000 2026-02-09T00:00:00.000000
certfr-2026-avi-0135 Vulnérabilité dans GitLab AI Gateway 2026-02-09T00:00:00.000000 2026-02-09T00:00:00.000000
certfr-2026-avi-0134 Vulnérabilité dans Microsoft Edge 2026-02-09T00:00:00.000000 2026-02-09T00:00:00.000000
certfr-2026-avi-0133 Multiples vulnérabilités dans Roundcube 2026-02-09T00:00:00.000000 2026-03-27T00:00:00.000000
certfr-2026-avi-0132 Multiples vulnérabilités dans VMware Tanzu Greenplum 2026-02-09T00:00:00.000000 2026-02-09T00:00:00.000000
certfr-2026-avi-0131 Multiples vulnérabilités dans les produits IBM 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0130 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0129 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0128 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0127 Vulnérabilité dans NetApp ONTAP 9 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0126 Vulnérabilité dans ESET Management Agent 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0125 Multiples vulnérabilités dans les produits Moxa 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0124 Multiples vulnérabilités dans Microsoft Edge 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0123 Multiples vulnérabilités dans Asterisk 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0122 Multiples vulnérabilités dans Tenable Nessus 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0121 Vulnérabilité dans les produits Juniper Networks 2026-02-06T00:00:00.000000 2026-02-06T00:00:00.000000
certfr-2026-avi-0120 Multiples vulnérabilités dans les produits F5 2026-02-05T00:00:00.000000 2026-02-05T00:00:00.000000
certfr-2026-avi-0119 Multiples vulnérabilités dans les produits Cisco 2026-02-05T00:00:00.000000 2026-02-05T00:00:00.000000
certfr-2026-avi-0118 Multiples vulnérabilités dans les produits Splunk 2026-02-05T00:00:00.000000 2026-02-05T00:00:00.000000
certfr-2026-avi-0117 Multiples vulnérabilités dans GLPI 2026-02-04T00:00:00.000000 2026-02-04T00:00:00.000000
certfr-2026-avi-0116 Vulnérabilité dans les produits Moxa 2026-02-04T00:00:00.000000 2026-02-04T00:00:00.000000
certfr-2026-avi-0115 Multiples vulnérabilités dans Tenable Identity Exposure 2026-02-04T00:00:00.000000 2026-02-04T00:00:00.000000
certfr-2026-avi-0114 Multiples vulnérabilités dans Google Chrome 2026-02-04T00:00:00.000000 2026-02-04T00:00:00.000000
certfr-2026-avi-0113 Vulnérabilité dans Google Pixel 2026-02-04T00:00:00.000000 2026-02-04T00:00:00.000000
certfr-2026-avi-0112 Multiples vulnérabilités dans les produits VMware 2026-02-02T00:00:00.000000 2026-02-02T00:00:00.000000
certfr-2026-avi-0111 Vulnérabilité dans ESET Inspect Connector 2026-02-02T00:00:00.000000 2026-02-02T00:00:00.000000
certfr-2026-avi-0110 Multiples vulnérabilités Ivanti Endpoint Manager Mobile (EPMM) 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
certfr-2026-avi-0109 Multiples vulnérabilités dans les produits IBM 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
certfr-2026-avi-0108 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
certfr-2026-avi-0107 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
ID Description Published Updated
certa-2004-ale-013 Vulnérabilité dans le composant ActiveX DHTML Edit d'Internet Explorer 2004-12-20T00:00:00.000000 2004-12-20T00:00:00.000000
certa-2004-ale-012 Vulnérabilité d'Internet Explorer 2004-11-09T00:00:00.000000 2004-12-02T00:00:00.000000
certa-2004-ale-011 Diffusion de programmes exploitant la faille GDI+ 2004-09-23T00:00:00.000000 2004-09-23T00:00:00.000000
certa-2004-ale-010 Vulnérabilité du service Telnet de Cisco IOS 2004-08-30T00:00:00.000000 2004-08-30T00:00:00.000000
certa-2004-ale-009 Vulnérabilités d'Internet Explorer 2004-06-09T00:00:00.000000 2004-08-03T00:00:00.000000
certa-2004-ale-008 Vulnérabilité de Safari 2004-05-19T00:00:00.000000 2004-05-24T00:00:00.000000
certa-2004-ale-007 Exploitation de la vulnérabilité LSASS sous Windows : appration du ver Sasser 2004-05-02T00:00:00.000000 2004-05-02T00:00:00.000000
certa-2004-ale-006 Vulnérabilité SMB sous Windows 2004-04-28T00:00:00.000000 2004-04-28T00:00:00.000000
certa-2004-ale-005 Vulnérabilité d'Internet Explorer 2004-04-09T00:00:00.000000 2004-04-15T00:00:00.000000
certa-2004-ale-004 Vulnérabilité du composant dtlogin de CDE 2004-03-26T00:00:00.000000 2004-08-05T00:00:00.000000
certa-2004-ale-003 Propagation du ver Phatbot 2004-03-19T00:00:00.000000 2004-03-19T00:00:00.000000
certa-2004-ale-002 Propagation du virux Bizex 2004-02-26T00:00:00.000000 2004-02-26T00:00:00.000000
certa-2004-ale-001 Obstacles à la résolution d'incidents 2004-01-30T00:00:00.000000 2004-01-30T00:00:00.000000
certa-2003-ale-006 Vulnérabilité dans l'affichage des adresses réticulaires 2003-12-19T00:00:00.000000 2004-02-03T00:00:00.000000
certa-2003-ale-005 Vulnérabilité de sadmind sur Solaris 2003-09-19T00:00:00.000000 2003-09-19T00:00:00.000000
certa-2003-ale-004 Vulnérabilité d'Internet Explorer 2003-09-10T00:00:00.000000 2003-10-06T00:00:00.000000
certa-2003-ale-003 Exploitation massive de la vulnérabilité « include PHP » 2003-09-09T00:00:00.000000 2003-09-09T00:00:00.000000
certa-2003-ale-002 Exploitation d'une faille de Windows RPC 2003-08-01T00:00:00.000000 2003-08-19T00:00:00.000000
certa-2003-ale-001 Vulnérabilité dans l'implémentation des logiciels de lecture des documents PDF 2003-06-23T00:00:00.000000 2003-07-04T00:00:00.000000
certa-2002-ale-007 Cédérom Pages Pro 2002-09-04T00:00:00.000000 2002-09-04T00:00:00.000000
certa-2002-ale-006 Propagation du ver Spida (Microsoft SQL Server) 2002-05-22T00:00:00.000000 2002-06-04T00:00:00.000000
certa-2002-ale-005 Risque de compromission des auto-commutateurs (PABX) ALCATEL 4400 2002-02-20T00:00:00.000000 2002-02-20T00:00:00.000000
certa-2002-ale-004 Multiples implémentations de SNMP V1 vulnérables 2002-02-13T00:00:00.000000 2002-02-13T00:00:00.000000
certa-2002-ale-003 Propagation importante du virus « W32.Myparty@mm » 2002-01-29T00:00:00.000000 2002-01-29T00:00:00.000000
certa-2002-ale-002 Exploitation d'une faille de wu-ftpd 2002-01-28T00:00:00.000000 2002-01-28T00:00:00.000000
certa-2002-ale-001 Exploitation massive d'une faille de CDE 2002-01-24T00:00:00.000000 2002-01-24T00:00:00.000000
certa-2001-ale-016 Propagation du ver badtrans - variante B 2001-11-27T00:00:00.000000 2001-11-27T00:00:00.000000
certa-2001-ale-015 Exploitation massive d'une ancienne vulnérabilité de SSH 2001-11-19T00:00:00.000000 2001-11-19T00:00:00.000000
certa-2001-ale-014 Risque de divulgation de données personnelles/confidentielles par des produits Microsoft 2001-10-19T00:00:00.000000 2001-10-19T00:00:00.000000
certa-2001-ale-013 Propagation du ver/virus NIMDA (Concept Virus) 2001-09-19T00:00:00.000000 2001-09-19T00:00:00.000000