Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-3438 | 5.1 (v4.0) | Nexus Repository 3 - Reflected Cross-Site Scripting (X… |
Sonatype |
Nexus Repository |
2026-04-08T22:16:09.657Z | 2026-04-09T13:18:17.962Z |
| cve-2026-5811 | SourceCodester Online Food Ordering System POST Parame… |
SourceCodester |
Online Food Ordering System |
2026-04-08T22:15:13.008Z | 2026-04-09T13:18:59.568Z | |
| cve-2026-5810 | SourceCodester Sales and Inventory System GET Paramete… |
SourceCodester |
Sales and Inventory System |
2026-04-08T22:00:17.660Z | 2026-04-13T19:45:56.736Z | |
| cve-2026-40037 | 7.1 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.31 - Unsafe Request Body Replay via … |
OpenClaw |
OpenClaw |
2026-04-08T21:35:29.255Z | 2026-04-09T14:40:56.336Z |
| cve-2026-40036 | 8.7 (v4.0) 7.5 (v3.1) | Unfurl < 2026.04 - Denial of Service via Unbounded zli… |
obsidianforensics |
unfurl |
2026-04-08T21:35:28.460Z | 2026-04-11T03:05:51.530Z |
| cve-2026-40035 | 9.3 (v4.0) 9.1 (v3.1) | Unfurl - Werkzeug Debugger Exposure via String Config … |
obsidianforensics |
unfurl |
2026-04-08T21:35:27.703Z | 2026-04-09T13:19:56.161Z |
| cve-2026-40032 | 8.5 (v4.0) 7.8 (v3.1) | UAC < 3.3.0-rc1 Command Injection via Placeholder Subs… |
tclahr |
UAC |
2026-04-08T21:35:27.020Z | 2026-04-09T19:32:44.357Z |
| cve-2026-40031 | 8.5 (v4.0) 7.8 (v3.1) | MemProcFS < 5.17 DLL/Shared Library Hijacking |
ufrisk |
MemProcFS |
2026-04-08T21:35:26.293Z | 2026-04-09T16:16:34.107Z |
| cve-2026-40030 | 8.4 (v4.0) 7.8 (v3.1) | parseusbs < 1.9 Command Injection via Volume Path Argument |
khyrenz |
parseusbs |
2026-04-08T21:35:25.533Z | 2026-04-09T18:10:49.070Z |
| cve-2026-40029 | 8.5 (v4.0) 7.8 (v3.1) | parseusbs < 1.9 Command Injection via Crafted LNK Filename |
khyrenz |
parseusbs |
2026-04-08T21:35:24.801Z | 2026-04-09T14:48:31.844Z |
| cve-2026-40028 | 5.1 (v4.0) 5.4 (v3.1) | Hayabusa < 3.8.0 XSS via JSON Log Import |
Yamato-Security |
hayabusa |
2026-04-08T21:35:24.001Z | 2026-04-11T03:04:53.201Z |
| cve-2026-40027 | 8.4 (v4.0) 7.3 (v3.1) | ALEAPP NQ Vault Artifact Parser Path Traversal |
abrignoni |
ALEAPP |
2026-04-08T21:35:23.178Z | 2026-04-09T13:41:25.490Z |
| cve-2026-40026 | 4.8 (v4.0) 4.4 (v3.1) | Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bou… |
sleuthkit |
sleuthkit |
2026-04-08T21:35:22.278Z | 2026-04-09T19:39:36.707Z |
| cve-2026-40025 | 4.8 (v4.0) 4.4 (v3.1) | Sleuth Kit APFS Keybag Parser Out-of-Bounds Read |
sleuthkit |
sleuthkit |
2026-04-08T21:35:21.537Z | 2026-04-09T16:16:39.403Z |
| cve-2026-40024 | 8.4 (v4.0) 7.1 (v3.1) | Sleuth Kit tsk_recover Path Traversal |
sleuthkit |
sleuthkit |
2026-04-08T21:35:20.662Z | 2026-04-09T18:13:37.338Z |
| cve-2026-5808 | openstatusHQ openstatus Onboarding Endpoint client.tsx… |
openstatusHQ |
openstatus |
2026-04-08T21:30:16.897Z | 2026-04-09T14:55:24.274Z | |
| cve-2026-5711 | Post Blocks & Tools <= 1.3.0 - Authenticated (Author+)… |
pubudu-malalasekara |
Post Blocks & Tools |
2026-04-08T21:25:26.850Z | 2026-04-09T16:16:44.877Z | |
| cve-2026-5919 | N/A | Insufficient validation of untrusted input in Web… |
Google |
Chrome |
2026-04-08T21:21:07.618Z | 2026-04-29T15:15:03.132Z |
| cve-2026-5918 | N/A | Inappropriate implementation in Navigation in Goo… |
Google |
Chrome |
2026-04-08T21:21:07.218Z | 2026-04-09T14:32:05.359Z |
| cve-2026-5915 | N/A | Insufficient validation of untrusted input in Web… |
Google |
Chrome |
2026-04-08T21:21:06.835Z | 2026-04-29T15:14:35.790Z |
| cve-2026-5914 | N/A | Type Confusion in CSS in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-08T21:21:06.501Z | 2026-04-29T15:14:15.345Z |
| cve-2026-5913 | N/A | Out of bounds read in Blink in Google Chrome prio… |
Google |
Chrome |
2026-04-08T21:21:06.156Z | 2026-04-29T15:11:24.950Z |
| cve-2026-5912 | N/A | Integer overflow in WebRTC in Google Chrome prior… |
Google |
Chrome |
2026-04-08T21:21:05.665Z | 2026-04-29T15:12:02.875Z |
| cve-2026-5911 | N/A | Policy bypass in ServiceWorkers in Google Chrome … |
Google |
Chrome |
2026-04-08T21:21:05.248Z | 2026-04-29T15:12:29.097Z |
| cve-2026-5910 | N/A | Integer overflow in Media in Google Chrome prior … |
Google |
Chrome |
2026-04-08T21:21:04.841Z | 2026-04-29T15:12:50.902Z |
| cve-2026-5909 | N/A | Integer overflow in Media in Google Chrome prior … |
Google |
Chrome |
2026-04-08T21:21:04.162Z | 2026-04-29T15:13:08.714Z |
| cve-2026-5908 | N/A | Integer overflow in Media in Google Chrome prior … |
Google |
Chrome |
2026-04-08T21:21:03.818Z | 2026-04-29T15:13:24.723Z |
| cve-2026-5907 | N/A | Insufficient data validation in Media in Google C… |
Google |
Chrome |
2026-04-08T21:21:03.423Z | 2026-04-09T15:32:33.757Z |
| cve-2026-5906 | N/A | Incorrect security UI in Omnibox in Google Chrome… |
Google |
Chrome |
2026-04-08T21:21:02.617Z | 2026-04-09T15:42:03.977Z |
| cve-2026-5905 | N/A | Incorrect security UI in Permissions in Google Ch… |
Google |
Chrome |
2026-04-08T21:21:01.314Z | 2026-04-09T15:55:38.852Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-990 | Multiples vulnérabilités dans les produits Microsoft | 2022-11-03T00:00:00.000000 | 2022-11-03T00:00:00.000000 |
| certfr-2022-avi-989 | Multiples vulnérabilités dans les produits Tenable | 2022-11-03T00:00:00.000000 | 2022-11-03T00:00:00.000000 |
| certfr-2022-avi-988 | Multiples vulnérabilités dans les produits Cisco | 2022-11-03T00:00:00.000000 | 2022-11-03T00:00:00.000000 |
| certfr-2022-avi-987 | Multiples vulnérabilités dans GitLab | 2022-11-03T00:00:00.000000 | 2022-11-03T00:00:00.000000 |
| certfr-2022-avi-986 | Multiples vulnérabilités dans Splunk | 2022-11-03T00:00:00.000000 | 2022-11-04T00:00:00.000000 |
| certfr-2022-avi-985 | Multiples vulnérabilités dans OpenSSL | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-984 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-983 | Multiples vulnérabilités dans Apple Xcode | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-982 | Multiples vulnérabilités dans les produits Kaspersky | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-981 | Multiples vulnérabilités dans les produits Foxit | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-980 | Vulnérabilité dans Microsoft Edge | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-979 | Vulnérabilité dans Belden Industrial HiVision | 2022-11-02T00:00:00.000000 | 2022-11-03T00:00:00.000000 |
| certfr-2022-avi-978 | Multiples vulnérabilités dans VMware Spring | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-977 | Multiples vulnérabilités dans Citrix Hypervisor | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-976 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-975 | Vulnérabilité dans Apache Tomcat | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-974 | Multiples vulnérabilités dans Xen | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-973 | Multiples vulnérabilités dans les produits Fortinet | 2022-11-02T00:00:00.000000 | 2022-11-02T00:00:00.000000 |
| certfr-2022-avi-972 | Vulnérabilité dans Azure CLI | 2022-10-31T00:00:00.000000 | 2022-10-31T00:00:00.000000 |
| certfr-2022-avi-971 | Multiples vulnérabilités dans PHP | 2022-10-31T00:00:00.000000 | 2022-10-31T00:00:00.000000 |
| certfr-2022-avi-970 | Vulnérabilité dans Nextcloud Server | 2022-10-31T00:00:00.000000 | 2022-10-31T00:00:00.000000 |
| certfr-2022-avi-969 | Vulnérabilité dans les produits NetApp | 2022-10-31T00:00:00.000000 | 2022-10-31T00:00:00.000000 |
| certfr-2022-avi-968 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-967 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-966 | Multiples vulnérabilités dans les produits Synology | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-965 | Multiples vulnérabilités dans Microsoft Edge | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-964 | Vulnérabilité dans Google Chrome | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-963 | Multiples vulnérabilités dans Apple iOS et iPadOS | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-962 | Multiples vulnérabilités dans Tenable Nessus | 2022-10-28T00:00:00.000000 | 2022-10-28T00:00:00.000000 |
| certfr-2022-avi-961 | Multiples vulnérabilités dans Nextcloud Server | 2022-10-27T00:00:00.000000 | 2022-10-27T00:00:00.000000 |