Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-39344 | Reflected XSS the login page through the 'username' pa… |
ChurchCRM |
CRM |
2026-04-07T18:04:24.341Z | 2026-04-08T18:45:18.870Z | |
| cve-2026-39343 | ChurchCRM has a SQL Injection in Event Type Editor (Admin) |
ChurchCRM |
CRM |
2026-04-07T18:03:25.042Z | 2026-04-07T19:59:04.899Z | |
| cve-2026-39342 | ChurchCRM has a SQL injection searchwhat parameter via… |
ChurchCRM |
CRM |
2026-04-07T18:02:40.266Z | 2026-04-09T16:03:35.431Z | |
| cve-2026-39341 | SQL injection in ChurchCRM.0 |
ChurchCRM |
CRM |
2026-04-07T18:01:42.325Z | 2026-04-09T15:35:00.605Z | |
| cve-2026-39340 | ChurchCRM has a SQL Injection in PropertyTypeEditor.ph… |
ChurchCRM |
CRM |
2026-04-07T18:00:09.383Z | 2026-04-08T18:45:58.503Z | |
| cve-2026-39339 | ChurchCRM has an API Authentication Bypass |
ChurchCRM |
CRM |
2026-04-07T17:58:50.015Z | 2026-04-07T19:59:11.055Z | |
| cve-2026-39338 | ChurchCRM has Blind XSS via Global Search – Administra… |
ChurchCRM |
CRM |
2026-04-07T17:57:30.410Z | 2026-04-09T15:57:12.789Z | |
| cve-2026-39336 | ChurchCRM has Stored XSS from unescaped config values … |
ChurchCRM |
CRM |
2026-04-07T17:40:55.153Z | 2026-04-07T18:40:33.123Z | |
| cve-2026-39334 | ChurchCRM has a Blind SQL injection in SettingsIndivid… |
ChurchCRM |
CRM |
2026-04-07T17:38:45.436Z | 2026-04-07T18:08:28.055Z | |
| cve-2026-39333 | ChurchCRM has Reflected XSS in DateStart/DateEnd param… |
ChurchCRM |
CRM |
2026-04-07T17:38:02.576Z | 2026-04-07T19:59:17.229Z | |
| cve-2026-39332 | ChurchCRM has Reflected Cross-Site Scripting (XSS) in … |
ChurchCRM |
CRM |
2026-04-07T17:37:23.574Z | 2026-04-08T14:41:01.071Z | |
| cve-2026-39331 | ChurchCRM has an API Authorization Bypass Allows Authe… |
ChurchCRM |
CRM |
2026-04-07T17:36:41.987Z | 2026-04-07T18:39:56.463Z | |
| cve-2026-39330 | ChurchCRM has a Blind SQL injection in PropertyAssign.php |
ChurchCRM |
CRM |
2026-04-07T17:34:30.429Z | 2026-04-07T18:09:08.271Z | |
| cve-2026-39329 | ChurchCRM has a Blind SQL injection in EventNames.php |
ChurchCRM |
CRM |
2026-04-07T17:33:30.119Z | 2026-04-07T19:59:23.647Z | |
| cve-2026-39328 | ChurchCRM has Stored XSS in Social Profile Fields |
ChurchCRM |
CRM |
2026-04-07T17:32:41.364Z | 2026-04-09T15:50:07.852Z | |
| cve-2026-39327 | ChurchCRM has a SQL injection in MemberRoleChange.php |
ChurchCRM |
CRM |
2026-04-07T17:31:37.384Z | 2026-04-07T18:39:00.851Z | |
| cve-2026-39326 | ChurchCRM has a Blind SQL injection in PropertyTypeEdi… |
ChurchCRM |
CRM |
2026-04-07T17:30:57.529Z | 2026-04-07T19:59:29.975Z | |
| cve-2026-39325 | ChurchCRM has a Blind SQL injection in SettingsUser.php |
ChurchCRM |
CRM |
2026-04-07T17:29:19.882Z | 2026-04-09T15:48:09.561Z | |
| cve-2026-39323 | N/A | {'rejectedReasons': [{'lang': 'en', 'value': '** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39326. Reason: This candidate is a duplicate of CVE-2026-39326. Notes: All CVE users should reference CVE-2026-39326 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.another CVE.'}], 'replacedBy': ['CVE-2026-39326'], 'providerMetadata': {'orgId': 'a0819718-46f1-4df5-94e2-005712e83aaa', 'shortName': 'GitHub_M', 'dateUpdated': '2026-04-09T17:19:47.880Z'}} | N/A | N/A | 2026-04-07T17:28:37.122Z | 2026-04-09T17:19:47.880Z |
| cve-2026-39318 | ChurchCRM has a DDL SQL Injection in GroupPropsFormRow… |
ChurchCRM |
CRM |
2026-04-07T17:27:51.450Z | 2026-04-09T17:25:34.147Z | |
| cve-2026-39335 | ChurchCRM has Stored XSS via Unescaped data-* Attribut… |
ChurchCRM |
CRM |
2026-04-07T17:23:08.968Z | 2026-04-08T18:47:09.445Z | |
| cve-2026-39317 | N/A | {'rejectedReasons': [{'lang': 'en', 'value': '** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-39334. Reason: This candidate is a duplicate of CVE-2026-39334. Notes: All CVE users should reference CVE-2026-39334 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.another CVE.'}], 'replacedBy': ['CVE-2026-39334'], 'providerMetadata': {'orgId': 'a0819718-46f1-4df5-94e2-005712e83aaa', 'shortName': 'GitHub_M', 'dateUpdated': '2026-04-09T17:18:27.227Z'}} | N/A | N/A | 2026-04-07T17:20:02.186Z | 2026-04-09T17:18:27.227Z |
| cve-2026-24175 | 7.5 (v3.1) | NVIDIA Triton Inference Server contains a vulnera… |
NVIDIA |
Triton Inference Server |
2026-04-07T17:13:03.758Z | 2026-04-08T18:47:48.149Z |
| cve-2026-24174 | 7.5 (v3.1) | NVIDIA Triton Inference Server contains a vulnera… |
NVIDIA |
Triton Inference Server |
2026-04-07T17:12:42.500Z | 2026-04-08T18:48:16.855Z |
| cve-2026-24173 | 7.5 (v3.1) | NVIDIA Triton Inference Server contains a vulnera… |
NVIDIA |
Triton Inference Server |
2026-04-07T17:12:28.462Z | 2026-04-07T18:56:46.472Z |
| cve-2026-24147 | 4.8 (v3.1) | NVIDIA Triton Inference Server contains a vulnera… |
NVIDIA |
Triton Inference Server |
2026-04-07T17:12:11.678Z | 2026-04-07T19:17:39.702Z |
| cve-2026-24146 | 7.5 (v3.1) | NVIDIA Triton Inference Server contains a vulnera… |
NVIDIA |
Triton Inference Server |
2026-04-07T17:11:54.812Z | 2026-04-07T19:18:08.817Z |
| cve-2026-35576 | ChurchCRM has Stored Cross-Site Scripting (XSS) in Per… |
ChurchCRM |
CRM |
2026-04-07T17:11:24.846Z | 2026-04-09T15:46:32.060Z | |
| cve-2026-24156 | 7.3 (v3.1) | NVIDIA DALI contains a vulnerability where an att… |
NVIDIA |
DALI |
2026-04-07T17:11:16.386Z | 2026-04-07T19:22:32.597Z |
| cve-2026-22682 | 8.4 (v4.0) 7.1 (v3.1) | OpenHarness Improper Access Control via File Tools |
HKUDS |
OpenHarness |
2026-04-07T17:09:01.033Z | 2026-04-09T15:43:59.432Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-129 | Multiples vulnérabilités dans Microsoft Office | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-128 | Vulnérabilité dans les produits F-Secure | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-127 | Multiples vulnérabilités dans les produits Intel | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-126 | Multiples vulnérabilités dans Mozilla Firefox | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-125 | Multiples vulnérabilités dans les produits SAP | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-124 | Multiples vulnérabilités dans les produits Siemens | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-123 | Multiples vulnérabilités dans les produits Schneider | 2022-02-09T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-122 | Multiples vulnérabilités dans Google Android | 2022-02-08T00:00:00.000000 | 2022-02-08T00:00:00.000000 |
| certfr-2022-avi-121 | Multiples vulnérabilités dans Google Chrome OS | 2022-02-08T00:00:00.000000 | 2022-02-08T00:00:00.000000 |
| certfr-2022-avi-120 | Vulnérabilité dans Red Hat Gluster Storage Server | 2022-02-08T00:00:00.000000 | 2022-02-08T00:00:00.000000 |
| certfr-2022-avi-119 | Vulnérabilité dans SonicWall SMA1000 | 2022-02-08T00:00:00.000000 | 2022-02-08T00:00:00.000000 |
| certfr-2022-avi-118 | [MàJ] Multiples vulnérabilités dans Zimbra | 2022-02-07T00:00:00.000000 | 2022-02-09T00:00:00.000000 |
| certfr-2022-avi-117 | Multiples vulnérabilités dans Postfix | 2022-02-07T00:00:00.000000 | 2022-02-07T00:00:00.000000 |
| certfr-2022-avi-116 | Vulnérabilité dans MongoDB | 2022-02-07T00:00:00.000000 | 2022-02-07T00:00:00.000000 |
| certfr-2022-avi-115 | Vulnérabilité dans IBM WebSphere | 2022-02-07T00:00:00.000000 | 2022-02-07T00:00:00.000000 |
| certfr-2022-avi-114 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-02-07T00:00:00.000000 | 2022-02-07T00:00:00.000000 |
| certfr-2022-avi-113 | Multiples vulnérabilités dans les produits NetApp | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-112 | Multiples vulnérabilités dans les produits GitLab | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-111 | Multiples vulnérabilités dans F5 BIG-IP et BIG-IQ | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-110 | Multiples vulnérabilités dans Microsoft Edge | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-109 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-108 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-02-04T00:00:00.000000 | 2022-02-04T00:00:00.000000 |
| certfr-2022-avi-107 | Multiples vulnérabilités dans Cisco Small Business RV | 2022-02-03T00:00:00.000000 | 2022-02-03T00:00:00.000000 |
| certfr-2022-avi-106 | Vulnérabilité dans PostgreSQL JDBC | 2022-02-03T00:00:00.000000 | 2022-02-03T00:00:00.000000 |
| certfr-2022-avi-105 | Multiples vulnérabilités dans Google Chrome | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |
| certfr-2022-avi-104 | Multiples vulnérabilités dans les produits Fortinet | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |
| certfr-2022-avi-103 | Vulnérabilité dans F5 BIG-IP et BIG-IQ | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |
| certfr-2022-avi-102 | Vulnérabilité dans Sophos Capsule8 | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |
| certfr-2022-avi-101 | Vulnérabilité dans le noyau Linux de Red Hat | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |
| certfr-2022-avi-100 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-02-02T00:00:00.000000 | 2022-02-02T00:00:00.000000 |