Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-35444 | SDL_image has a heap buffer overflow READ via unchecke… |
libsdl-org |
SDL_image |
2026-04-06T21:44:05.986Z | 2026-04-08T14:06:28.528Z | |
| cve-2026-35471 | Improper Limitation of a Pathname to a Restricted Dire… |
patrickhener |
goshs |
2026-04-06T21:38:27.657Z | 2026-04-07T16:22:49.068Z | |
| cve-2026-35442 | Directus: Authenticated Users Can Extract Concealed Fi… |
directus |
directus |
2026-04-06T21:36:57.807Z | 2026-04-07T13:30:12.880Z | |
| cve-2026-35441 | Directus Affected by GraphQL Alias Amplification Denia… |
directus |
directus |
2026-04-06T21:36:07.737Z | 2026-04-07T15:08:57.877Z | |
| cve-2026-35413 | Directus GraphQL Schema SDL Disclosure Setting |
directus |
directus |
2026-04-06T21:34:32.683Z | 2026-04-08T14:05:44.361Z | |
| cve-2026-35412 | Directus has a TUS Upload Authorization Bypass Allows … |
directus |
directus |
2026-04-06T21:33:44.867Z | 2026-04-07T16:23:16.091Z | |
| cve-2026-35411 | Directus is an Open Redirect in Admin 2FA Setup Page |
directus |
directus |
2026-04-06T21:33:06.664Z | 2026-04-07T13:37:57.212Z | |
| cve-2026-35410 | Directus has an Open Redirect via Parser Bypass in OAu… |
directus |
directus |
2026-04-06T21:32:13.985Z | 2026-04-07T15:09:07.019Z | |
| cve-2026-5709 | 8.8 (v3.1) 7.7 (v4.0) | AWS Research and Engineering Studio (RES) FileBrowser … |
AWS |
Research and Engineering Studio (RES) |
2026-04-06T21:32:04.058Z | 2026-04-07T15:09:14.126Z |
| cve-2026-35409 | Directus has a SSRF Protection Bypass via IPv4-Mapped … |
directus |
directus |
2026-04-06T21:31:13.575Z | 2026-04-08T14:05:02.971Z | |
| cve-2026-35408 | Directus is Missing Cross-Origin Opener Policy |
directus |
directus |
2026-04-06T21:30:22.824Z | 2026-04-07T16:23:42.264Z | |
| cve-2026-5685 | Tenda CX12L addressNat fromAddressNat stack-based overflow |
Tenda |
CX12L |
2026-04-06T21:30:16.732Z | 2026-04-07T15:09:20.002Z | |
| cve-2026-5708 | 8.8 (v3.1) 8.7 (v4.0) | Improper Control of User-Modifiable Attributes in RES … |
AWS |
Research and Engineering Studio (RES) |
2026-04-06T21:28:03.951Z | 2026-04-07T15:09:25.916Z |
| cve-2026-5707 | 8.8 (v3.1) 8.7 (v4.0) | Command Injection via Virtual Desktop Session Name in … |
AWS |
Research and Engineering Studio (RES) |
2026-04-06T21:25:48.404Z | 2026-04-07T15:09:31.614Z |
| cve-2026-35404 | Open edX Platform has an Open Redirect in Survey Views… |
openedx |
openedx-platform |
2026-04-06T21:22:29.562Z | 2026-04-07T16:17:47.603Z | |
| cve-2026-22675 | 5.1 (v4.0) 5.4 (v3.1) | OCS Inventory NG Server Stored XSS via User-Agent |
OCS Inventory |
OCS Inventory NG Server |
2026-04-06T21:19:59.435Z | 2026-04-07T13:39:31.481Z |
| cve-2026-35475 | WeGIA - Open Redirect - backup redirection — Unvalidat… |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:17:04.964Z | 2026-04-07T13:40:11.583Z | |
| cve-2026-5684 | Tenda CX12L webExcptypemanFilter fromwebExcptypemanFil… |
Tenda |
CX12L |
2026-04-06T21:15:13.535Z | 2026-04-07T13:40:48.280Z | |
| cve-2026-35474 | WeGIA - Open Redirect - atualizacao redirection - Unva… |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:13:25.517Z | 2026-04-07T15:59:13.467Z | |
| cve-2026-35473 | WeGIA - Open Redirect - IentradaControle - listarId() … |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:12:35.894Z | 2026-04-08T14:01:50.893Z | |
| cve-2026-35399 | WeGIA has Stored XSS in backup file names |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:06:33.825Z | 2026-04-07T15:09:37.423Z | |
| cve-2026-35472 | WeGIA - Open Redirect - EstoqueControle - listarTodos(… |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:05:26.732Z | 2026-04-07T13:44:36.730Z | |
| cve-2026-35398 | WeGIA - Open Redirect - OrigemControle - listarTodos()… |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:04:20.675Z | 2026-04-08T14:03:07.406Z | |
| cve-2026-35396 | WeGIA - Open Redirect - IsaidaControle - listarId() - … |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:02:37.761Z | 2026-04-07T16:18:28.883Z | |
| cve-2026-35395 | WeGIA has a SQL Injection in DespachoDAO.php via id_me… |
LabRedesCefetRJ |
WeGIA |
2026-04-06T21:01:28.793Z | 2026-04-07T13:45:12.996Z | |
| cve-2026-35394 | Mobile Next has Arbitrary Android Intent Execution via… |
mobile-next |
mobile-mcp |
2026-04-06T20:52:25.170Z | 2026-04-07T15:09:43.022Z | |
| cve-2026-35393 | Improper Limitation of a Pathname to a Restricted Dire… |
patrickhener |
goshs |
2026-04-06T20:50:25.216Z | 2026-04-08T13:58:10.369Z | |
| cve-2026-35392 | goshs has an Improper Limitation of a Pathname to a Re… |
patrickhener |
goshs |
2026-04-06T20:48:56.647Z | 2026-04-07T16:19:28.746Z | |
| cve-2026-34972 | OpenFGA's BatchCheck within-request deduplication prod… |
openfga |
openfga |
2026-04-06T20:41:33.414Z | 2026-04-07T14:01:23.508Z | |
| cve-2026-5683 | Tenda CX12L P2pListFilter fromP2pListFilter stack-base… |
Tenda |
CX12L |
2026-04-06T20:30:14.725Z | 2026-04-07T19:34:26.551Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-904 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-11-26T00:00:00.000000 | 2021-11-26T00:00:00.000000 |
| certfr-2021-avi-903 | Multiples vulnérabilités dans MongoDB | 2021-11-25T00:00:00.000000 | 2021-11-25T00:00:00.000000 |
| certfr-2021-avi-902 | Multiples vulnérabilités dans Symfony | 2021-11-24T00:00:00.000000 | 2021-11-24T00:00:00.000000 |
| certfr-2021-avi-901 | Multiples vulnérabilités dans Xen | 2021-11-24T00:00:00.000000 | 2021-11-24T00:00:00.000000 |
| certfr-2021-avi-900 | Multiples vulnérabilités dans les produits VMware | 2021-11-24T00:00:00.000000 | 2021-11-24T00:00:00.000000 |
| certfr-2021-avi-899 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2021-11-24T00:00:00.000000 | 2021-11-24T00:00:00.000000 |
| certfr-2021-avi-898 | Multiples vulnérabilités dans Roundcube Webmail | 2021-11-23T00:00:00.000000 | 2021-11-23T00:00:00.000000 |
| certfr-2021-avi-897 | Multiples vulnérabilités dans Zimbra | 2021-11-23T00:00:00.000000 | 2021-11-23T00:00:00.000000 |
| certfr-2021-avi-896 | Multiples vulnérabilités dans les produits Moxa | 2021-11-23T00:00:00.000000 | 2021-11-23T00:00:00.000000 |
| certfr-2021-avi-895 | Multiples vulnérabilités dans les produits Kaspersky | 2021-11-22T00:00:00.000000 | 2021-11-22T00:00:00.000000 |
| certfr-2021-avi-894 | Multiples vulnérabilités dans Microsoft Edge | 2021-11-22T00:00:00.000000 | 2021-11-22T00:00:00.000000 |
| certfr-2021-avi-893 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-11-22T00:00:00.000000 | 2021-11-22T00:00:00.000000 |
| certfr-2021-avi-892 | Vulnérabilité dans Xen | 2021-11-22T00:00:00.000000 | 2021-11-22T00:00:00.000000 |
| certfr-2021-avi-891 | Multiples vulnérabilités dans les produits QNAP | 2021-11-19T00:00:00.000000 | 2021-11-19T00:00:00.000000 |
| certfr-2021-avi-890 | Multiples vulnérabilités dans PHP | 2021-11-19T00:00:00.000000 | 2021-11-19T00:00:00.000000 |
| certfr-2021-avi-889 | Multiples vulnérabilités dans PostgreSQL Pgpool-II | 2021-11-19T00:00:00.000000 | 2021-11-19T00:00:00.000000 |
| certfr-2021-avi-888 | Vulnérabilité dans les produits IBM | 2021-11-19T00:00:00.000000 | 2021-11-19T00:00:00.000000 |
| certfr-2021-avi-887 | Multiples vulnérabilités dans les produits F5 | 2021-11-19T00:00:00.000000 | 2021-11-19T00:00:00.000000 |
| certfr-2021-avi-886 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-11-18T00:00:00.000000 | 2021-11-18T00:00:00.000000 |
| certfr-2021-avi-885 | Multiples vulnérabilités dans Stormshield Management Center | 2021-11-18T00:00:00.000000 | 2021-11-18T00:00:00.000000 |
| certfr-2021-avi-884 | Vulnérabilité dans Microsoft Azure Active Directory | 2021-11-18T00:00:00.000000 | 2021-11-18T00:00:00.000000 |
| certfr-2021-avi-883 | Multiples vulnérabilités dans Drupal | 2021-11-18T00:00:00.000000 | 2021-11-18T00:00:00.000000 |
| certfr-2021-avi-882 | Multiples vulnérabilités dans Wireshark | 2021-11-18T00:00:00.000000 | 2021-11-18T00:00:00.000000 |
| certfr-2021-avi-881 | Multiples vulnérabilités dans les produits IBM | 2021-11-17T00:00:00.000000 | 2021-11-17T00:00:00.000000 |
| certfr-2021-avi-880 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-11-17T00:00:00.000000 | 2021-11-17T00:00:00.000000 |
| certfr-2021-avi-879 | Vulnérabilité dans Microsoft Windows | 2021-11-17T00:00:00.000000 | 2021-11-17T00:00:00.000000 |
| certfr-2021-avi-878 | Vulnérabilité dans Synology Mail Station | 2021-11-16T00:00:00.000000 | 2021-11-16T00:00:00.000000 |
| certfr-2021-avi-877 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-11-16T00:00:00.000000 | 2021-11-16T00:00:00.000000 |
| certfr-2021-avi-876 | Multiples vulnérabilités dans Moodle | 2021-11-16T00:00:00.000000 | 2021-11-16T00:00:00.000000 |
| certfr-2021-avi-875 | Multiples vulnérabilités dans les produits Check Point | 2021-11-15T00:00:00.000000 | 2021-11-15T00:00:00.000000 |