Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5683 | Tenda CX12L P2pListFilter fromP2pListFilter stack-base… |
Tenda |
CX12L |
2026-04-06T20:30:14.725Z | 2026-04-07T19:34:26.551Z | |
| cve-2026-35391 | Bulwark Webmail getClientIP() trusted client-controlle… |
bulwarkmail |
webmail |
2026-04-06T20:17:39.793Z | 2026-04-07T15:09:49.591Z | |
| cve-2026-35390 | Content-Security-Policy was set to Report-Only mode, f… |
bulwarkmail |
webmail |
2026-04-06T20:13:30.093Z | 2026-04-07T19:33:05.084Z | |
| cve-2026-35389 | Bulwark Webmail S/MIME signature verification accepted… |
bulwarkmail |
webmail |
2026-04-06T20:11:56.827Z | 2026-04-07T16:19:51.168Z | |
| cve-2026-35213 | Regular Expression Denial of Service (ReDoS) in @hapi/… |
hapijs |
content |
2026-04-06T20:08:54.811Z | 2026-04-07T14:02:06.943Z | |
| cve-2026-35208 | lichess.org has an Unsanitized Stream Title Injection … |
lichess-org |
lila |
2026-04-06T20:06:25.821Z | 2026-04-07T15:09:55.304Z | |
| cve-2026-35203 | ZLMediaKit VP9 RTP Parser Out-of-Bounds Read |
ZLMediaKit |
ZLMediaKit |
2026-04-06T19:54:45.052Z | 2026-04-07T19:30:51.437Z | |
| cve-2026-35201 | Discount has an Out-of-bounds Read in rdiscount |
davidfstr |
rdiscount |
2026-04-06T19:49:48.806Z | 2026-04-07T16:21:14.803Z | |
| cve-2026-35200 | Parse Server has a file upload Content-Type override v… |
parse-community |
parse-server |
2026-04-06T19:47:27.709Z | 2026-04-07T14:02:50.601Z | |
| cve-2026-5682 | Meesho Online Shopping App com.meesho.supply endpoint … |
Meesho |
Online Shopping App |
2026-04-06T19:45:14.504Z | 2026-04-07T13:37:44.226Z | |
| cve-2026-35199 | SymCrypt SymCryptXmssSign function - Heap overflow via… |
microsoft |
SymCrypt |
2026-04-06T19:44:31.143Z | 2026-04-07T15:10:00.886Z | |
| cve-2026-35197 | Code injection in dye template expressions |
mattieb |
dye |
2026-04-06T19:39:23.095Z | 2026-04-07T16:11:34.861Z | |
| cve-2026-35459 | pyLoad has SSRF fix bypass via HTTP redirect |
pyload |
pyload |
2026-04-06T19:37:00.598Z | 2026-04-07T19:29:49.223Z | |
| cve-2026-35187 | pyLoad has SSRF in parse_urls API endpoint via unvalid… |
pyload |
pyload |
2026-04-06T19:33:06.557Z | 2026-04-07T14:03:28.344Z | |
| cve-2026-35185 | HAX CMS's public /server-status endpoint exposes authe… |
haxtheweb |
HAXiam |
2026-04-06T19:24:57.425Z | 2026-04-07T15:10:10.078Z | |
| cve-2026-35184 | EcclesiaCRM has a Critical SQL Injection |
phili67 |
ecclesiacrm |
2026-04-06T19:21:22.597Z | 2026-04-07T19:25:50.870Z | |
| cve-2026-5681 | itsourcecode sanitize or validate this input Parameter… |
itsourcecode |
sanitize or validate this input |
2026-04-06T19:15:12.127Z | 2026-04-07T16:12:51.633Z | |
| cve-2026-35183 | Brave CMS has an Insecure Direct Object Reference in A… |
Ajax30 |
BraveCMS-2.0 |
2026-04-06T19:11:28.807Z | 2026-04-07T16:14:01.519Z | |
| cve-2026-35182 | Missing Authorization Privilege Escalation |
Ajax30 |
BraveCMS-2.0 |
2026-04-06T19:10:28.850Z | 2026-04-07T14:04:00.456Z | |
| cve-2026-35181 | WWBN AVideo Affected by CSRF on Player Skin Configurat… |
WWBN |
AVideo |
2026-04-06T19:09:45.204Z | 2026-04-07T15:10:15.182Z | |
| cve-2026-35172 | Distribution has stale blob access resurrection via re… |
distribution |
distribution |
2026-04-06T19:08:44.512Z | 2026-04-07T14:46:34.904Z | |
| cve-2026-35180 | WWBN AVideo affected by CSRF on Site Customization End… |
WWBN |
AVideo |
2026-04-06T19:06:46.447Z | 2026-04-07T14:44:34.133Z | |
| cve-2026-35179 | WWBN AVideo Unauthenticated Instagram Graph API Proxy … |
WWBN |
AVideo |
2026-04-06T19:05:49.325Z | 2026-04-07T16:14:54.142Z | |
| cve-2026-35178 | Workbench Affected by Remote Code Execution (RCE) via … |
forceworkbench |
forceworkbench |
2026-04-06T19:01:21.742Z | 2026-04-07T14:04:48.145Z | |
| cve-2026-5679 | Totolink A3300R cstecgi.cgi vsetTr069Cfg os command in… |
Totolink |
A3300R |
2026-04-06T19:00:19.633Z | 2026-04-07T15:10:20.818Z | |
| cve-2026-35176 | openFPGALoader has a heap buffer overflow in POFParser… |
trabucayre |
openFPGALoader |
2026-04-06T18:59:58.733Z | 2026-04-07T15:10:26.593Z | |
| cve-2026-35022 | 9.3 (v4.0) 9.8 (v3.1) | Anthropic Claude Code & Agent SDK OS Command Injection… |
Anthropic |
Claude Code |
2026-04-06T18:59:29.656Z | 2026-04-13T20:07:04.982Z |
| cve-2026-35021 | 8.4 (v4.0) 7.8 (v3.1) | Anthropic Claude Code & Agent SDK OS Command Injection… |
Anthropic |
Claude Code |
2026-04-06T18:59:06.979Z | 2026-04-13T20:07:21.591Z |
| cve-2026-35170 | openFPGALoader has a heap buffer overflow in BitParser… |
trabucayre |
openFPGALoader |
2026-04-06T18:59:04.770Z | 2026-04-07T15:10:56.071Z | |
| cve-2026-35020 | 8.6 (v4.0) 8.4 (v3.1) | Anthropic Claude Code & Agent SDK OS Command Injection… |
Anthropic |
Claude Code |
2026-04-06T18:58:40.513Z | 2026-04-13T20:08:43.356Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-874 | Multiples vulnérabilités dans PostgreSQL Odyssey | 2021-11-15T00:00:00.000000 | 2021-11-15T00:00:00.000000 |
| certfr-2021-avi-873 | Vulnérabilité dans les produits QNAP | 2021-11-15T00:00:00.000000 | 2021-11-15T00:00:00.000000 |
| certfr-2021-avi-872 | Multiples vulnérabilités dans Google Chrome OS | 2021-11-15T00:00:00.000000 | 2021-11-15T00:00:00.000000 |
| certfr-2021-avi-871 | Vulnérabilité dans F5 NGINX Ingress Controller | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-870 | Vulnérabilité dans VMware Tanzu Application | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-869 | Multiples vulnérabilités dans SUSE le noyau Linux de SUSE | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-868 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-867 | Multiples vulnérabilités dans PostgreSQL | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-866 | Vulnérabilité dans WordPress | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-865 | Multiples vulnérabilités dans Palo Alto Networks PAN-OS | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-864 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-11-12T00:00:00.000000 | 2021-11-12T00:00:00.000000 |
| certfr-2021-avi-863 | Multiples vulnérabilités dans les produits Microsoft | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-862 | Multiples vulnérabilités dans Microsoft Windows | 2021-11-10T00:00:00.000000 | 2021-11-16T00:00:00.000000 |
| certfr-2021-avi-861 | Multiples vulnérabilités dans Microsoft Office | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-860 | Vulnérabilité dans Microsoft Edge | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-859 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-858 | Multiples vulnérabilités dans les produits Intel | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-857 | Multiples vulnérabilités dans Samba | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-856 | Multiples vulnérabilités dans les produits Citrix | 2021-11-10T00:00:00.000000 | 2021-11-10T00:00:00.000000 |
| certfr-2021-avi-855 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-854 | Multiples vulnérabilités dans les produits Siemens | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-853 | Multiples vulnérabilités dans les produits Schneider | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-852 | Multiples vulnérabilités dans les produits SAP | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-851 | Vulnérabilité dans Postfix | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-850 | Multiples vulnérabilités dans IBM QRadar | 2021-11-09T00:00:00.000000 | 2021-11-09T00:00:00.000000 |
| certfr-2021-avi-849 | Vulnérabilité dans VMware Spring | 2021-11-05T00:00:00.000000 | 2021-11-05T00:00:00.000000 |
| certfr-2021-avi-848 | Multiples vulnérabilités dans les produits NetApp | 2021-11-04T00:00:00.000000 | 2021-11-04T00:00:00.000000 |
| certfr-2021-avi-847 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-11-04T00:00:00.000000 | 2021-11-04T00:00:00.000000 |
| certfr-2021-avi-846 | Multiples vulnérabilités dans les produits Cisco | 2021-11-04T00:00:00.000000 | 2021-11-04T00:00:00.000000 |
| certfr-2021-avi-845 | Multiples vulnérabilités dans les produits Fortinet | 2021-11-04T00:00:00.000000 | 2021-11-04T00:00:00.000000 |