Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5671 | Cyber-III Student-Management-System Class Schedule Del… |
Cyber-III |
Student-Management-System |
2026-04-06T17:15:11.400Z | 2026-04-07T14:08:29.827Z | |
| cve-2026-35044 | BentoML has a Server-Side Template Injection via unsan… |
bentoml |
BentoML |
2026-04-06T17:13:43.133Z | 2026-04-06T18:49:59.815Z | |
| cve-2026-35043 | BentoML: command injection in cloud deployment setup s… |
bentoml |
BentoML |
2026-04-06T17:10:24.466Z | 2026-04-07T14:09:07.570Z | |
| cve-2026-35042 | fast-jwt accepts unknown `crit` header extensions (RFC… |
nearform |
fast-jwt |
2026-04-06T17:02:12.180Z | 2026-04-07T15:59:49.872Z | |
| cve-2026-35039 | fast-jwt Affected by Cache Confusion via cacheKeyBuild… |
nearform |
fast-jwt |
2026-04-06T16:59:43.124Z | 2026-04-08T11:54:39.776Z | |
| cve-2026-35037 | Ech0 affected by unauthenticated SSRF in GetWebsiteTit… |
lin-snow |
Ech0 |
2026-04-06T16:56:54.674Z | 2026-04-06T18:48:39.909Z | |
| cve-2026-35036 | Ech0 Affected by Unauthenticated Server-Side Request F… |
lin-snow |
Ech0 |
2026-04-06T16:55:47.544Z | 2026-04-07T14:09:40.939Z | |
| cve-2026-35035 | CI4MS Company Information Public-Facing Page Full Plat… |
ci4-cms-erp |
ci4ms |
2026-04-06T16:49:10.176Z | 2026-04-08T14:26:39.894Z | |
| cve-2026-35030 | LiteLLM has an authentication bypass via OIDC userinfo… |
BerriAI |
litellm |
2026-04-06T16:47:02.065Z | 2026-04-07T14:24:34.782Z | |
| cve-2026-5670 | Cyber-III Student-Management-System upload.php move_up… |
Cyber-III |
Student-Management-System |
2026-04-06T16:45:11.611Z | 2026-04-07T14:23:09.397Z | |
| cve-2026-35029 | LiteLLM affected by privilege escalation via unrestric… |
BerriAI |
litellm |
2026-04-06T16:35:28.974Z | 2026-04-29T19:32:18.471Z | |
| cve-2026-34992 | Missing Encryption of Sensitive Data in antrea.io/antrea |
antrea-io |
antrea |
2026-04-06T16:31:39.224Z | 2026-04-07T14:10:53.588Z | |
| cve-2026-5669 | Cyber-III Student-Management-System Parameter login.ph… |
Cyber-III |
Student-Management-System |
2026-04-06T16:30:12.215Z | 2026-04-06T16:57:48.351Z | |
| cve-2026-34989 | CI4MS affected by Profile & User Management Full Accou… |
ci4-cms-erp |
ci4ms |
2026-04-06T16:25:54.285Z | 2026-04-07T16:00:10.965Z | |
| cve-2026-34986 | Go JOSE affect by a panic in JWE decryption |
go-jose |
go-jose |
2026-04-06T16:22:45.353Z | 2026-04-07T14:21:54.041Z | |
| cve-2026-34981 | whisperX REST API: SSRF in download_from_url() — URL v… |
pavelzbornik |
whisperX-FastAPI |
2026-04-06T16:19:13.887Z | 2026-04-06T18:45:41.844Z | |
| cve-2026-34977 | Aperi'Solve Affected by Unauthenticated RCE via JPSeek… |
Zeecka |
AperiSolve |
2026-04-06T16:16:35.060Z | 2026-04-07T14:11:39.423Z | |
| cve-2026-5668 | Cyber-III Student-Management-System add%20notice.php c… |
Cyber-III |
Student-Management-System |
2026-04-06T16:15:13.743Z | 2026-04-06T18:45:01.460Z | |
| cve-2026-34976 | Dgraph Affected by Pre-Auth Database Overwrite + SSRF … |
dgraph-io |
dgraph |
2026-04-06T16:12:43.596Z | 2026-04-07T16:00:19.660Z | |
| cve-2026-34975 | Plunk has a CRLF Email Header Injection in raw MIME me… |
useplunk |
plunk |
2026-04-06T16:10:05.699Z | 2026-04-07T14:20:44.912Z | |
| cve-2026-34841 | Axios npm Supply Chain Incident Impacting @usebruno/cli |
usebruno |
bruno |
2026-04-06T16:08:08.198Z | 2026-04-08T03:55:33.960Z | |
| cve-2026-34783 | Ferret has a Path Traversal in IO::FS::WRITE allows ar… |
MontFerret |
ferret |
2026-04-06T16:04:24.959Z | 2026-04-07T14:12:22.159Z | |
| cve-2026-34969 | Nhost Leaks the Refresh Token via URL Query Parameter … |
nhost |
nhost |
2026-04-06T16:01:10.174Z | 2026-04-07T16:00:25.296Z | |
| cve-2026-34951 | Reflected XSS in footer.php in Workbench Allows Attack… |
forceworkbench |
forceworkbench |
2026-04-06T15:58:45.583Z | 2026-04-07T14:18:59.617Z | |
| cve-2026-34950 | fast-jwt has an incomplete fix for CVE-2023-48223: JWT… |
nearform |
fast-jwt |
2026-04-06T15:54:03.765Z | 2026-04-06T18:43:16.088Z | |
| cve-2026-34940 | KubeAI has an OS Command Injection via Model URL in Ol… |
kubeai-project |
kubeai |
2026-04-06T15:49:06.918Z | 2026-04-16T13:45:47.027Z | |
| cve-2026-34764 | Electron has a use-after-free in offscreen shared text… |
electron |
electron |
2026-04-06T15:46:40.189Z | 2026-04-07T16:00:32.633Z | |
| cve-2026-34756 | vLLM Affected by Unauthenticated OOM Denial of Service… |
vllm-project |
vllm |
2026-04-06T15:40:03.448Z | 2026-04-07T14:17:12.597Z | |
| cve-2026-34755 | vLLM Affected by Denial of Service via Unbounded Frame… |
vllm-project |
vllm |
2026-04-06T15:38:53.201Z | 2026-04-06T18:36:31.152Z | |
| cve-2026-34753 | vLLM affected by Server-Side Request Forgery (SSRF) in… |
vllm-project |
vllm |
2026-04-06T15:36:52.942Z | 2026-04-07T14:15:32.390Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-814 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-10-22T00:00:00.000000 | 2021-10-22T00:00:00.000000 |
| certfr-2021-avi-813 | Multiples vulnérabilités dans Google Chrome OS | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-812 | Vulnérabilité dans les produits IBM | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-811 | Multiples vulnérabilités dans les produits SolarWinds | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-810 | Vulnérabilité dans les produits ESET | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-809 | Vulnérabilité dans Cisco IOS XE SD-WAN | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-808 | Multiples vulnérabilités dans Google Chrome | 2021-10-21T00:00:00.000000 | 2021-10-21T00:00:00.000000 |
| certfr-2021-avi-807 | Vulnérabilité dans VMware vRealize Operations | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-806 | Multiples vulnérabilités dans Oracle Virtualization | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-805 | Multiples vulnérabilités dans les produits Oracle Systems | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-804 | Multiples vulnérabilités dans Oracle PeopleSoft | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-803 | Multiples vulnérabilités dans Oracle Java SE | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-802 | Multiples vulnérabilités dans Oracle Database | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-801 | Multiples vulnérabilités dans Oracle MySQL | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-800 | Multiples vulnérabilités dans Tenable.sc | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-799 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-798 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-797 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-10-20T00:00:00.000000 | 2021-10-20T00:00:00.000000 |
| certfr-2021-avi-796 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-10-19T00:00:00.000000 | 2021-10-19T00:00:00.000000 |
| certfr-2021-avi-795 | Vulnérabilité dans NetApp Clustered Data ONTAP | 2021-10-19T00:00:00.000000 | 2021-10-19T00:00:00.000000 |
| certfr-2021-avi-794 | Vulnérabilité dans Check Point Mobile Access Portal Agent | 2021-10-18T00:00:00.000000 | 2021-10-18T00:00:00.000000 |
| certfr-2021-avi-793 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-10-15T00:00:00.000000 | 2021-10-15T00:00:00.000000 |
| certfr-2021-avi-792 | Multiples vulnérabilités dans Google Chrome OS | 2021-10-15T00:00:00.000000 | 2021-10-15T00:00:00.000000 |
| certfr-2021-avi-791 | Multiples vulnérabilités dans les produits IBM | 2021-10-15T00:00:00.000000 | 2021-10-15T00:00:00.000000 |
| certfr-2021-avi-790 | Multiples vulnérabilités dans les produits TrendMicro | 2021-10-15T00:00:00.000000 | 2021-10-15T00:00:00.000000 |
| certfr-2021-avi-789 | Multiples vulnérabilités dans les produits Juniper | 2021-10-14T00:00:00.000000 | 2021-10-14T00:00:00.000000 |
| certfr-2021-avi-788 | Multiples vulnérabilités dans IBM Cloud Foundry Migration Runtime | 2021-10-14T00:00:00.000000 | 2021-10-14T00:00:00.000000 |
| certfr-2021-avi-787 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2021-10-14T00:00:00.000000 | 2021-10-14T00:00:00.000000 |
| certfr-2021-avi-786 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-10-14T00:00:00.000000 | 2021-10-14T00:00:00.000000 |
| certfr-2021-avi-785 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-10-14T00:00:00.000000 | 2021-10-14T00:00:00.000000 |