Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5368 | projectworlds Car Rental Project Parameter login.php s… |
projectworlds |
Car Rental Project |
2026-04-02T17:15:13.177Z | 2026-04-02T17:44:32.432Z | |
| cve-2026-34523 | SillyTavern: Path traversal allows file existence oracle |
SillyTavern |
SillyTavern |
2026-04-02T17:14:31.694Z | 2026-04-03T15:56:24.472Z | |
| cve-2026-34522 | SillyTavern: Path traversal in `/api/chats/import` all… |
SillyTavern |
SillyTavern |
2026-04-02T17:13:44.322Z | 2026-04-02T19:00:48.579Z | |
| cve-2026-26962 | Rack: Header injection in multipart requests |
rack |
rack |
2026-04-02T17:10:17.091Z | 2026-04-03T18:13:06.632Z | |
| cve-2026-34835 | Rack: `Rack::Request` accepts invalid Host characters,… |
rack |
rack |
2026-04-02T17:09:07.047Z | 2026-04-02T17:44:03.453Z | |
| cve-2026-35414 | 4.2 (v3.1) | OpenSSH before 10.3 mishandles the authorized_key… |
OpenBSD |
OpenSSH |
2026-04-02T17:08:15.628Z | 2026-04-02T18:17:04.391Z |
| cve-2026-34827 | Rack: Algorithmic-Complexity DoS in Rack::Multipart::Parser |
rack |
rack |
2026-04-02T17:07:48.279Z | 2026-04-03T18:13:16.834Z | |
| cve-2026-32762 | Rack: Forwarded Header semicolon injection enables Hos… |
rack |
rack |
2026-04-02T17:06:50.819Z | 2026-04-02T17:42:42.305Z | |
| cve-2026-33271 | 6.7 (v3.0) | Local privilege escalation due to insecure folder… |
Acronis |
Acronis True Image |
2026-04-02T17:06:24.089Z | 2026-04-03T03:55:49.028Z |
| cve-2026-27774 | 6.7 (v3.0) | Local privilege escalation due to DLL hijacking v… |
Acronis |
Acronis True Image |
2026-04-02T17:05:19.178Z | 2026-04-03T03:55:47.929Z |
| cve-2026-28728 | 6.7 (v3.0) | Local privilege escalation due to DLL hijacking v… |
Acronis |
Acronis True Image |
2026-04-02T17:04:45.425Z | 2026-04-03T03:55:46.690Z |
| cve-2026-5360 | Free5GC aper type confusion |
n/a |
Free5GC |
2026-04-02T17:00:19.072Z | 2026-04-03T19:59:25.061Z | |
| cve-2026-35388 | 2.5 (v3.1) | OpenSSH before 10.3 omits connection multiplexing… |
OpenBSD |
OpenSSH |
2026-04-02T16:57:31.073Z | 2026-04-02T18:16:41.820Z |
| cve-2026-35387 | 3.1 (v3.1) | OpenSSH before 10.3 can use unintended ECDSA algo… |
OpenBSD |
OpenSSH |
2026-04-02T16:52:53.623Z | 2026-04-03T13:07:56.358Z |
| cve-2026-34830 | Rack: Rack::Sendfile regex injection via HTTP_X_ACCEL_… |
rack |
rack |
2026-04-02T16:47:40.490Z | 2026-04-02T18:59:46.589Z | |
| cve-2026-34829 | Rack: Denial of Service via Unbounded Multipart File U… |
rack |
rack |
2026-04-02T16:46:47.357Z | 2026-04-02T17:41:33.990Z | |
| cve-2026-34826 | Rack: Unbounded Range Count in get_byte_ranges Enables DoS |
rack |
rack |
2026-04-02T16:45:53.964Z | 2026-04-03T18:13:27.375Z | |
| cve-2026-5355 | Trendnet TEW-657BRM setup.cgi vpn_drop os command injection |
Trendnet |
TEW-657BRM |
2026-04-02T16:45:17.025Z | 2026-04-02T18:59:51.603Z | |
| cve-2026-34786 | Rack: Rack::Static header_rules bypass via URL-encoded paths |
rack |
rack |
2026-04-02T16:44:59.694Z | 2026-04-03T17:38:11.143Z | |
| cve-2026-35386 | 3.6 (v3.1) | In OpenSSH before 10.3, command execution can occ… |
OpenBSD |
OpenSSH |
2026-04-02T16:44:27.806Z | 2026-04-03T03:55:45.599Z |
| cve-2026-34785 | Rack: Local file inclusion in `Rack::Static` via URL P… |
rack |
rack |
2026-04-02T16:44:17.134Z | 2026-04-02T18:59:08.828Z | |
| cve-2026-34763 | Rack: Rack::Directory info disclosure and DoS via unes… |
rack |
rack |
2026-04-02T16:43:42.189Z | 2026-04-02T17:41:12.293Z | |
| cve-2026-34831 | Rack: Content-Length mismatch in Rack::Files error responses |
rack |
rack |
2026-04-02T16:43:08.762Z | 2026-04-03T17:48:11.330Z | |
| cve-2026-26961 | Rack: Multipart Boundary Parsing Ambiguity allowing WA… |
rack |
rack |
2026-04-02T16:42:16.766Z | 2026-04-03T17:58:12.149Z | |
| cve-2026-34230 | Rack: Quadratic complexity in Rack::Utils.select_best_… |
rack |
rack |
2026-04-02T16:41:21.095Z | 2026-04-03T18:19:00.388Z | |
| cve-2026-35385 | 7.5 (v3.1) | In OpenSSH before 10.3, a file downloaded by scp … |
OpenBSD |
OpenSSH |
2026-04-02T16:30:59.615Z | 2026-04-03T03:55:44.273Z |
| cve-2026-5354 | Trendnet TEW-657BRM setup.cgi vpn_connect os command i… |
Trendnet |
TEW-657BRM |
2026-04-02T16:30:13.623Z | 2026-04-02T18:58:15.422Z | |
| cve-2026-35038 | signalk-server: Arbitrary Prototype Read via `from` Fi… |
SignalK |
signalk-server |
2026-04-02T16:20:17.750Z | 2026-04-02T18:46:36.895Z | |
| cve-2026-5353 | Trendnet TEW-657BRM setup.cgi ping_test os command injection |
Trendnet |
TEW-657BRM |
2026-04-02T16:15:15.653Z | 2026-04-02T16:21:43.958Z | |
| cve-2026-34083 | signalk-server: OAuth Authorization Code Theft via Unv… |
SignalK |
signalk-server |
2026-04-02T16:14:38.893Z | 2026-04-02T17:39:18.548Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2021-avi-062 | Multiples vulnérabilités dans les produits Apple | 2021-01-27T00:00:00.000000 | 2021-01-27T00:00:00.000000 |
| certfr-2021-avi-061 | Multiples vulnérabilités dans Trend Micro ServerProtect pour Linux | 2021-01-27T00:00:00.000000 | 2021-01-27T00:00:00.000000 |
| certfr-2021-avi-060 | Multiples vulnérabilités dans Mozilla Thunderbird | 2021-01-27T00:00:00.000000 | 2021-01-27T00:00:00.000000 |
| certfr-2021-avi-059 | Multiples vulnérabilités dans Mozilla Firefox | 2021-01-27T00:00:00.000000 | 2021-01-27T00:00:00.000000 |
| certfr-2021-avi-058 | Vulnérabilité dans Belden HiLCOS | 2021-01-26T00:00:00.000000 | 2021-01-26T00:00:00.000000 |
| certfr-2021-avi-057 | Multiples vulnérabilités dans Moodle | 2021-01-26T00:00:00.000000 | 2021-01-26T00:00:00.000000 |
| certfr-2021-avi-056 | Vulnérabilité dans Mitel BusinessCTI Enterprise | 2021-01-25T00:00:00.000000 | 2021-01-25T00:00:00.000000 |
| certfr-2021-avi-055 | Multiples vulnérabilités dans VLC media player | 2021-01-22T00:00:00.000000 | 2021-01-22T00:00:00.000000 |
| certfr-2021-avi-054 | Multiples vulnérabilités dans Microsoft Edge | 2021-01-22T00:00:00.000000 | 2021-01-22T00:00:00.000000 |
| certfr-2021-avi-053 | Vulnérabilité dans Xen | 2021-01-22T00:00:00.000000 | 2021-01-22T00:00:00.000000 |
| certfr-2021-avi-052 | Multiples vulnérabilités dans les produits Cisco | 2021-01-21T00:00:00.000000 | 2021-01-21T00:00:00.000000 |
| certfr-2021-avi-051 | Multiples vulnérabilités dans les produits Stormshield | 2021-01-21T00:00:00.000000 | 2021-01-28T00:00:00.000000 |
| certfr-2021-avi-050 | Vulnérabilité dans Drupal Core | 2021-01-21T00:00:00.000000 | 2021-01-21T00:00:00.000000 |
| certfr-2021-avi-049 | Vulnérabilité dans IBM WebSphere | 2021-01-21T00:00:00.000000 | 2021-01-21T00:00:00.000000 |
| certfr-2021-avi-048 | Multiples vulnérabilités dans Google Chrome | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-047 | Multiples vulnérabilités dans Oracle WebLogic | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-046 | Multiples vulnérabilités dans Oracle Virtualization | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-045 | Multiples vulnérabilités dans Oracle Systems | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-044 | Multiples vulnérabilités dans Oracle MySQL | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-043 | Vulnérabilité dans Oracle Java SE | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-042 | Multiples vulnérabilités dans Oracle Database Server | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-041 | Multiples vulnérabilités dans les produits Siemens | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-040 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2021-01-20T00:00:00.000000 | 2021-01-20T00:00:00.000000 |
| certfr-2021-avi-039 | Vulnérabilité dans Juniper Junos OS | 2021-01-19T00:00:00.000000 | 2021-01-19T00:00:00.000000 |
| certfr-2021-avi-038 | Multiples vulnérabilités dans Juniper Junos OS | 2021-01-15T00:00:00.000000 | 2021-01-15T00:00:00.000000 |
| certfr-2021-avi-037 | Vulnérabilité dans le noyau Linux d'Ubuntu | 2021-01-15T00:00:00.000000 | 2021-01-15T00:00:00.000000 |
| certfr-2021-avi-036 | Vulnérabilité dans le noyau Linux de Red Hat | 2021-01-15T00:00:00.000000 | 2021-01-15T00:00:00.000000 |
| certfr-2021-avi-035 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2021-01-15T00:00:00.000000 | 2021-01-15T00:00:00.000000 |
| certfr-2021-avi-034 | Multiples vulnérabilités dans GitLab | 2021-01-14T00:00:00.000000 | 2021-01-14T00:00:00.000000 |
| certfr-2021-avi-033 | Multiples vulnérabilités dans les produits Juniper | 2021-01-14T00:00:00.000000 | 2021-01-14T00:00:00.000000 |