Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2025-0938 6.3 (v4.0) URL parser allowed square brackets in domain names Python Software Foundation
 CPython
 2025-01-31T17:51:35.898Z 2026-04-21T20:14:13.406Z
cve-2024-5642 N/A Buffer overread when using an empty list with SSLConte… Python Software Foundation
 CPython
 2024-06-27T21:05:31.281Z 2026-04-21T20:12:42.468Z
cve-2024-12718 5.3 (v3.1) Bypass extraction filter to modify file metadata outsi… Python Software Foundation
 CPython
 2025-06-03T12:59:10.908Z 2026-04-21T20:11:37.720Z
cve-2026-40907 WWBN AVideo has IDOR in Live Restreams list.json.php t… WWBN
 AVideo
 2026-04-21T19:50:10.257Z 2026-04-21T20:06:56.844Z
cve-2026-5483 8.5 (v3.1) Odh-dashboard: odh dashboard kubernetes service accoun… Red Hat
 Red Hat OpenShift AI 2.16
 2026-04-10T17:33:25.055Z 2026-04-21T20:06:28.669Z
cve-2026-40885 goshs: Public collaborator feed leaks .goshs ACL crede… patrickhener
 goshs
 2026-04-21T19:40:37.272Z 2026-04-21T20:05:26.627Z
cve-2025-14831 5.3 (v3.1) Gnutls: gnutls: denial of service via excessive resour… Red Hat
 Red Hat Enterprise Linux 10
 2026-02-09T14:51:32.447Z 2026-04-21T19:55:48.460Z
cve-2026-40874 mailcow: dockerized missing authorization on Forwardin… mailcow
 mailcow-dockerized
 2026-04-21T19:17:45.306Z 2026-04-21T19:53:36.285Z
cve-2026-6443 Essentialplugin Plugins (Various Versions) - Injected … essentialplugin
 Accordion and Accordion Slider
 2026-04-17T06:44:49.128Z 2026-04-21T19:53:07.705Z
cve-2026-40880 Zebra: Cached Mempool Verification Bypasses Consensus … ZcashFoundation
 zebrad
 2026-04-21T19:18:22.657Z 2026-04-21T19:52:58.880Z
cve-2026-40870 Decidim's comments API allows access to all commentabl… decidim
 decidim
 2026-04-21T19:06:09.135Z 2026-04-21T19:52:15.178Z
cve-2026-29645 N/A NEMU (OpenXiangShan/NEMU) before v2025.12.r2 cont… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:06.424Z
cve-2026-29649 N/A NEMU contains an implementation flaw in its RISC-… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:00.279Z
cve-2026-29642 N/A A local attacker who can execute privileged CSR o… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:54.758Z
cve-2026-29646 N/A In OpenXiangShan NEMU prior to 55295c4, when runn… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:49.314Z
cve-2026-29647 N/A In OpenXiangShan NEMU, insufficient Smstateen per… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:43.685Z
cve-2026-29648 N/A In OpenXiangShan NEMU, when Smstateen is enabled,… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:38.197Z
cve-2026-29643 N/A XiangShan (Open-source high-performance RISC-V pr… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:32.463Z
cve-2026-6257 9.2 (v4.0) 9.1 (v3.1) Vvveb CMS v1.0.8 Remote Code Execution via Media Management Vvveb
 Vvveb CMS
 2026-04-20T19:09:45.927Z 2026-04-21T19:50:26.897Z
cve-2026-26399 N/A A stack-use-after-return issue exists in the Ardu… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:16.102Z
cve-2026-33626 LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-21T19:50:13.326Z
cve-2026-5928 N/A Static buffer overflow in deprecated nis_local_principal The GNU C Library
 glibc
 2026-04-20T20:37:31.743Z 2026-04-21T19:49:59.071Z
cve-2026-5450 N/A scanf %mc off-by-one heap buffer overflow The GNU C Library
 glibc
 2026-04-20T20:55:41.170Z 2026-04-21T19:49:53.221Z
cve-2026-5721 wpDataTables – WordPress Data Table, Dynamic Tables & … wpdatatables
 wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin
 2026-04-20T22:25:26.695Z 2026-04-21T19:49:47.411Z
cve-2026-41296 8.8 (v4.0) 8.2 (v3.1) OpenClaw < 2026.3.31 - Sandbox Escape via TOCTOU Race … OpenClaw
 OpenClaw
 2026-04-20T23:08:10.194Z 2026-04-21T19:49:41.570Z
cve-2026-41302 4.8 (v4.0) 7.6 (v3.1) OpenClaw < 2026.3.31 - Server-Side Request Forgery via… OpenClaw
 OpenClaw
 2026-04-20T23:08:14.782Z 2026-04-21T19:49:35.930Z
cve-2026-35570 OpenClaude has Sandbox Bypass via Early-Exit Logic Fla… Gitlawb
 openclaude
 2026-04-20T23:24:08.324Z 2026-04-21T19:49:30.148Z
cve-2026-39377 nbconvert has an Arbitrary File Write via Path Travers… jupyter
 nbconvert
 2026-04-21T00:14:59.937Z 2026-04-21T19:49:24.475Z
cve-2026-39396 OpenBao has Decompression Bomb via Unbounded Copy in O… openbao
 openbao
 2026-04-21T00:44:53.943Z 2026-04-21T19:49:18.821Z
cve-2026-39866 Lawnchair vulnerable to Command Injection via unquoted… LawnchairLauncher
 lawnchair
 2026-04-21T01:19:47.510Z 2026-04-21T19:49:12.997Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2023-001926 Cross-site Scripting Vulnerability in Hitachi Ops Center Analyzer 2023-05-24T11:40+09:00 2024-05-24T17:01+09:00
jvndb-2023-000047 Beekeeper Studio vulnerable to code injection 2023-05-12T16:42+09:00 2024-05-24T16:17+09:00
jvndb-2023-000046 SR-7100VN vulnerable to privilege escalation 2023-05-09T13:58+09:00 2024-05-24T16:13+09:00
jvndb-2023-000061 Chatwork Desktop Application (Mac) vulnerable to code injection 2023-06-13T13:38+09:00 2024-05-24T16:02+09:00
jvndb-2023-002055 Multiple vulnerabilities in KbDevice digital video recorders 2023-06-07T11:52+09:00 2024-05-24T15:57+09:00
jvndb-2023-000049 Multiple vulnerabilities in Cybozu Garoon 2023-05-15T14:29+09:00 2024-05-24T15:26+09:00
jvndb-2024-000051 Splunk Config Explorer vulnerable to cross-site scripting 2024-05-24T13:50+09:00 2024-05-24T13:50+09:00
jvndb-2024-000050 WordPress Plugin "WP Booking" vulnerable to cross-site scripting 2024-05-24T13:41+09:00 2024-05-24T13:41+09:00
jvndb-2023-001534 Security Issues in FINS protocol 2023-04-18T13:58+09:00 2024-05-23T17:35+09:00
jvndb-2023-000057 "Jiyu Kukan Toku-Toku coupon" App vulnerable to improper server certificate verification 2023-06-01T14:51+09:00 2024-05-23T17:19+09:00
jvndb-2023-000026 Qrio Smart Lock Q-SL2 vulnerable to authentication bypass by capture-replay 2023-05-18T14:13+09:00 2024-05-23T17:18+09:00
jvndb-2023-000051 Multiple vulnerabilities in T&D and ESPEC MIC data logger products 2023-05-19T15:21+09:00 2024-05-23T17:03+09:00
jvndb-2023-000041 LINE WORKS Drive Explorer vulnerable to code injection 2023-05-08T15:16+09:00 2024-05-23T17:03+09:00
jvndb-2023-002111 Printer Driver Packager NX creates driver installation packages without modification detection 2023-06-15T16:06+09:00 2024-05-23T15:45+09:00
jvndb-2023-002072 Multiple vulnerabilities in Fuji Electric products 2023-06-09T12:23+09:00 2024-05-23T15:33+09:00
jvndb-2023-002100 Security updates for multiple Trend Micro products for enterprises (June 2023) 2023-06-14T14:47+09:00 2024-05-23T15:23+09:00
jvndb-2023-000066 Multiple vulnerabilities in Aterm series 2023-06-27T15:12+09:00 2024-05-22T18:16+09:00
jvndb-2023-003767 Multiple vulnerabilities in multiple FURUNO SYSTEMS wireless LAN access point devices in ST(Standalone) mode 2023-10-03T14:26+09:00 2024-05-22T18:01+09:00
jvndb-2023-000101 web2py vulnerable to OS command injection 2023-10-16T16:11+09:00 2024-05-22T17:58+09:00
jvndb-2023-000069 Multiple vulnerabilities in SoftEther VPN and PacketiX VPN 2023-07-03T15:07+09:00 2024-05-22T17:47+09:00
jvndb-2023-000096 Improper restriction of XML external entity references (XXE) in FD Application 2023-10-02T12:36+09:00 2024-05-22T15:37+09:00
jvndb-2023-003770 DoS Vulnerability in Hitachi Ops Center Common Services 2023-10-04T15:23+09:00 2024-05-22T15:31+09:00
jvndb-2023-003769 Information Exposure Vulnerability in Hitachi Ops Center Administrator 2023-10-04T15:23+09:00 2024-05-22T15:20+09:00
jvndb-2023-000095 Shihonkanri Plus vulnerable to relative path traversal 2023-09-27T13:49+09:00 2024-05-21T17:16+09:00
jvndb-2023-000097 Citadel WebCit vulnerable to cross-site scripting on Instant Messaging facility 2023-10-04T14:07+09:00 2024-05-21T17:08+09:00
jvndb-2024-000046 Android App "TP-Link Tether" and "TP-Link Tapo" vulnerable to improper server certificate verification 2024-05-21T13:33+09:00 2024-05-21T13:33+09:00
jvndb-2023-004294 Advanced Micro Devices Windows kernel drivers vulnerable to insufficient access control on its IOCTL 2023-10-27T16:10+09:00 2024-05-20T17:49+09:00
jvndb-2023-000098 e-Gov Client Application fails to restrict custom URL schemes properly 2023-10-06T14:57+09:00 2024-05-17T17:55+09:00
jvndb-2024-003188 Panasonic KW Watcher vulnerable to memory buffer error 2024-05-17T15:46+09:00 2024-05-17T15:46+09:00
jvndb-2023-021762 Ruijie BCR810W/BCR860 vulnerable to OS command injection 2024-05-17T13:54+09:00 2024-05-17T13:54+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-1045 Vulnérabilité dans MISP 2025-11-27T00:00:00.000000 2025-11-28T00:00:00.000000
certfr-2025-avi-1044 Vulnérabilité dans Mattermost Server 2025-11-27T00:00:00.000000 2025-11-27T00:00:00.000000
certfr-2025-avi-1043 Multiples vulnérabilités dans les produits Splunk 2025-11-27T00:00:00.000000 2025-11-27T00:00:00.000000
certfr-2025-avi-1042 Multiples vulnérabilités dans GitLab 2025-11-27T00:00:00.000000 2025-11-27T00:00:00.000000
certfr-2025-avi-1041 Vulnérabilité dans Synology ActiveProtect Agent 2025-11-26T00:00:00.000000 2025-11-26T00:00:00.000000
certfr-2025-avi-1040 Vulnérabilité dans Postfix 2025-11-26T00:00:00.000000 2025-11-26T00:00:00.000000
certfr-2025-avi-1039 Vulnérabilité dans Kaspersky Security Center 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1038 Vulnérabilité dans les produits PrimX 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1037 Multiples vulnérabilités dans Progress MOVEit Transfer 2025-11-25T00:00:00.000000 2025-11-25T00:00:00.000000
certfr-2025-avi-1036 Multiples vulnérabilités dans les produits VMware 2025-11-24T00:00:00.000000 2025-11-24T00:00:00.000000
certfr-2025-avi-1035 Multiples vulnérabilités dans les produits Synology 2025-11-24T00:00:00.000000 2025-11-24T00:00:00.000000
certfr-2025-avi-1034 Multiples vulnérabilités dans les produits IBM 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1033 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1032 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1031 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1030 Vulnérabilité dans Microsoft Visual Studio Code 2025-11-21T00:00:00.000000 2025-11-21T00:00:00.000000
certfr-2025-avi-1029 Vulnérabilité dans les produits Kaspersky 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1028 Vulnérabilité dans GnuTLS 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1027 Multiples vulnérabilités dans les produits SonicWall 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1026 Multiples vulnérabilités dans Wireshark 2025-11-20T00:00:00.000000 2025-11-20T00:00:00.000000
certfr-2025-avi-1025 Multiples vulnérabilités dans les produits Atlassian 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1024 Multiples vulnérabilités dans les produits VMware 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1023 Multiples vulnérabilités dans les produits Fortinet 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1022 Multiples vulnérabilités dans Microsoft Edge 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1021 Multiples vulnérabilités dans les produits HPE Aruba Networking 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1020 Multiples vulnérabilités dans les produits SolarWinds 2025-11-19T00:00:00.000000 2025-11-19T00:00:00.000000
certfr-2025-avi-1019 Multiples vulnérabilités dans Mattermost Server 2025-11-18T00:00:00.000000 2025-11-18T00:00:00.000000
certfr-2025-avi-1018 Multiples vulnérabilités dans Google Chrome 2025-11-18T00:00:00.000000 2025-11-18T00:00:00.000000
certfr-2025-avi-1017 Multiples vulnérabilités dans Mattermost Server 2025-11-17T00:00:00.000000 2025-11-17T00:00:00.000000
certfr-2025-avi-1016 Multiples vulnérabilités dans Mozilla Thunderbird 2025-11-17T00:00:00.000000 2025-11-17T00:00:00.000000
ID Description Published Updated