Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-1502 5.7 (v4.0) HTTP client proxy tunnel headers not validated for CR/LF Python Software Foundation
 CPython
 2026-04-10T17:54:44.121Z 2026-04-21T20:18:44.794Z
cve-2025-8291 4.3 (v3.1) ZIP64 End of Central Directory (EOCD) Locator record o… Python Software Foundation
 CPython
 2025-10-07T18:10:05.908Z 2026-04-21T20:17:51.842Z
cve-2025-8194 7.5 (v3.1) Tarfile infinite loop during parsing with negative mem… Python Software Foundation
 CPython
 2025-07-28T18:42:44.847Z 2026-04-21T20:17:39.595Z
cve-2025-6069 4.3 (v3.1) HTMLParser quadratic complexity when processing malfor… Python Software Foundation
 CPython
 2025-06-17T13:39:46.058Z 2026-04-21T20:17:13.876Z
cve-2025-4517 9.4 (v3.1) Arbitrary writes via tarfile realpath overflow Python Software Foundation
 CPython
 2025-06-03T12:58:50.352Z 2026-04-21T20:17:01.375Z
cve-2025-4516 5.9 (v4.0) Use-after-free in "unicode_escape" decoder with error … Python Software Foundation
 CPython
 2025-05-15T13:29:20.126Z 2026-04-21T20:16:47.161Z
cve-2025-4435 7.5 (v3.1) Tarfile extracts filtered members when errorlevel=0 Python Software Foundation
 CPython
 2025-06-03T12:59:06.792Z 2026-04-21T20:16:34.166Z
cve-2025-4330 7.5 (v3.1) Extraction filter bypass for linking outside extractio… Python Software Foundation
 CPython
 2025-06-03T12:58:57.452Z 2026-04-21T20:16:19.312Z
cve-2025-4138 7.5 (v3.1) Bypassing extraction filter to create symlinks to arbi… Python Software Foundation
 CPython
 2025-06-03T12:59:02.717Z 2026-04-21T20:16:04.883Z
cve-2025-1795 2.3 (v4.0) Mishandling of comma during folding and unicode-encodi… Python Software Foundation
 CPython
 2025-02-28T18:59:31.784Z 2026-04-21T20:15:50.714Z
cve-2025-0938 6.3 (v4.0) URL parser allowed square brackets in domain names Python Software Foundation
 CPython
 2025-01-31T17:51:35.898Z 2026-04-21T20:14:13.406Z
cve-2024-5642 N/A Buffer overread when using an empty list with SSLConte… Python Software Foundation
 CPython
 2024-06-27T21:05:31.281Z 2026-04-21T20:12:42.468Z
cve-2024-12718 5.3 (v3.1) Bypass extraction filter to modify file metadata outsi… Python Software Foundation
 CPython
 2025-06-03T12:59:10.908Z 2026-04-21T20:11:37.720Z
cve-2026-40907 WWBN AVideo has IDOR in Live Restreams list.json.php t… WWBN
 AVideo
 2026-04-21T19:50:10.257Z 2026-04-21T20:06:56.844Z
cve-2026-5483 8.5 (v3.1) Odh-dashboard: odh dashboard kubernetes service accoun… Red Hat
 Red Hat OpenShift AI 2.16
 2026-04-10T17:33:25.055Z 2026-04-21T20:06:28.669Z
cve-2026-40885 goshs: Public collaborator feed leaks .goshs ACL crede… patrickhener
 goshs
 2026-04-21T19:40:37.272Z 2026-04-21T20:05:26.627Z
cve-2026-40874 mailcow: dockerized missing authorization on Forwardin… mailcow
 mailcow-dockerized
 2026-04-21T19:17:45.306Z 2026-04-21T19:53:36.285Z
cve-2026-6443 Essentialplugin Plugins (Various Versions) - Injected … essentialplugin
 Accordion and Accordion Slider
 2026-04-17T06:44:49.128Z 2026-04-21T19:53:07.705Z
cve-2026-40880 Zebra: Cached Mempool Verification Bypasses Consensus … ZcashFoundation
 zebrad
 2026-04-21T19:18:22.657Z 2026-04-21T19:52:58.880Z
cve-2026-40870 Decidim's comments API allows access to all commentabl… decidim
 decidim
 2026-04-21T19:06:09.135Z 2026-04-21T19:52:15.178Z
cve-2026-29645 N/A NEMU (OpenXiangShan/NEMU) before v2025.12.r2 cont… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:06.424Z
cve-2026-29649 N/A NEMU contains an implementation flaw in its RISC-… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:51:00.279Z
cve-2026-29642 N/A A local attacker who can execute privileged CSR o… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:54.758Z
cve-2026-29646 N/A In OpenXiangShan NEMU prior to 55295c4, when runn… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:49.314Z
cve-2026-29647 N/A In OpenXiangShan NEMU, insufficient Smstateen per… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:43.685Z
cve-2026-29648 N/A In OpenXiangShan NEMU, when Smstateen is enabled,… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:38.197Z
cve-2026-29643 N/A XiangShan (Open-source high-performance RISC-V pr… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:32.463Z
cve-2026-6257 9.2 (v4.0) 9.1 (v3.1) Vvveb CMS v1.0.8 Remote Code Execution via Media Management Vvveb
 Vvveb CMS
 2026-04-20T19:09:45.927Z 2026-04-21T19:50:26.897Z
cve-2026-26399 N/A A stack-use-after-return issue exists in the Ardu… n/a
 n/a
 2026-04-20T00:00:00.000Z 2026-04-21T19:50:16.102Z
cve-2026-33626 LMDeploy Vulnerable to Server-Side Request Forgery (SS… InternLM
 lmdeploy
 2026-04-20T20:29:19.558Z 2026-04-21T19:50:13.326Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2023-002413 Multiple vulnerabilities in ELECOM and LOGITEC wireless LAN routers 2023-07-12T16:15+09:00 2024-04-22T16:18+09:00
jvndb-2023-002270 Null pointer dereference vulnerability in multiple printers and MFPs which implement BROTHER debut web server 2023-06-30T11:49+09:00 2024-04-22T16:07+09:00
jvndb-2023-014491 LINE client for iOS vulnerable to improper server certificate verification 2024-04-22T15:27+09:00 2024-04-22T15:27+09:00
jvndb-2023-000075 Improper restriction of XML external entity references (XXE) in Applicant Programme 2023-07-24T15:44+09:00 2024-04-22T14:20+09:00
jvndb-2023-002722 Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass 2023-07-27T18:12+09:00 2024-04-19T18:07+09:00
jvndb-2023-000076 SEIKO EPSON printer Web Config vulnerable to denial-of-service (DoS) 2023-08-02T14:55+09:00 2024-04-19T17:27+09:00
jvndb-2023-000062 "WPS Office" vulnerable to OS command injection 2023-06-12T12:57+09:00 2024-04-18T17:49+09:00
jvndb-2023-000048 ASUS Router RT-AX3000 vulnerable to using sensitive cookies without 'Secure' attribute 2023-06-09T15:18+09:00 2024-04-18T17:44+09:00
jvndb-2023-002022 Multiple vulnerabilities in FUJI ELECTRIC FRENIC RHC Loader 2023-06-05T15:55+09:00 2024-04-18T17:40+09:00
jvndb-2023-002906 Multiple vulnerabilities in Panasonic Control FPWIN Pro7 2023-08-22T18:02+09:00 2024-04-18T17:31+09:00
jvndb-2023-011403 ELECOM wireless LAN routers vulnerable to OS command injection 2023-12-13T15:06+09:00 2024-04-18T17:22+09:00
jvndb-2024-000041 Multiple vulnerabilities in WordPress Plugin "Forminator" 2024-04-18T13:53+09:00 2024-04-18T13:53+09:00
jvndb-2023-000070 Multiple vulnerabilities in WordPress Plugin "TS Webfonts for SAKURA" 2023-07-20T16:05+09:00 2024-04-17T17:20+09:00
jvndb-2022-017175 Proscend Communications M330-W and M330-W5 vulnerable to OS command injection 2024-04-16T14:30+09:00 2024-04-16T14:30+09:00
jvndb-2024-000040 Multiple vulnerabilities in BUFFALO wireless LAN routers 2024-04-15T16:29+09:00 2024-04-15T16:29+09:00
jvndb-2023-000074 Fujitsu Real-time Video Transmission Gear "IP series" uses a hard-coded credentials 2023-07-26T18:00+09:00 2024-04-12T18:04+09:00
jvndb-2023-000073 GBrowse vulnerable to unrestricted upload of files with dangerous types 2023-07-21T15:02+09:00 2024-04-12T17:31+09:00
jvndb-2023-002905 Multiple vulnerabilities in CBC digital video recorders 2023-08-22T17:35+09:00 2024-04-10T17:39+09:00
jvndb-2024-000039 Multiple vulnerabilities in a-blog cms 2024-04-10T13:55+09:00 2024-04-10T13:55+09:00
jvndb-2021-000088 Multiple vulnerabilities in Cybozu Remote Service 2021-09-30T16:03+09:00 2024-04-08T18:09+09:00
jvndb-2024-000038 Multiple vulnerabilities in WordPress Plugin "Ninja Forms" 2024-04-08T13:44+09:00 2024-04-08T13:44+09:00
jvndb-2022-002765 Multiple vulnerabilities in OMRON CX-Programmer 2022-11-28T15:40+09:00 2024-04-05T18:15+09:00
jvndb-2023-002786 Multiple vulnerabilities in OMRON CX-Programmer 2023-08-03T13:42+09:00 2024-04-05T17:39+09:00
jvndb-2024-000037 Multiple vulnerabilities in NEC Aterm series 2024-04-05T14:53+09:00 2024-04-05T14:53+09:00
jvndb-2024-003067 Multiple vulnerabilities in PLANEX COMMUNICATIONS wireless LAN routers 2024-04-05T14:17+09:00 2024-04-05T14:17+09:00
jvndb-2023-000077 Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext 2023-08-04T17:31+09:00 2024-04-03T17:19+09:00
jvndb-2024-003051 FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password 2024-04-02T18:03+09:00 2024-04-02T18:03+09:00
jvndb-2024-003050 KEYENCE VT STUDIO may insecurely load Dynamic Link Libraries 2024-04-01T14:44+09:00 2024-04-01T14:44+09:00
jvndb-2023-000071 Multiple vulnerabilities in multiple ELECOM wireless LAN routers and wireless LAN repeaters 2023-07-11T15:37+09:00 2024-03-29T15:28+09:00
jvndb-2024-000036 "Yahoo! JAPAN" App vulnerable to cross-site scripting 2024-03-29T13:28+09:00 2024-03-29T13:28+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0971 Vulnérabilité dans Mattermost Server 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0969 Multiples vulnérabilités dans les produits VMware 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0968 Multiples vulnérabilités dans les produits Cisco 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0967 Multiples vulnérabilités dans les produits VMware 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0966 Multiples vulnérabilités dans les produits Microsoft 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0965 Multiples vulnérabilités dans MISP 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0964 Vulnérabilité dans Curl 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0963 Multiples vulnérabilités dans Google Android 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0962 Vulnérabilité dans Dovecot 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0961 Multiples vulnérabilités dans les produits Apple 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0960 Multiples vulnérabilités dans VMware Tanzu 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0959 Vulnérabilité dans Python 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0958 Multiples vulnérabilités dans Tenable Identity Exposure 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0957 Multiples vulnérabilités dans Moodle 2025-11-03T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0956 Multiples vulnérabilités dans MariaDB 2025-11-03T00:00:00.000000 2025-11-03T00:00:00.000000
certfr-2025-avi-0955 Multiples vulnérabilités dans Microsoft Edge 2025-11-03T00:00:00.000000 2025-11-03T00:00:00.000000
certfr-2025-avi-0953 Vulnérabilité dans Elastic Cloud Enterprise 2025-11-03T00:00:00.000000 2025-11-03T00:00:00.000000
certfr-2025-avi-0952 Vulnérabilité dans Mattermost Server 2025-11-03T00:00:00.000000 2025-11-03T00:00:00.000000
certfr-2025-avi-0951 Multiples vulnérabilités dans Axis OS 2025-11-03T00:00:00.000000 2025-11-03T00:00:00.000000
certfr-2025-avi-0950 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0949 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0948 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0947 Multiples vulnérabilités dans les produits IBM 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0946 Vulnérabilité dans Sonicwall Secure Mobile Access 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0945 Vulnérabilité dans Qnap NetBak PC Agent 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0944 Vulnérabilité dans Liferay 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0943 Multiples vulnérabilités dans les produits Centreon 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0942 Vulnérabilité dans Dovecot 2025-10-31T00:00:00.000000 2025-10-31T00:00:00.000000
certfr-2025-avi-0941 Multiples vulnérabilités dans les produits Microsoft 2025-10-30T00:00:00.000000 2025-10-30T00:00:00.000000
certfr-2025-avi-0940 Vulnérabilité dans Liferay 2025-10-30T00:00:00.000000 2025-10-30T00:00:00.000000
ID Description Published Updated