Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-34391 | Fleet Vulnerable to Windows MDM cross-device command d… |
fleetdm |
fleet |
2026-03-27T19:19:48.229Z | 2026-03-27T19:54:54.644Z | |
| cve-2026-34389 | Fleet's user account creation via invite does not enfo… |
fleetdm |
fleet |
2026-03-27T19:18:19.470Z | 2026-03-30T19:01:30.519Z | |
| cve-2026-4972 | code-projects Online Reviewer System btn_functions.php… |
code-projects |
Online Reviewer System |
2026-03-27T19:15:22.568Z | 2026-03-27T22:17:39.404Z | |
| cve-2026-4971 | SourceCodester Note Taking App cross-site request forgery |
SourceCodester |
Note Taking App |
2026-03-27T19:15:19.715Z | 2026-03-30T14:54:10.710Z | |
| cve-2026-34388 | Fleet vulnerable to Denial of Service via unhandled gR… |
fleetdm |
fleet |
2026-03-27T19:13:00.388Z | 2026-03-31T13:44:23.562Z | |
| cve-2026-34387 | Fleet vulnerable to OS command injection via crafted s… |
fleetdm |
fleet |
2026-03-27T18:31:27.871Z | 2026-03-27T19:31:54.764Z | |
| cve-2026-34386 | Fleet vulnerable to SQL injection in MDM bootstrap pa… |
fleetdm |
fleet |
2026-03-27T18:30:10.512Z | 2026-03-30T19:02:07.123Z | |
| cve-2026-34385 | Fleet's Apple MDM profile delivery has second-order SQ… |
fleetdm |
fleet |
2026-03-27T18:29:05.556Z | 2026-03-31T18:54:35.661Z | |
| cve-2026-29180 | Fleet's team maintainer can transfer hosts from any te… |
fleetdm |
fleet |
2026-03-27T18:27:15.576Z | 2026-03-31T18:54:40.828Z | |
| cve-2026-4970 | code-projects Social Networking Site Endpoint delete_p… |
code-projects |
Social Networking Site |
2026-03-27T18:24:14.173Z | 2026-03-30T19:02:33.126Z | |
| cve-2026-4969 | code-projects Social Networking Site Alert home.php cr… |
code-projects |
Social Networking Site |
2026-03-27T18:24:11.735Z | 2026-03-31T13:42:07.140Z | |
| cve-2026-26061 | Fleet's unbounded request body read allows remote Deni… |
fleetdm |
fleet |
2026-03-27T18:23:49.791Z | 2026-03-31T13:38:29.843Z | |
| cve-2026-26060 | Fleet: Password reset tokens remain valid after passwo… |
fleetdm |
fleet |
2026-03-27T18:22:43.244Z | 2026-03-27T19:32:38.862Z | |
| cve-2026-34375 | AVideo Vulnerable to Reflected XSS via Unsanitized plu… |
WWBN |
AVideo |
2026-03-27T18:17:32.604Z | 2026-03-31T13:36:50.491Z | |
| cve-2026-34374 | AVideo has SQL Injection in Live_schedule::keyExists()… |
WWBN |
AVideo |
2026-03-27T18:16:22.155Z | 2026-03-27T19:33:12.013Z | |
| cve-2025-15612 | 6.3 (v4.0) 4.8 (v3.1) | Wazuh Provisioning Scripts / Build Infrastructure Impr… |
Wazuh |
Wazuh Provisioning Scripts (Agent Build Environment) |
2026-03-27T18:16:11.058Z | 2026-03-31T13:35:46.422Z |
| cve-2026-34369 | AVIdeo has Video Password Protection Bypass via API En… |
WWBN |
AVideo |
2026-03-27T18:13:23.534Z | 2026-03-30T19:03:08.076Z | |
| cve-2026-34368 | AVideo Vulnerable to Wallet Balance Double-Spend via T… |
WWBN |
AVideo |
2026-03-27T18:12:18.760Z | 2026-03-30T19:03:46.321Z | |
| cve-2026-34364 | AVideo has User Group-Based Category Access Control By… |
WWBN |
AVideo |
2026-03-27T18:11:05.866Z | 2026-03-27T19:56:56.507Z | |
| cve-2025-15617 | 6.3 (v4.0) 6.5 (v3.1) | Wazuh GitHub Actions Workflow Exposure of Sensitive Cr… |
Wazuh |
Wazuh (GitHub Actions) |
2026-03-27T18:04:13.691Z | 2026-03-31T14:34:15.734Z |
| cve-2026-4968 | SourceCodester Diary App diary.php cross-site request … |
SourceCodester |
Diary App |
2026-03-27T17:41:52.979Z | 2026-03-27T22:17:15.085Z | |
| cve-2026-4966 | itsourcecode Free Hotel Reservation System index.php s… |
itsourcecode |
Free Hotel Reservation System |
2026-03-27T17:41:49.607Z | 2026-03-27T22:08:05.053Z | |
| cve-2026-4965 | letta-ai letta Incomplete Fix CVE-2025-6101 ast_parser… |
letta-ai |
letta |
2026-03-27T17:41:46.743Z | 2026-03-27T22:07:55.514Z | |
| cve-2026-4964 | letta-ai letta File URL message_helper.py _convert_mes… |
letta-ai |
letta |
2026-03-27T17:05:22.689Z | 2026-03-31T15:11:01.435Z | |
| cve-2026-4963 | huggingface smolagents Incomplete Fix CVE-2025-9959 lo… |
huggingface |
smolagents |
2026-03-27T17:05:20.096Z | 2026-03-31T13:32:41.488Z | |
| cve-2026-4962 | UltraVNC Service version.dll uncontrolled search path |
n/a |
UltraVNC |
2026-03-27T17:05:16.691Z | 2026-03-27T22:07:28.414Z | |
| cve-2026-34362 | AVideo's WebSocket Token Never Expires Due to Commente… |
WWBN |
AVideo |
2026-03-27T16:42:28.779Z | 2026-03-31T13:30:30.433Z | |
| cve-2026-34247 | AVideo's IDOR in uploadPoster.php Allows Any Authentic… |
WWBN |
AVideo |
2026-03-27T16:39:05.219Z | 2026-03-27T17:29:15.757Z | |
| cve-2025-15616 | 7.1 (v4.0) 6.7 (v3.1) | Wazuh Agent and Manager OS Command Injection and Untru… |
Wazuh |
wazuh-agent |
2026-03-27T16:38:20.559Z | 2026-03-27T19:46:04.116Z |
| cve-2026-34245 | AVideo's Missing Authorization in Playlist Schedule Cr… |
WWBN |
AVideo |
2026-03-27T16:32:35.615Z | 2026-03-31T15:10:30.387Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-364 | Multiples vulnérabilités dans Intel Smart Sound technology | 2018-07-30T00:00:00.000000 | 2018-07-30T00:00:00.000000 |
| certfr-2018-avi-363 | Vulnérabilité dans Xen | 2018-07-30T00:00:00.000000 | 2018-08-02T00:00:00.000000 |
| certfr-2018-avi-362 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-07-30T00:00:00.000000 | 2018-07-30T00:00:00.000000 |
| certfr-2018-avi-361 | Vulnérabilité dans le noyau Linux de SUSE | 2018-07-26T00:00:00.000000 | 2018-07-26T00:00:00.000000 |
| certfr-2018-avi-360 | Multiples vulnérabilités dans F5 BIG-IP | 2018-07-26T00:00:00.000000 | 2018-07-26T00:00:00.000000 |
| certfr-2018-avi-359 | Multiples vulnérabilités dans Google Chrome | 2018-07-25T00:00:00.000000 | 2018-07-25T00:00:00.000000 |
| certfr-2018-avi-358 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-07-25T00:00:00.000000 | 2018-07-25T00:00:00.000000 |
| certfr-2018-avi-357 | Vulnérabilité dans le noyau Linux de Red Hat | 2018-07-25T00:00:00.000000 | 2018-07-25T00:00:00.000000 |
| certfr-2018-avi-356 | Multiples vulnérabilités dans Apache Tomcat | 2018-07-24T00:00:00.000000 | 2018-07-24T00:00:00.000000 |
| certfr-2018-avi-355 | Multiples vulnérabilités dans PHP | 2018-07-20T00:00:00.000000 | 2018-07-20T00:00:00.000000 |
| certfr-2018-avi-354 | Multiples vulnérabilités dans Wireshark | 2018-07-19T00:00:00.000000 | 2018-07-19T00:00:00.000000 |
| certfr-2018-avi-353 | Multiples vulnérabilités dans F5 BIG-IP | 2018-07-19T00:00:00.000000 | 2018-07-19T00:00:00.000000 |
| certfr-2018-avi-352 | Multiples vulnérabilités dans les produits Cisco | 2018-07-19T00:00:00.000000 | 2018-07-19T00:00:00.000000 |
| certfr-2018-avi-351 | Multiples vulnérabilités dans Oracle Virtualization | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-350 | Multiples vulnérabilités dans Oracle Sun Systems | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-349 | Multiples vulnérabilités dans Oracle MySQL | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-348 | Multiples vulnérabilités dans Oracle Java SE | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-347 | Multiples vulnérabilités dans Oracle Database Server | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-346 | Vulnérabilité dans le noyau Linux de RedHat | 2018-07-18T00:00:00.000000 | 2018-07-18T00:00:00.000000 |
| certfr-2018-avi-345 | Vulnérabilité dans Juniper Junos OS | 2018-07-16T00:00:00.000000 | 2018-07-16T00:00:00.000000 |
| certfr-2018-avi-344 | Multiples vulnérabilités dans Moodle | 2018-07-16T00:00:00.000000 | 2018-07-16T00:00:00.000000 |
| certfr-2018-avi-343 | Multiples vulnérabilités dans les produits Fortinet | 2018-07-16T00:00:00.000000 | 2018-07-16T00:00:00.000000 |
| certfr-2018-avi-342 | Vulnérabilité dans le noyau Linux de SUSE | 2018-07-13T00:00:00.000000 | 2018-07-16T00:00:00.000000 |
| certfr-2018-avi-341 | Multiples vulnérabilités dans les produits Cisco | 2018-07-12T00:00:00.000000 | 2018-07-12T00:00:00.000000 |
| certfr-2018-avi-340 | Multiples vulnérabilités dans SCADA Siemens | 2018-07-12T00:00:00.000000 | 2018-07-12T00:00:00.000000 |
| certfr-2018-avi-339 | Multiples vulnérabilités dans les produits Juniper | 2018-07-12T00:00:00.000000 | 2018-07-12T00:00:00.000000 |
| certfr-2018-avi-338 | Multiples vulnérabilités dans les produits Microsoft | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-337 | Multiples vulnérabilités dans Microsoft .Net | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-336 | Multiples vulnérabilités dans Microsoft Windows | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-335 | Multiples vulnérabilités dans Microsoft Office | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |