Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-33867 | AVideo has Plaintext Video Password Storage |
WWBN |
AVideo |
2026-03-27T16:30:17.182Z | 2026-03-27T19:57:15.696Z | |
| cve-2026-34411 | 6.9 (v4.0) 5.3 (v3.1) | Appsmith < 1.98 Unauthenticated Instance Configuration… |
Appsmith |
Appsmith |
2026-03-27T16:24:16.385Z | 2026-03-27T19:57:26.175Z |
| cve-2025-15615 | 6.9 (v4.0) 6.5 (v3.1) | Wazuh Manager authd service Improper SSL/TLS Renegotia… |
Wazuh |
wazuh-manager |
2026-03-27T16:23:03.804Z | 2026-03-27T19:43:38.523Z |
| cve-2025-15381 | Unauthorized Access to Tracing and Assessment Endpoint… |
mlflow |
mlflow/mlflow |
2026-03-27T16:17:30.328Z | 2026-03-28T03:55:49.775Z | |
| cve-2026-33770 | AVideo has SQL Injection in category.php fixCleanTitle… |
WWBN |
AVideo |
2026-03-27T16:13:51.872Z | 2026-03-31T13:29:27.273Z | |
| cve-2026-28369 | 8.7 (v3.1) | Undertow: undertow: request smuggling via malformed ht… |
Red Hat |
Red Hat build of Apache Camel for Spring Boot 4 |
2026-03-27T16:13:05.719Z | 2026-04-08T08:29:32.945Z |
| cve-2026-28367 | 8.7 (v3.1) | Undertow: undertow: request smuggling via `\r\r\r` as … |
Red Hat |
Red Hat build of Apache Camel for Spring Boot 4 |
2026-03-27T16:13:05.108Z | 2026-04-10T14:50:20.986Z |
| cve-2026-28368 | 8.7 (v3.1) | Undertow: undertow: request smuggling via inconsistent… |
Red Hat |
Red Hat build of Apache Camel for Spring Boot 4 |
2026-03-27T16:13:03.775Z | 2026-04-08T08:29:32.913Z |
| cve-2026-33767 | AVideo has SQL Injection via Partial Prepared Statemen… |
WWBN |
AVideo |
2026-03-27T16:12:36.907Z | 2026-03-27T17:27:42.793Z | |
| cve-2026-4961 | Tenda AC6 POST Request QuickIndex formQuickIndex stack… |
Tenda |
AC6 |
2026-03-27T16:09:39.618Z | 2026-03-27T22:07:24.530Z | |
| cve-2026-4960 | Tenda AC6 POST Request WizardHandle fromWizardHandle s… |
Tenda |
AC6 |
2026-03-27T16:09:34.784Z | 2026-03-27T22:07:09.941Z | |
| cve-2023-7340 | 5.3 (v4.0) 3.1 (v3.1) | Wazuh authd service (os_auth) Heap-based Buffer Overflow |
Wazuh |
Wazuh |
2026-03-27T15:52:47.751Z | 2026-03-27T19:41:30.868Z |
| cve-2026-32983 | 6.9 (v4.0) 6.5 (v3.1) | SSL/TLS Renegotiation DoS in Wazuh Manager authd service |
Wazuh |
wazuh-manager |
2026-03-27T15:44:30.671Z | 2026-03-30T12:10:54.148Z |
| cve-2026-4959 | OpenBMB XAgent ShareServer WebSocket Endpoint share.py… |
OpenBMB |
XAgent |
2026-03-27T15:31:29.753Z | 2026-03-31T15:09:19.380Z | |
| cve-2026-4958 | OpenBMB XAgent WebSocket Endpoint replayer.py ReplaySe… |
OpenBMB |
XAgent |
2026-03-27T15:31:27.729Z | 2026-03-30T12:09:48.220Z | |
| cve-2026-32984 | 5.3 (v4.0) 3.5 (v3.1) | Heap buffer overflow in wazuh-authd |
Wazuh |
Wazuh |
2026-03-27T15:02:47.575Z | 2026-03-31T15:08:54.214Z |
| cve-2026-5027 | 8.8 (v3.1) | Langflow - Path Traversal Arbitrary File Write via upl… |
langflow-ai |
langflow |
2026-03-27T14:54:53.609Z | 2026-03-27T15:11:42.918Z |
| cve-2026-4957 | OpenBMB XAgent API Key function_handler.py FunctionHan… |
OpenBMB |
XAgent |
2026-03-27T14:52:21.328Z | 2026-03-27T15:31:57.067Z | |
| cve-2026-4956 | Shenzhen Ruiming Technology Streamax Crocus Parameter … |
Shenzhen Ruiming Technology |
Streamax Crocus |
2026-03-27T14:52:19.176Z | 2026-03-27T17:25:01.054Z | |
| cve-2026-4955 | Shenzhen Ruiming Technology Streamax Crocus OperateSta… |
Shenzhen Ruiming Technology |
Streamax Crocus |
2026-03-27T14:51:41.253Z | 2026-03-27T19:57:55.525Z | |
| cve-2026-4980 | 6.3 (v3.1) | Improper Restriction of XML External Entity Reference … |
Inkscape |
Inkscape |
2026-03-27T14:50:48.271Z | 2026-04-06T19:48:25.588Z |
| cve-2026-5026 | 7 (v4.0) | Langflow - Stored XSS via Malicious SVG Upload |
langflow-ai |
langflow |
2026-03-27T14:50:36.603Z | 2026-03-27T15:35:23.336Z |
| cve-2026-5025 | 6.5 (v3.1) | Langflow - Application Logs Exposed to All Authenticat… |
langflow-ai |
langflow |
2026-03-27T14:43:00.533Z | 2026-03-27T15:38:54.925Z |
| cve-2026-5010 | 5.1 (v4.0) | Reflected Cross-Site Scripting (XSS) in Sanoma’s Clickedu |
Sanoma |
Clickedu |
2026-03-27T14:35:06.783Z | 2026-03-27T15:08:30.583Z |
| cve-2026-5022 | 6.3 (v4.0) | Langflow - Missing Authorization on download_image Endpoint |
langflow-ai |
langflow |
2026-03-27T14:34:14.046Z | 2026-03-27T15:10:20.925Z |
| cve-2026-33766 | AVideo has SSRF Protection Bypass via HTTP Redirect in… |
WWBN |
AVideo |
2026-03-27T14:31:06.272Z | 2026-03-27T14:45:06.774Z | |
| cve-2026-33764 | AVideo: IDOR in AI Plugin Allows Stealing Other Users'… |
WWBN |
AVideo |
2026-03-27T14:29:53.559Z | 2026-03-27T19:58:05.730Z | |
| cve-2026-27879 | Query resampling can cause unbounded memory allocations |
Grafana |
Grafana |
2026-03-27T14:28:56.133Z | 2026-04-24T08:00:49.101Z | |
| cve-2026-28375 | Grafana Testdata datasource can issue unbounded memory… |
Grafana |
Grafana |
2026-03-27T14:26:19.270Z | 2026-04-24T08:00:45.094Z | |
| cve-2026-33763 | AVideo has an Unauthenticated Video Password Brute-For… |
WWBN |
AVideo |
2026-03-27T14:25:12.794Z | 2026-03-30T12:06:27.809Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-334 | Multiples vulnérabilités dans Microsoft Edge | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-333 | Multiples vulnérabilités dans Microsoft IE | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-332 | Multiples vulnérabilités dans Adobe Flash Player | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-331 | Multiples vulnérabilités dans Adobe Acrobat et Reader | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-330 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2018-07-11T00:00:00.000000 | 2018-07-11T00:00:00.000000 |
| certfr-2018-avi-329 | Multiples vulnérabilités dans les produits Apple | 2018-07-10T00:00:00.000000 | 2018-07-10T00:00:00.000000 |
| certfr-2018-avi-328 | Vulnérabilité dans Juniper Junos OS CLI | 2018-07-10T00:00:00.000000 | 2018-07-10T00:00:00.000000 |
| certfr-2018-avi-327 | Vulnérabilité dans WordPress | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-326 | Vulnérabilité dans Fortinet FortiManager et FortiAnalyzer | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-325 | Vulnérabilité dans TenableCore Web Application Scanner | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-324 | Multiples vulnérabilités dans Apple Wi-Fi Update for Boot Camp | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-323 | Vulnérabilité dans VideoLAN VLC | 2018-07-06T00:00:00.000000 | 2018-07-06T00:00:00.000000 |
| certfr-2018-avi-322 | Multiples vulnérabilités dans Mozilla Thunderbird | 2018-07-04T00:00:00.000000 | 2018-07-04T00:00:00.000000 |
| certfr-2018-avi-321 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-07-03T00:00:00.000000 | 2018-07-03T00:00:00.000000 |
| certfr-2018-avi-320 | Multiples vulnérabilités dans Google Android | 2018-07-03T00:00:00.000000 | 2018-07-03T00:00:00.000000 |
| certfr-2018-avi-319 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-318 | Multiples vulnérabilités dans Citrix XenServer | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-317 | Multiples vulnérabilités dans les produits VMware | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-316 | Multiples vulnérabilités dans Xen | 2018-07-02T00:00:00.000000 | 2018-07-02T00:00:00.000000 |
| certfr-2018-avi-315 | Vulnérabilité dans HPE Integrated Lights-Out (iLO) | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-314 | Multiples vulnérabilités dans Xen | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-313 | Vulnérabilité dans Apple SwiftNIO | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-312 | Vulnérabilité dans le noyau Linux de SUSE | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-311 | Multiples vulnérabilités dans Magento | 2018-06-28T00:00:00.000000 | 2018-06-28T00:00:00.000000 |
| certfr-2018-avi-310 | Multiples vulnérabilités dans Google Chrome OS | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-309 | Multiples vulnérabilités dans Mozilla Firefox | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-308 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-307 | Multiples vulnérabilités dans Joomla! | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-306 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-06-27T00:00:00.000000 | 2018-06-27T00:00:00.000000 |
| certfr-2018-avi-305 | Vulnérabilité dans SCADA les produits Siemens | 2018-06-26T00:00:00.000000 | 2018-06-26T00:00:00.000000 |