Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-34428 8.3 (v4.0) 7.7 (v3.1) Vvveb < 1.0.8.1 SSRF via oEmbedProxy givanz
 Vvveb
 2026-04-20T13:55:36.802Z 2026-04-20T14:49:33.646Z
cve-2026-34427 8.7 (v4.0) 8.8 (v3.1) Vvveb < 1.0.8.1 Privilege Escalation via admin/user/save givanz
 Vvveb
 2026-04-20T13:55:15.311Z 2026-04-20T14:51:12.245Z
cve-2026-34429 5.1 (v4.0) 5.4 (v3.1) Vvveb < 1.0.8.1 Stored XSS via Media Upload and Rename givanz
 Vvveb
 2026-04-20T13:54:37.019Z 2026-04-20T14:56:19.205Z
cve-2026-5760 N/A CVE-2026-5760 SGLang
 SGLang
 2026-04-20T13:46:23.603Z 2026-04-20T15:29:54.098Z
cve-2026-6369 5.7 (v4.0) Exposed Session Token in canonical-livepatch client snap Canonical
 canonical-livepatch
 2026-04-20T13:38:13.691Z 2026-04-20T14:06:18.537Z
cve-2026-4048 8.4 (v3.1) OS Command Injection Remote Code Execution Vulnerabili… Progress Software
 LoadMaster
 2026-04-20T13:36:49.475Z 2026-04-22T03:55:54.495Z
cve-2026-3519 8.4 (v3.1) OS Command Injection Remote Code Execution Vulnerabili… Progress Software
 LoadMaster
 2026-04-20T13:32:50.259Z 2026-04-22T03:55:53.355Z
cve-2026-6649 Qibo CMS headers server-side request forgery Qibo
 CMS
 2026-04-20T13:30:41.191Z 2026-04-20T14:14:18.603Z
cve-2026-3518 8.4 (v3.1) OS Command Injection Remote Code Execution Vulnerabili… Progress Software
 LoadMaster
 2026-04-20T13:29:33.794Z 2026-04-22T03:55:52.242Z
cve-2026-33557 Apache Kafka: Missing JWT token validation in OAUTHBEA… Apache Software Foundation
 Apache Kafka
 2026-04-20T13:28:43.669Z 2026-04-20T14:30:30.936Z
cve-2025-66335 Apache Doris MCP Server: MCP SQL inject Apache Software Foundation
 Apache Doris MCP Server
 2026-04-20T13:27:27.764Z 2026-04-20T14:17:11.395Z
cve-2026-3517 8.4 (v3.1) OS Command Injection Remote Code Execution Vulnerabili… Progress Software
 LoadMaster
 2026-04-20T13:22:54.867Z 2026-04-22T03:55:51.123Z
cve-2026-33558 Apache Kafka, Apache Kafka Clients: Information Exposu… Apache Software Foundation
 Apache Kafka
 2026-04-20T13:20:38.059Z 2026-04-20T14:20:41.640Z
cve-2026-6648 Qibo CMS Internal Message cross site scripting Qibo
 CMS
 2026-04-20T13:00:44.627Z 2026-04-20T14:51:00.368Z
cve-2026-6636 p2r3 convert API buildCache.js Bun.serve path traversal p2r3
 convert
 2026-04-20T12:00:17.473Z 2026-04-20T14:58:24.131Z
cve-2026-5958 2.1 (v4.0) Race Condition in GNU Sed GNU
 Sed
 2026-04-20T11:59:32.214Z 2026-04-20T13:25:59.530Z
cve-2026-6635 rowboatlabs rowboat tools_webhook app.py tool_call imp… rowboatlabs
 rowboat
 2026-04-20T11:45:12.769Z 2026-04-20T13:26:31.802Z
cve-2026-6634 usememos UpdateInstanceSetting App.tsx memos_access_to… usememos
 memos
 2026-04-20T11:30:13.847Z 2026-04-20T15:02:48.499Z
cve-2026-6633 Yifang CMS Extended Management L_rbac_admin.php store … Yifang
 CMS
 2026-04-20T11:15:11.127Z 2026-04-20T13:01:44.244Z
cve-2026-6632 Tenda F451 httpd SafeClientFilter fromSafeClientFilter… Tenda
 F451
 2026-04-20T11:00:19.795Z 2026-04-20T15:05:42.179Z
cve-2026-6631 Tenda F451 httpd webExcptypemanFilter fromwebExcptypem… Tenda
 F451
 2026-04-20T10:45:12.978Z 2026-04-20T15:07:58.242Z
cve-2026-6630 Tenda F451 httpd GstDhcpSetSer fromGstDhcpSetSer buffe… Tenda
 F451
 2026-04-20T10:30:15.493Z 2026-04-20T13:27:03.711Z
cve-2026-6629 Metasoft 美特软件 MetaCRM Interface sql.jsp Statement.exec… Metasoft 美特软件
 MetaCRM
 2026-04-20T10:15:19.931Z 2026-04-20T15:21:18.092Z
cve-2026-6654 N/A Use-After-Free and Double-Free in IntoIter::drop when … Mozilla
 thin-vec
 2026-04-20T10:05:52.339Z 2026-04-20T13:14:37.846Z
cve-2026-6628 phili67 Ecclesia CRM Query Viewer view ValidateInput s… phili67
 Ecclesia CRM
 2026-04-20T10:00:16.739Z 2026-04-20T10:54:35.730Z
cve-2026-6626 Cockpit-HQ Cockpit Asset Handler/Aggregate data query … Cockpit-HQ
 Cockpit
 2026-04-20T09:45:12.067Z 2026-04-20T15:23:47.915Z
cve-2026-31430 N/A X.509: Fix out-of-bounds access when parsing extensions Linux
 Linux
 2026-04-20T09:43:03.919Z 2026-04-20T09:43:03.919Z
cve-2026-31429 N/A net: skb: fix cross-cache free of KFENCE-allocated skb head Linux
 Linux
 2026-04-20T09:43:03.194Z 2026-04-20T09:43:03.194Z
cve-2026-6625 moxi624 Mogu Blog v2 Picture Storage Service LocalFile… moxi624
 Mogu Blog v2
 2026-04-20T09:30:16.835Z 2026-04-20T15:27:00.317Z
cve-2026-6624 BichitroGan ISP Billing Software Pool List add cross s… BichitroGan
 ISP Billing Software
 2026-04-20T09:15:17.533Z 2026-04-20T13:27:39.595Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2022-002691 Multiple vulnerabilities in OMRON products 2022-11-10T09:46+09:00 2022-11-10T09:46+09:00
jvndb-2022-000085 WordPress Plugin "Salon booking system" vulnerable to cross-site scripting 2022-11-08T15:07+09:00 2024-06-05T18:07+09:00
jvndb-2022-000087 Multiple vulnerabilities in WordPress 2022-11-08T14:59+09:00 2024-06-06T16:27+09:00
jvndb-2022-000079 Multiple vulnerabilities in the web interfaces of Kyocera Document Solutions MFPs and printers 2022-11-01T14:51+09:00 2024-06-06T17:01+09:00
jvndb-2022-000084 Multiple vulnerabilities in FUJI SOFT network devices 2022-10-28T15:12+09:00 2024-06-06T16:48+09:00
jvndb-2022-000083 Multiple vulnerabilities in SHIRASAGI 2022-10-25T15:10+09:00 2024-06-05T16:06+09:00
jvndb-2022-000082 Multiple vulnerabilities in nadesiko3 2022-10-20T16:58+09:00 2024-06-05T17:28+09:00
jvndb-2022-002544 Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service 2022-10-20T16:18+09:00 2024-06-13T13:58+09:00
jvndb-2022-002537 Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE 2022-10-19T16:23+09:00 2024-06-12T16:54+09:00
jvndb-2022-000081 Lemon8 App fails to restrict access permissions 2022-10-19T14:08+09:00 2024-06-12T16:39+09:00
jvndb-2022-000080 Android App "IIJ SmartKey" vulnerable to information disclosure 2022-10-14T13:57+09:00 2024-06-27T13:40+09:00
jvndb-2022-002451 Multiple vulnerabilities in SVMPC1 and SVMPC2 2022-10-13T17:27+09:00 2024-05-30T16:38+09:00
jvndb-2022-000078 bingo!CMS vulnerable to authentication bypass 2022-10-11T17:49+09:00 2024-05-30T17:57+09:00
jvndb-2022-002448 Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security agents for Windows 2022-10-11T17:02+09:00 2024-06-13T14:30+09:00
jvndb-2022-000077 The installer of Sony Content Transfer may insecurely load Dynamic Link Libraries 2022-10-11T15:08+09:00 2024-06-12T12:12+09:00
jvndb-2022-000076 Growi vulnerable to improper access control 2022-10-07T14:30+09:00 2024-06-12T12:04+09:00
jvndb-2022-000075 IPFire WebUI vulnerable to cross-site scripting 2022-10-06T13:05+09:00 2024-06-12T14:28+09:00
jvndb-2022-002444 Multiple vulnerabilities in Buffalo network devices 2022-10-05T17:44+09:00 2022-10-13T16:28+09:00
jvndb-2022-002443 Privilege Escalation Vulnerability in Hitachi Storage Plug-in for VMware vCenter 2022-10-05T17:28+09:00 2022-10-05T17:28+09:00
jvndb-2022-000074 BookStack vulnerable to cross-site scripting 2022-09-30T14:48+09:00 2024-06-12T14:07+09:00
jvndb-2022-002367 OpenAM (OpenAM Consortium Edition) vulnerable to open redirect 2022-09-16T15:30+09:00 2024-06-13T11:39+09:00
jvndb-2022-000073 Multiple vulnerabilities in EC-CUBE 2022-09-15T16:30+09:00 2024-06-13T11:09+09:00
jvndb-2022-000072 EC-CUBE plugin "Product Image Bulk Upload Plugin" vulnerable to insufficient verification in uploading files 2022-09-15T16:13+09:00 2024-06-13T11:03+09:00
jvndb-2022-000071 Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service 2022-09-14T18:15+09:00 2024-06-13T11:34+09:00
jvndb-2022-002364 DoS Vulnerability in uCosminexus TP1/Client/J and Cosminexus Service Coordinator 2022-09-14T11:34+09:00 2022-09-14T11:34+09:00
jvndb-2022-000070 Movable Type plugin A-Form vulnerable to cross-site scripting 2022-09-09T15:01+09:00 2024-06-13T13:49+09:00
jvndb-2022-000068 SYNCK GRAPHICA Mailform Pro CGI vulnerable to information disclosure 2022-09-05T15:22+09:00 2024-06-13T16:00+09:00
jvndb-2022-002346 Multiple vulnerabilities in Contec FLEXLAN FX3000 and FX2000 series 2022-09-02T18:08+09:00 2022-09-02T18:08+09:00
jvndb-2022-000069 PowerCMS XMLRPC API vulnerable to command injection 2022-09-02T15:49+09:00 2024-06-13T11:44+09:00
jvndb-2022-000066 Multiple vulnerabilities in CentreCOM AR260S V2 2022-08-29T17:37+09:00 2024-06-13T16:21+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0902 Multiples vulnérabilités dans Xen 2025-10-22T00:00:00.000000 2025-10-22T00:00:00.000000
certfr-2025-avi-0901 Vulnérabilité dans Google Chrome 2025-10-22T00:00:00.000000 2025-10-22T00:00:00.000000
certfr-2025-avi-0900 Multiples vulnérabilités dans Centreon Web 2025-10-22T00:00:00.000000 2025-10-22T00:00:00.000000
certfr-2025-avi-0899 Multiples vulnérabilités dans les produits Microsoft 2025-10-20T00:00:00.000000 2025-10-20T00:00:00.000000
certfr-2025-avi-0898 Vulnérabilité dans Microsoft Edge 2025-10-20T00:00:00.000000 2025-10-20T00:00:00.000000
certfr-2025-avi-0897 Multiples vulnérabilités dans Tenable Identity Exposure 2025-10-20T00:00:00.000000 2025-10-20T00:00:00.000000
certfr-2025-avi-0896 Multiples vulnérabilités dans les produits IBM 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0895 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0894 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0893 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0892 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0891 Vulnérabilité dans MongoDB Connector for BI pour Windows 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0890 Multiples vulnérabilités dans les produits Moxa 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0889 Vulnérabilité dans Squid 2025-10-17T00:00:00.000000 2025-10-17T00:00:00.000000
certfr-2025-avi-0888 Multiples vulnérabilités dans les produits Mattermost 2025-10-16T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-0887 Vulnérabilité dans Synacor Zimbra Collaboration 2025-10-16T00:00:00.000000 2025-10-16T00:00:00.000000
certfr-2025-avi-0886 Multiples vulnérabilités dans les produits F5 2025-10-16T00:00:00.000000 2025-10-16T00:00:00.000000
certfr-2025-avi-0885 Multiples vulnérabilités dans Samba 2025-10-16T00:00:00.000000 2025-10-16T00:00:00.000000
certfr-2025-avi-0884 Multiples vulnérabilités dans les produits Cisco 2025-10-16T00:00:00.000000 2025-10-16T00:00:00.000000
certfr-2025-avi-0883 Multiples vulnérabilités dans les produits Spring 2025-10-16T00:00:00.000000 2025-10-16T00:00:00.000000
certfr-2025-avi-0882 Multiples vulnérabilités dans les produits Microsoft 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0881 Multiples vulnérabilités dans Microsoft Azure 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0880 Multiples vulnérabilités dans Microsoft .Net 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0879 Multiples vulnérabilités dans Microsoft Windows 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0878 Multiples vulnérabilités dans Microsoft Office 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0877 Multiples vulnérabilités dans les produits Ivanti 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0876 Multiples vulnérabilités dans les produits Adobe 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0875 Vulnérabilité dans Google Chrome 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0874 Vulnérabilité dans Schneider Electric EcoStruxure 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
certfr-2025-avi-0873 Multiples vulnérabilités dans les produits Mozilla 2025-10-15T00:00:00.000000 2025-10-15T00:00:00.000000
ID Description Published Updated