Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-33622 | A PinchTab Security Policy Bypass in /wait Allows Arbi… |
pinchtab |
pinchtab |
2026-03-26T20:44:48.220Z | 2026-03-27T20:20:00.663Z | |
| cve-2026-33621 | PinchTab: Unapplied Rate Limiting Middleware Allows Un… |
pinchtab |
pinchtab |
2026-03-26T20:42:12.692Z | 2026-03-27T13:55:46.976Z | |
| cve-2026-33620 | PinchTab: API Bearer Token Exposed in URL Query Parame… |
pinchtab |
pinchtab |
2026-03-26T20:40:27.026Z | 2026-03-30T14:54:23.611Z | |
| cve-2026-3622 | 7.1 (v4.0) | Denial-of-Service Vulnerability in UPnP Component of T… |
TP-Link Systems Inc. |
TL-WR841N v14 |
2026-03-26T20:34:36.490Z | 2026-03-27T19:39:21.225Z |
| cve-2026-33619 | PinchTab has Unauthenticated Blind SSRF in Task Schedu… |
pinchtab |
pinchtab |
2026-03-26T20:34:01.661Z | 2026-03-30T11:34:43.286Z | |
| cve-2026-33545 | MobSF has SQL Injection in its SQLite Database Viewer Utils |
MobSF |
Mobile-Security-Framework-MobSF |
2026-03-26T20:32:21.357Z | 2026-03-27T20:20:44.755Z | |
| cve-2026-33635 | iCalendar has ICS injection via unsanitized URI proper… |
icalendar |
icalendar |
2026-03-26T20:30:43.696Z | 2026-03-30T11:33:48.950Z | |
| cve-2026-33541 | TSPortal's Uncontrolled User Creation via Validation S… |
miraheze |
TSPortal |
2026-03-26T20:27:05.840Z | 2026-03-27T20:01:35.174Z | |
| cve-2026-33738 | Lychee Vulnerable to Stored XSS via Photo Description … |
LycheeOrg |
Lychee |
2026-03-26T20:25:44.648Z | 2026-03-27T13:55:55.702Z | |
| cve-2026-4393 | N/A | Automated Logout - Moderately critical - Cross-site re… |
Drupal |
Automated Logout |
2026-03-26T20:10:40.090Z | 2026-03-30T14:54:29.743Z |
| cve-2026-4933 | N/A | Unpublished Node Permissions - Critical - Access bypas… |
Drupal |
Unpublished Node Permissions |
2026-03-26T20:10:26.886Z | 2026-03-30T14:54:36.334Z |
| cve-2026-3573 | N/A | AI (Artificial Intelligence) - Moderately critical - I… |
Drupal |
AI (Artificial Intelligence) |
2026-03-26T20:10:13.350Z | 2026-03-30T14:54:43.980Z |
| cve-2026-0965 | 3.3 (v3.0) | Libssh: libssh: denial of service via improper configu… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T20:06:33.336Z | 2026-05-01T16:05:33.809Z |
| cve-2026-0967 | 2.2 (v3.0) | Libssh: libssh: denial of service via inefficient regu… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T20:06:30.707Z | 2026-05-01T16:01:05.395Z |
| cve-2026-0968 | 3.1 (v3.1) | Libssh: libssh: denial of service due to malformed sft… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T20:06:29.554Z | 2026-05-01T16:01:05.494Z |
| cve-2026-0964 | 5 (v3.0) | Libssh: improper sanitation of paths received from scp… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T20:06:28.871Z | 2026-05-04T13:07:29.979Z |
| cve-2026-0966 | 6.5 (v3.0) | Libssh: buffer underflow in ssh_get_hexa() on invalid input |
Red Hat |
Red Hat Hardened Images |
2026-03-26T20:06:28.313Z | 2026-04-30T16:36:49.955Z |
| cve-2026-21724 | Missing Protected-field Authorization in Provisioning … |
Grafana |
Grafana OSS |
2026-03-26T20:06:18.829Z | 2026-04-24T08:00:46.706Z | |
| cve-2026-33375 | Grafana MSSQL Data Source Plugin: Restriction Bypass L… |
Grafana |
Grafana OSS |
2026-03-26T20:05:52.564Z | 2026-04-24T08:00:50.665Z | |
| cve-2026-33644 | Lychee has SSRF bypass via DNS rebinding — PhotoUrlRul… |
LycheeOrg |
Lychee |
2026-03-26T20:04:18.728Z | 2026-03-30T11:30:40.546Z | |
| cve-2026-3532 | N/A | OpenID Connect / OAuth client - Less critical - Access… |
Drupal |
OpenID Connect / OAuth client |
2026-03-26T20:04:03.160Z | 2026-03-27T13:53:59.637Z |
| cve-2026-3531 | N/A | OpenID Connect / OAuth client - Moderately critical - … |
Drupal |
OpenID Connect / OAuth client |
2026-03-26T20:03:48.873Z | 2026-03-30T14:54:51.550Z |
| cve-2026-3530 | N/A | OpenID Connect / OAuth client - Moderately critical - … |
Drupal |
OpenID Connect / OAuth client |
2026-03-26T20:03:39.756Z | 2026-03-30T14:54:58.296Z |
| cve-2026-3529 | N/A | Google Analytics GA4 - Moderately critical - Cross-sit… |
Drupal |
Google Analytics GA4 |
2026-03-26T20:03:28.917Z | 2026-03-27T18:09:00.611Z |
| cve-2026-3528 | N/A | Calculation Fields - Moderately critical - Cross-site … |
Drupal |
Calculation Fields |
2026-03-26T20:03:20.863Z | 2026-03-27T18:11:29.380Z |
| cve-2026-3527 | N/A | AJAX Dashboard - Critical - Access bypass - SA-CONTRIB… |
Drupal |
AJAX Dashboard |
2026-03-26T20:03:05.935Z | 2026-03-27T18:14:54.400Z |
| cve-2026-3526 | N/A | File Access Fix (deprecated) - Moderately critical - A… |
Drupal |
File Access Fix (deprecated) |
2026-03-26T20:02:55.103Z | 2026-03-27T18:17:51.547Z |
| cve-2026-3525 | N/A | File Access Fix (deprecated) - Moderately critical - A… |
Drupal |
File Access Fix (deprecated) |
2026-03-26T20:02:25.154Z | 2026-03-27T18:48:21.916Z |
| cve-2026-2100 | 5.3 (v3.1) | P11-kit: null dereference via c_derivekey with specifi… |
Red Hat |
Red Hat Hardened Images |
2026-03-26T20:01:46.174Z | 2026-04-25T01:11:02.236Z |
| cve-2026-33537 | Lychee has SSRF bypass via incomplete IP validation in… |
LycheeOrg |
Lychee |
2026-03-26T20:01:19.377Z | 2026-03-27T19:46:28.419Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-124 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-03-14T00:00:00.000000 | 2018-03-14T00:00:00.000000 |
| certfr-2018-avi-123 | Multiples vulnérabilités dans Mozilla Firefox | 2018-03-14T00:00:00.000000 | 2018-03-14T00:00:00.000000 |
| certfr-2018-avi-122 | Vulnérabilité dans Moxa MXview | 2018-03-13T00:00:00.000000 | 2018-03-13T00:00:00.000000 |
| certfr-2018-avi-121 | Multiples vulnérabilités dans Samba | 2018-03-13T00:00:00.000000 | 2018-03-13T00:00:00.000000 |
| certfr-2018-avi-120 | Multiples vulnérabilités dans Moxa OnCell | 2018-03-12T00:00:00.000000 | 2018-03-12T00:00:00.000000 |
| certfr-2018-avi-119 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-03-12T00:00:00.000000 | 2018-03-12T00:00:00.000000 |
| certfr-2018-avi-118 | Vulnérabilité dans le noyau Linux d'Ubuntu | 2018-03-12T00:00:00.000000 | 2018-03-12T00:00:00.000000 |
| certfr-2018-avi-117 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-03-09T00:00:00.000000 | 2018-03-09T00:00:00.000000 |
| certfr-2018-avi-116 | Multiples vulnérabilités dans les produits Cisco | 2018-03-08T00:00:00.000000 | 2018-03-08T00:00:00.000000 |
| certfr-2018-avi-115 | Multiples vulnérabilités dans Juniper Junos OS | 2018-03-08T00:00:00.000000 | 2018-03-08T00:00:00.000000 |
| certfr-2018-avi-114 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2018-03-08T00:00:00.000000 | 2018-03-08T00:00:00.000000 |
| certfr-2018-avi-113 | Multiples vulnérabilités dans Google Chrome et Chrome OS | 2018-03-07T00:00:00.000000 | 2018-03-07T00:00:00.000000 |
| certfr-2018-avi-112 | Multiples vulnérabilités dans Google Android | 2018-03-06T00:00:00.000000 | 2018-03-06T00:00:00.000000 |
| certfr-2018-avi-111 | Vulnérabilité dans les produits Pivotal | 2018-03-05T00:00:00.000000 | 2018-03-05T00:00:00.000000 |
| certfr-2018-avi-110 | Vulnérabilité dans le noyau Linux de SUSE | 2018-03-02T00:00:00.000000 | 2018-03-05T00:00:00.000000 |
| certfr-2018-avi-109 | Multiples vulnérabilités dans PHP | 2018-03-02T00:00:00.000000 | 2018-03-02T00:00:00.000000 |
| certfr-2018-avi-108 | Multiples vulnérabilités dans F5 BIG-IP | 2018-03-01T00:00:00.000000 | 2018-03-02T00:00:00.000000 |
| certfr-2018-avi-107 | Vulnérabilité dans le noyau Linux de SUSE | 2018-03-01T00:00:00.000000 | 2018-03-01T00:00:00.000000 |
| certfr-2018-avi-106 | Multiples vulnérabilités dans Citrix NetScaler Application Delivery Controller (ADC) et NetScaler Gateway | 2018-03-01T00:00:00.000000 | 2018-03-01T00:00:00.000000 |
| certfr-2018-avi-105 | Vulnérabilité dans ISC BIND | 2018-03-01T00:00:00.000000 | 2018-03-01T00:00:00.000000 |
| certfr-2018-avi-104 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-02-28T00:00:00.000000 | 2018-02-28T00:00:00.000000 |
| certfr-2018-avi-103 | Multiples vulnérabilités dans Magento | 2018-02-28T00:00:00.000000 | 2018-02-28T00:00:00.000000 |
| certfr-2018-avi-102 | Multiples vulnérabilités dans Xen | 2018-02-27T00:00:00.000000 | 2018-02-27T00:00:00.000000 |
| certfr-2018-avi-101 | Multiples vulnérabilités dans Google Chrome OS | 2018-02-26T00:00:00.000000 | 2018-02-26T00:00:00.000000 |
| certfr-2018-avi-100 | Multiples vulnérabilités dans Wireshark | 2018-02-26T00:00:00.000000 | 2018-02-26T00:00:00.000000 |
| certfr-2018-avi-099 | Multiples vulnérabilités dans Drupal | 2018-02-22T00:00:00.000000 | 2018-02-22T00:00:00.000000 |
| certfr-2018-avi-098 | Multiples vulnérabilités dans les produits Cisco | 2018-02-22T00:00:00.000000 | 2018-02-22T00:00:00.000000 |
| certfr-2018-avi-097 | Multiples vulnérabilités dans Asterisk | 2018-02-22T00:00:00.000000 | 2018-02-22T00:00:00.000000 |
| certfr-2018-avi-096 | Vulnérabilité dans SCADA Schneider Electric Saitel DP | 2018-02-22T00:00:00.000000 | 2018-02-22T00:00:00.000000 |
| certfr-2018-avi-095 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-02-22T00:00:00.000000 | 2018-02-22T00:00:00.000000 |