Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-33535 | ImageMagick has an Out-of-Bounds write of a zero byte … |
ImageMagick |
ImageMagick |
2026-03-26T19:52:30.452Z | 2026-03-27T20:02:06.512Z | |
| cve-2026-33532 | yaml is vulnerable to Stack Overflow via deeply nested… |
eemeli |
yaml |
2026-03-26T19:49:03.842Z | 2026-03-30T11:26:26.005Z | |
| cve-2026-32287 | N/A | Infinite loop in github.com/antchfx/xpath |
github.com/antchfx/xpath |
github.com/antchfx/xpath |
2026-03-26T19:40:52.142Z | 2026-03-30T14:55:05.920Z |
| cve-2026-32286 | N/A | Denial of service in github.com/jackc/pgproto3/v2 |
github.com/jackc/pgproto3/v2 |
github.com/jackc/pgproto3/v2 |
2026-03-26T19:40:51.974Z | 2026-04-02T19:08:53.981Z |
| cve-2026-32285 | N/A | Denial of service in github.com/buger/jsonparser |
github.com/buger/jsonparser |
github.com/buger/jsonparser |
2026-03-26T19:40:51.837Z | 2026-04-20T19:01:23.660Z |
| cve-2026-32284 | N/A | Denial of service in github.com/shamaton/msgpack |
github.com/shamaton/msgpack |
github.com/shamaton/msgpack |
2026-03-26T19:40:51.686Z | 2026-03-30T14:55:25.762Z |
| cve-2026-33531 | InvenTree has Path Traversal In Report Templates |
inventree |
InvenTree |
2026-03-26T19:40:50.787Z | 2026-03-27T19:47:03.887Z | |
| cve-2026-33530 | InvenTree Vulnerable to ORM Filter Injection |
inventree |
InvenTree |
2026-03-26T19:34:51.294Z | 2026-03-30T11:24:37.542Z | |
| cve-2026-33632 | ClearanceKit: opfilter policy bypass via exchangedata … |
craigjbass |
clearancekit |
2026-03-26T19:32:49.565Z | 2026-03-27T13:58:53.489Z | |
| cve-2026-2436 | 6.5 (v3.1) | Libsoup: libsoup: denial of service via use-after-free… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-26T19:31:34.270Z | 2026-04-21T16:00:28.482Z |
| cve-2026-33631 | ClearanceKit: opfilter policy bypass via non-open file… |
craigjbass |
clearancekit |
2026-03-26T19:30:30.379Z | 2026-03-30T14:55:32.151Z | |
| cve-2021-4474 | 6.9 (v4.0) 4.9 (v3.1) | Ruckus AP CLI Arbitrary File Read Allows Authenticated… |
Ruckus Wireless |
RUCKUS Access Point |
2026-03-26T19:28:25.096Z | 2026-03-26T19:57:52.098Z |
| cve-2026-33529 | Zoraxy: Authenticated Path Traversal in Config Import … |
tobychui |
zoraxy |
2026-03-26T19:26:32.646Z | 2026-03-27T19:48:28.328Z | |
| cve-2026-33528 | GoDoxy has a Path Traversal Vulnerability in its File API |
yusing |
godoxy |
2026-03-26T19:24:50.452Z | 2026-03-27T13:57:45.401Z | |
| cve-2026-33525 | Authelia: Improper Neutralization of Input During Web … |
authelia |
authelia |
2026-03-26T19:22:57.418Z | 2026-03-30T14:55:38.565Z | |
| cve-2023-7338 | 7.7 (v4.0) 7.5 (v3.1) | Ruckus Unleashed Authenticated RCE in Gateway Mode |
Ruckus Networks |
RUCKUS H350 |
2026-03-26T19:20:53.252Z | 2026-03-27T21:55:37.051Z |
| cve-2026-3121 | 6.5 (v3.1) | Keycloak: org.keycloak/keycloak-services: keycloak: pr… |
Red Hat |
Red Hat build of Keycloak 26.4 |
2026-03-26T19:13:26.086Z | 2026-04-02T16:39:35.672Z |
| cve-2026-3190 | 4.3 (v3.1) | Keycloak: keycloak: information disclosure via imprope… |
Red Hat |
Red Hat build of Keycloak 26.4 |
2026-03-26T19:12:38.438Z | 2026-04-02T16:39:39.516Z |
| cve-2026-33152 | Tandoor Recipes Vulnerable to Unrestricted Brute-Force… |
TandoorRecipes |
recipes |
2026-03-26T19:07:39.225Z | 2026-03-26T19:52:09.977Z | |
| cve-2026-33153 | Tandoor Recipes's Unauthenticated Debug Parameter Leak… |
TandoorRecipes |
recipes |
2026-03-26T19:06:16.020Z | 2026-03-26T19:52:10.149Z | |
| cve-2026-33148 | URL Parameter Injection in FDC Food Search API Causes … |
TandoorRecipes |
recipes |
2026-03-26T19:04:25.511Z | 2026-03-26T19:52:10.290Z | |
| cve-2026-29055 | Tandoor Recipes: WebP and GIF Image Uploads Bypass EXI… |
TandoorRecipes |
recipes |
2026-03-26T19:03:06.969Z | 2026-03-27T19:49:03.925Z | |
| cve-2026-4923 | 5.9 (v3.1) | path-to-regexp vulnerable to Regular Expression Denial… |
path-to-regexp |
path-to-regexp |
2026-03-26T19:02:00.729Z | 2026-03-27T13:58:03.925Z |
| cve-2026-26213 | 8.7 (v4.0) | thingino-firmware api.cgi Unauthenticated Command Inje… |
themactep |
thingino-firmware |
2026-03-26T19:00:32.716Z | 2026-03-26T19:21:33.135Z |
| cve-2026-4926 | 7.5 (v3.1) | path-to-regexp vulnerable to Denial of Service via seq… |
path-to-regexp |
path-to-regexp |
2026-03-26T18:59:38.000Z | 2026-03-27T19:44:53.294Z |
| cve-2026-28503 | Tandoor Recipes has Cross-Space IDOR in SyncViewSet.qu… |
TandoorRecipes |
recipes |
2026-03-26T18:55:53.094Z | 2026-03-27T13:58:12.010Z | |
| cve-2026-33149 | Tandoor Recipes Vulnerable to Host Header Injection |
TandoorRecipes |
recipes |
2026-03-26T18:53:22.885Z | 2026-03-30T14:55:52.270Z | |
| cve-2026-33506 | DOM-Based XSS in Ory Polis Login Page |
ory |
polis |
2026-03-26T18:48:15.516Z | 2026-03-26T19:52:10.429Z | |
| cve-2026-33491 | Zen-C has Stack-Based Buffer Overflow in Identifier Mangling |
zenc-lang |
zenc |
2026-03-26T18:39:55.093Z | 2026-03-27T03:55:39.895Z | |
| cve-2026-33505 | Ory Keto has a SQL injection via forged pagination tokens |
ory |
keto |
2026-03-26T18:37:51.222Z | 2026-03-30T14:55:58.608Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-064 | Vulnérabilité dans Cisco Aggregation Services Router (ASR) 9000 Series | 2018-02-01T00:00:00.000000 | 2018-02-01T00:00:00.000000 |
| certfr-2018-avi-063 | Vulnérabilité dans Cisco Adaptive Security Appliance | 2018-01-30T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-062 | Vulnérabilité dans Mozilla Firefox | 2018-01-30T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-061 | Multiples vulnérabilités dans les produits VMware | 2018-01-29T00:00:00.000000 | 2018-01-29T00:00:00.000000 |
| certfr-2018-avi-060 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-29T00:00:00.000000 | 2018-02-05T00:00:00.000000 |
| certfr-2018-avi-059 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-01-29T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-058 | Multiples vulnérabilités dans Mozilla Thunderbird | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-057 | Multiples vulnérabilités dans SCADA Siemens TeleControl Server Basic | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-056 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-055 | Vulnérabilité dans SCADA Siemens Desigo PXC | 2018-01-25T00:00:00.000000 | 2018-01-25T00:00:00.000000 |
| certfr-2018-avi-054 | Multiples vulnérabilités dans Google Chrome | 2018-01-25T00:00:00.000000 | 2018-01-25T00:00:00.000000 |
| certfr-2018-avi-053 | Multiples vulnérabilités dans les produits Apple | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-052 | Multiples vulnérabilités dans Mozilla Firefox | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-051 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-24T00:00:00.000000 | 2018-01-24T00:00:00.000000 |
| certfr-2018-avi-050 | Vulnérabilité dans Fortinet FortiOS | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-049 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-048 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-23T00:00:00.000000 | 2018-01-23T00:00:00.000000 |
| certfr-2018-avi-047 | Multiples vulnérabilités dans Moodle | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-046 | Multiples vulnérabilités dans Squid | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-045 | Multiples vulnérabilités dans F5 BIG-IP | 2018-01-22T00:00:00.000000 | 2018-01-22T00:00:00.000000 |
| certfr-2018-avi-044 | Multiples vulnérabilités dans les produits Moxa | 2018-01-19T00:00:00.000000 | 2018-01-19T00:00:00.000000 |
| certfr-2018-avi-043 | Vulnérabilité dans les commutateurs Lenovo et IBM | 2018-01-19T00:00:00.000000 | 2018-01-19T00:00:00.000000 |
| certfr-2018-avi-042 | Multiples vulnérabilités dans les produits Cisco | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-041 | Multiples vulnérabilités dans SCADA les produits Siemens | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-040 | Vulnérabilité dans le micrologiciel processeur pour Red Hat | 2018-01-18T00:00:00.000000 | 2018-01-18T00:00:00.000000 |
| certfr-2018-avi-039 | Multiples vulnérabilités dans Oracle Virtualization | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-038 | Multiples vulnérabilités dans Oracle Sun Systems Products Suite | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-037 | Multiples vulnérabilités dans Oracle MySQL | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-036 | Multiples vulnérabilités dans Oracle Java SE | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |
| certfr-2018-avi-035 | Multiples vulnérabilités dans Oracle Database Server | 2018-01-17T00:00:00.000000 | 2018-01-17T00:00:00.000000 |