Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-4274 | 5.4 (v3.1) | Insufficient authorization in shared channel membershi… |
Mattermost |
Mattermost |
2026-03-26T10:43:24.611Z | 2026-03-26T13:58:41.567Z |
| cve-2026-23398 | N/A | icmp: fix NULL pointer dereference in icmp_tag_validation() |
Linux |
Linux |
2026-03-26T10:22:50.606Z | 2026-04-18T08:58:33.834Z |
| cve-2026-23397 | N/A | nfnetlink_osf: validate individual option lengths in f… |
Linux |
Linux |
2026-03-26T10:22:49.954Z | 2026-04-18T08:58:32.483Z |
| cve-2026-23396 | N/A | wifi: mac80211: fix NULL deref in mesh_matches_local() |
Linux |
Linux |
2026-03-26T10:22:49.287Z | 2026-04-18T08:58:31.018Z |
| cve-2026-4263 | 6.9 (v4.0) | Incorrect authorization in HiJiffy Chatbot |
HiJiffy |
HiJiffy Chatbot |
2026-03-26T09:12:45.571Z | 2026-03-26T14:02:38.779Z |
| cve-2026-4262 | 6.9 (v4.0) | Incorrect authorization in HiJiffy Chatbot |
HiJiffy |
HiJiffy Chatbot |
2026-03-26T09:06:22.472Z | 2026-03-26T14:06:16.836Z |
| cve-2026-4862 | UTT HiPER 1250GW Parameter formConfigDnsFilterGlobal s… |
UTT |
HiPER 1250GW |
2026-03-26T09:00:32.777Z | 2026-03-26T18:23:53.788Z | |
| cve-2026-4861 | Wavlink WL-NU516U1 nas.cgi ftext stack-based overflow |
Wavlink |
WL-NU516U1 |
2026-03-26T08:18:07.028Z | 2026-03-26T18:28:13.605Z | |
| cve-2026-4860 | 648540858 wvp-GB28181-pro API Endpoint RedisTemplateCo… |
648540858 |
wvp-GB28181-pro |
2026-03-26T08:18:03.574Z | 2026-03-26T18:25:31.687Z | |
| cve-2026-4850 | code-projects Simple Laundry System Parameter checkreg… |
code-projects |
Simple Laundry System |
2026-03-26T07:41:56.956Z | 2026-03-26T13:49:31.302Z | |
| cve-2026-4849 | code-projects Simple Laundry System Parameter modify.p… |
code-projects |
Simple Laundry System |
2026-03-26T07:41:54.393Z | 2026-03-28T02:12:49.062Z | |
| cve-2026-4874 | 3.1 (v3.1) | Org.keycloak.protocol.oidc.grants: org.keycloak.servic… |
Red Hat |
Red Hat Build of Keycloak |
2026-03-26T07:12:37.545Z | 2026-04-01T14:24:14.569Z |
| cve-2026-4848 | dameng100 muucmf list.html cross site scripting |
dameng100 |
muucmf |
2026-03-26T06:59:44.587Z | 2026-03-26T18:27:28.900Z | |
| cve-2026-32680 | 7.8 (v3.0) 8.5 (v4.0) | The installer of RATOC RAID Monitoring Manager fo… |
RATOC Systems, Inc. |
RATOC RAID Monitoring Manager for Windows |
2026-03-26T06:55:18.684Z | 2026-03-26T14:13:14.348Z |
| cve-2026-28760 | 7.8 (v3.0) 8.4 (v4.0) | The installer of RATOC RAID Monitoring Manager fo… |
RATOC Systems, Inc. |
RATOC RAID Monitoring Manager for Windows |
2026-03-26T06:54:59.213Z | 2026-03-26T14:17:16.467Z |
| cve-2026-4847 | dameng100 muucmf list.html cross site scripting |
dameng100 |
muucmf |
2026-03-26T06:23:46.090Z | 2026-03-26T18:25:26.648Z | |
| cve-2026-4747 | N/A | Remote code execution via RPCSEC_GSS packet validation |
FreeBSD |
FreeBSD |
2026-03-26T06:21:12.735Z | 2026-04-02T03:55:35.253Z |
| cve-2026-4652 | N/A | Remote denial of service via null pointer dereference |
FreeBSD |
FreeBSD |
2026-03-26T06:15:00.850Z | 2026-03-26T13:31:31.356Z |
| cve-2026-4247 | N/A | TCP: remotely exploitable DoS vector (mbuf leak) |
FreeBSD |
FreeBSD |
2026-03-26T06:09:08.446Z | 2026-03-26T14:41:24.333Z |
| cve-2026-1890 | N/A | LeadConnector < 3.0.22 - Unauthenticated Rest Call |
Unknown |
LeadConnector |
2026-03-26T06:00:09.659Z | 2026-03-26T13:33:43.195Z |
| cve-2026-1430 | N/A | WP Lightbox 2 < 3.0.7 - Admin+ Stored XSS |
Unknown |
WP Lightbox 2 |
2026-03-26T06:00:09.269Z | 2026-03-26T13:34:15.940Z |
| cve-2025-15488 | N/A | Responsive Plus < 3.4.3 - Unauthenticated Arbitrary Sh… |
Unknown |
Responsive Plus |
2026-03-26T06:00:08.798Z | 2026-03-26T13:34:48.726Z |
| cve-2025-15433 | N/A | Shared Files < 1.7.58 - Contributor+ Arbitrary File Download |
Unknown |
Shared Files |
2026-03-26T06:00:07.315Z | 2026-03-26T13:35:20.136Z |
| cve-2026-4846 | dameng100 muucmf autoReply.html cross site scripting |
dameng100 |
muucmf |
2026-03-26T05:31:37.697Z | 2026-03-26T18:25:37.762Z | |
| cve-2026-4845 | dameng100 muucmf index.html cross site scripting |
dameng100 |
muucmf |
2026-03-26T05:31:34.746Z | 2026-03-26T13:54:43.815Z | |
| cve-2026-1206 | Elementor Website Builder <= 3.35.7 - Incorrect Author… |
elemntor |
Elementor Website Builder – more than just a page builder |
2026-03-26T05:29:33.177Z | 2026-04-08T17:12:59.673Z | |
| cve-2026-4844 | code-projects Online Food Ordering System Admin Login … |
code-projects |
Online Food Ordering System |
2026-03-26T04:50:14.846Z | 2026-03-28T02:11:34.758Z | |
| cve-2026-4842 | itsourcecode Online Enrollment System Parameter index.… |
itsourcecode |
Online Enrollment System |
2026-03-26T04:50:12.056Z | 2026-03-27T22:24:23.182Z | |
| cve-2026-4389 | DSGVO snippet for Leaflet Map and its Extensions <= 3.… |
hupe13 |
DSGVO snippet for Leaflet Map and its Extensions |
2026-03-26T04:28:48.801Z | 2026-04-08T17:28:35.417Z | |
| cve-2026-33201 | 6.8 (v3.0) 7 (v4.0) | Digital Photo Frame GH-WDF10A provided by GREEN H… |
GREEN HOUSE CO., LTD. |
Digital Photo Frame GH-WDF10A |
2026-03-26T04:18:57.635Z | 2026-03-26T13:55:23.959Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2017-avi-368 | Multiples vulnérabilités dans Oracle Virtualization | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-367 | Multiples vulnérabilités dans Oracle MySQL | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-366 | Multiples vulnérabilités dans Oracle Java SE | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-365 | Multiples vulnérabilités dans Juniper Junos Space | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-364 | Multiples vulnérabilités dans Google Chrome | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-363 | Multiples vulnérabilités dans SUSE wpa_supplicant | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-362 | Multiples vulnérabilités dans NVIDIA Tegra Jetson L4T | 2017-10-18T00:00:00.000000 | 2017-10-18T00:00:00.000000 |
| certfr-2017-avi-361 | Multiples vulnérabilités dans les produits Juniper utilisant le protocole WPA/WPA2 | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-360 | Multiples vulnérabilités dans les produits Fortinet utilisant le protocole WPA/WPA2 | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-359 | Multiples vulnérabilités dans Ubuntu wpa_supplicant et hostpad | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-358 | Multiples vulnérabilités dans Debian sur le protocole WPA/WPA2 | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-357 | Vulnérabilité dans Microsoft Windows sur le protocole WPA/WPA2 | 2017-10-17T00:00:00.000000 | 2017-10-17T00:00:00.000000 |
| certfr-2017-avi-356 | Multiples vulnérabilités dans Adobe ColdFusion | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-355 | Multiples vulnérabilités dans Adobe Flash Player | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-354 | Multiples vulnérabilités dans Adobe RoboHelp | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-353 | Vulnérabilité dans le noyau Linux de SUSE | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-352 | Multiples vulnérabilités dans Fortinet FortiWLC et FortiMail | 2017-10-16T00:00:00.000000 | 2017-10-16T00:00:00.000000 |
| certfr-2017-avi-351 | Multiples vulnérabilités dans Xen | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-350 | Multiples vulnérabilités dans Citrix XenServer | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-349 | Vulnérabilité dans SCADA Siemens BACnet field panels | 2017-10-13T00:00:00.000000 | 2017-10-13T00:00:00.000000 |
| certfr-2017-avi-348 | Multiples vulnérabilités dans les produits Juniper | 2017-10-12T00:00:00.000000 | 2017-10-12T00:00:00.000000 |
| certfr-2017-avi-347 | Vulnérabilité dans Apple iOS | 2017-10-12T00:00:00.000000 | 2017-10-12T00:00:00.000000 |
| certfr-2017-avi-346 | Multiples vulnérabilités dans les produits Microsoft | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-345 | Multiples vulnérabilités dans Microsoft Windows | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-344 | Multiples vulnérabilités dans Microsoft Office | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-343 | Multiples vulnérabilités dans Microsoft Edge | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-342 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-341 | Multiples vulnérabilités dans Wireshark | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-340 | Multiples vulnérabilités dans Mozilla Thunderbird | 2017-10-11T00:00:00.000000 | 2017-10-11T00:00:00.000000 |
| certfr-2017-avi-339 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2017-10-11T00:00:00.000000 | 2017-10-12T00:00:00.000000 |