Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-26174 7 (v3.1) Windows Server Update Service (WSUS) Elevation of Priv… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:57:04.704Z 2026-04-21T19:19:16.228Z
cve-2026-26167 8.8 (v3.1) Windows Push Notifications Elevation of Privilege Vuln… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:57:04.120Z 2026-04-21T19:19:15.636Z
cve-2026-26166 7 (v3.1) Windows Shell Elevation of Privilege Vulnerability Microsoft
 Windows 11 version 22H3
 2026-04-14T16:57:03.523Z 2026-04-21T19:19:14.744Z
cve-2026-26165 7 (v3.1) Windows Shell Elevation of Privilege Vulnerability Microsoft
 Windows 11 version 22H3
 2026-04-14T16:57:02.764Z 2026-04-21T19:19:14.123Z
cve-2026-26162 7.8 (v3.1) Windows OLE Elevation of Privilege Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:57:02.114Z 2026-04-21T19:19:13.464Z
cve-2026-26161 7.8 (v3.1) Windows Sensor Data Service Elevation of Privilege Vul… Microsoft
 Windows 10 Version 1809
 2026-04-14T16:57:01.363Z 2026-04-21T19:19:12.838Z
cve-2026-26160 7.8 (v3.1) Remote Desktop Licensing Service Elevation of Privileg… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:57:00.415Z 2026-04-21T19:19:12.286Z
cve-2026-26155 6.5 (v3.1) Microsoft Local Security Authority Subsystem Service I… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:56:59.659Z 2026-04-21T19:19:11.604Z
cve-2026-26154 7.5 (v3.1) Windows Server Update Service (WSUS) Tampering Vulnerability Microsoft
 Windows Server 2012
 2026-04-14T16:56:58.935Z 2026-04-21T19:19:10.963Z
cve-2026-26151 7.1 (v3.1) Remote Desktop Spoofing Vulnerability Microsoft
 Windows 10 Version 1607
 2026-04-14T16:56:58.329Z 2026-04-21T19:19:10.111Z
cve-2026-26149 9 (v3.1) Microsoft Power Apps Spoofing Vulnerability Microsoft
 Microsoft Power Apps
 2026-04-14T16:56:57.430Z 2026-04-21T19:19:09.555Z
cve-2026-23670 5.7 (v3.1) Windows Virtualization-Based Security (VBS) Security F… Microsoft
 Windows 10 Version 1607
 2026-04-14T16:56:56.192Z 2026-04-21T19:19:08.425Z
cve-2026-20945 4.6 (v3.1) Microsoft SharePoint Server Spoofing Vulnerability Microsoft
 Microsoft SharePoint Enterprise Server 2016
 2026-04-14T16:56:55.466Z 2026-04-21T19:19:07.592Z
cve-2026-25184 7 (v3.1) Applocker Filter Driver (applockerfltr.sys) Elevation … Microsoft
 Windows 11 version 22H3
 2026-04-14T16:56:54.535Z 2026-04-21T19:19:06.763Z
cve-2026-23653 5.7 (v3.1) GitHub Copilot and Visual Studio Code Information Disc… Microsoft
 Microsoft Visual Studio Code CoPilot Chat Extension
 2026-04-14T16:56:53.499Z 2026-04-21T19:19:05.769Z
cve-2026-20930 7.8 (v3.1) Windows Management Services Elevation of Privilege Vul… Microsoft
 Windows 10 Version 1809
 2026-04-14T16:56:51.780Z 2026-04-21T19:19:04.754Z
cve-2026-40279 BACnet Stack: Undefined-behavior signed left shift in … bacnet-stack
 bacnet-stack
 2026-04-21T16:29:16.125Z 2026-04-21T19:18:58.492Z
cve-2026-40611 Lego: Arbitrary File Write via Path Traversal in Webro… go-acme
 lego
 2026-04-21T17:58:35.221Z 2026-04-21T19:17:54.210Z
cve-2026-40567 FreeScout has HTML Injection in Outgoing Emails via Un… freescout-help-desk
 freescout
 2026-04-21T16:06:39.878Z 2026-04-21T19:17:33.873Z
cve-2026-26274 October: Safe Mode Bypass via Twig Database Write Operations octobercms
 october
 2026-04-21T16:16:06.488Z 2026-04-21T19:16:38.739Z
cve-2026-40570 FreeScout's Missing Authorization in load_customer_inf… freescout-help-desk
 freescout
 2026-04-21T16:48:08.260Z 2026-04-21T19:11:51.385Z
cve-2026-40592 FreeScout's cross-user undo reply allows mailbox peers… freescout-help-desk
 freescout
 2026-04-21T16:57:33.146Z 2026-04-21T19:10:40.989Z
cve-2025-71058 N/A Dual DHCP DNS Server 8.01 improperly accepts and … n/a
 n/a
 2026-04-07T00:00:00.000Z 2026-04-21T19:09:44.488Z
cve-2026-41191 FreeScout's signature only mailbox permission allows u… freescout-help-desk
 freescout
 2026-04-21T17:09:26.481Z 2026-04-21T19:07:38.705Z
cve-2026-40586 blueprintUE: Login Endpoint Has No Rate Limiting, Lock… blueprintue
 blueprintue-self-hosted-edition
 2026-04-21T17:10:05.432Z 2026-04-21T19:04:41.220Z
cve-2026-40602 hass-cli: Handling of user-supplied Jinja2 templates home-assistant-ecosystem
 home-assistant-cli
 2026-04-21T17:40:10.251Z 2026-04-21T19:02:03.968Z
cve-2026-41192 FreeScout's client-controlled attachment IDs allow del… freescout-help-desk
 freescout
 2026-04-21T17:12:42.628Z 2026-04-21T19:01:14.512Z
cve-2026-33874 Authenticator vulnerable to Remote Code Execution gematik
 app-Authenticator
 2026-03-27T20:23:53.402Z 2026-04-21T18:53:38.805Z
cve-2026-41456 5.1 (v4.0) Bludit CMS Reflected XSS via Search Plugin bludit
 bludit
 2026-04-21T18:03:00.332Z 2026-04-21T18:46:34.003Z
cve-2026-40865 Horilla: Insecure Direct Object Reference at `/employe… horilla-opensource
 horilla
 2026-04-21T18:14:19.523Z 2026-04-21T18:45:50.143Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2022-000007 Multiple vulnerabilities in TransmitMail 2022-01-25T15:31+09:00 2022-01-25T15:31+09:00
jvndb-2022-001097 Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux 2022-01-25T13:35+09:00 2022-01-25T13:35+09:00
jvndb-2022-001087 GROWI vulnerable to authorization bypass through user-controlled key 2022-01-24T14:07+09:00 2022-01-24T14:07+09:00
jvndb-2022-000006 Multiple cross-site scripting vulnerabilities in php_mailform 2022-01-20T15:42+09:00 2022-01-20T15:42+09:00
jvndb-2022-000001 Canon laser printers and small office multifunctional printers vulnerable to cross-site scripting 2022-01-19T14:00+09:00 2022-01-19T14:00+09:00
jvndb-2022-000005 PASSWORD MANAGER "MIRUPASS" PW10 / PW20 missing encryption 2022-01-13T15:26+09:00 2022-01-13T15:26+09:00
jvndb-2022-000004 Label printers "TEPRA" PRO SR5900P / SR-R7900P vulnerable to insufficiently protected credentials 2022-01-13T15:21+09:00 2022-01-13T15:21+09:00
jvndb-2022-000003 Jimoty App for Android uses a hard-coded API key for an external service 2022-01-12T15:37+09:00 2022-01-12T15:37+09:00
jvndb-2022-000002 Multiple vulnerabilities in WordPress Plugin "Quiz And Survey Master" 2022-01-12T15:33+09:00 2022-01-12T15:33+09:00
jvndb-2021-006117 Multiple vulnerabilities in IDEC PLCs 2021-12-27T16:54+09:00 2022-01-11T16:36+09:00
jvndb-2021-006146 Multiple vulnerabilities in KONICA MINOLTA MFPs and printing systems 2021-12-28T11:51+09:00 2021-12-28T11:51+09:00
jvndb-2021-006026 TP-Link TL-WR802N V4(JP) vulnerable to OS command injection 2021-12-24T15:31+09:00 2021-12-24T15:31+09:00
jvndb-2021-005998 Multiple vulnerabilities in QNAP VioStar NVR 2021-12-24T10:58+09:00 2021-12-24T10:58+09:00
jvndb-2021-003929 Multiple vulnerabilities in multiple Yamaha routers 2021-12-24T10:51+09:00 2021-12-24T10:51+09:00
jvndb-2021-000112 Android Apps developed using Yappli fails to restrict custom URL schemes properly 2021-12-22T15:07+09:00 2021-12-22T15:07+09:00
jvndb-2021-000111 Multiple vulnerabilities in GroupSession 2021-12-20T14:53+09:00 2021-12-21T14:20+09:00
jvndb-2021-000022 Multiple vulnerabilities in Cybozu Office 2021-03-15T15:56+09:00 2021-12-17T17:51+09:00
jvndb-2021-000093 Movable Type XMLRPC API vulnerable to OS command injection 2021-10-20T17:38+09:00 2021-12-17T17:36+09:00
jvndb-2021-000110 UNIVERGE DT Series vulnerable to missing encryption of sensitive data 2021-12-17T16:57+09:00 2021-12-17T16:57+09:00
jvndb-2021-005174 Multiple vulnerabilities in Trend Micro Security 2021 family (Consumer) 2021-12-09T13:43+09:00 2021-12-09T13:43+09:00
jvndb-2021-000107 Wi-Fi STATION SH-52A vulnerable to cross-site scripting 2021-11-30T14:49+09:00 2021-11-30T14:49+09:00
jvndb-2021-004716 Trend Micro Antivirus for MAC vulnerable to improper access controls 2021-11-29T13:52+09:00 2021-11-29T13:52+09:00
jvndb-2021-000106 Multiple vulnerabilities in baserCMS 2021-11-26T14:59+09:00 2021-11-26T14:59+09:00
jvndb-2021-000104 WordPress Plugin "Browser and Operating System Finder" vulnerable to cross-site request forgery 2021-11-25T14:31+09:00 2021-11-25T14:31+09:00
jvndb-2021-004432 Multiple Vulnerabilities in JP1/Automatic Operation 2021-11-22T16:10+09:00 2021-11-22T16:10+09:00
jvndb-2021-000103 WordPress Plugin "Push Notifications for WordPress (Lite)" vulnerable to cross-site request forgery 2021-11-16T13:42+09:00 2021-11-16T13:42+09:00
jvndb-2021-000102 rwtxt vulnerable to cross-site scripting 2021-11-16T13:38+09:00 2021-11-16T13:38+09:00
jvndb-2021-000101 Unlimited Sitemap Generator vulnerable to cross-site request forgery 2021-11-12T15:07+09:00 2021-11-12T15:07+09:00
jvndb-2021-003840 Cross-site Scripting Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer 2021-11-12T11:41+09:00 2021-11-12T11:41+09:00
jvndb-2021-000100 Multiple vulnerabilities in EC-CUBE 2 series 2021-11-11T15:09+09:00 2021-11-11T15:09+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0758 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0757 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0756 Multiples vulnérabilités dans les produits VMware 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0755 Vulnérabilité dans les produits Synology 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0754 Multiples vulnérabilités dans les produits VMware 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0753 Vulnérabilité dans Shibboleth Service Provider 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0752 Multiples vulnérabilités dans Google Pixel 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0751 Multiples vulnérabilités dans les produits VMware 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0750 Multiples vulnérabilités dans Google Android 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0749 Multiples vulnérabilités dans Google Chrome 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0748 Vulnérabilité dans les produits Liferay 2025-09-02T00:00:00.000000 2025-09-02T00:00:00.000000
certfr-2025-avi-0747 Multiples vulnérabilités dans les produits Qnap 2025-09-01T00:00:00.000000 2025-09-01T00:00:00.000000
certfr-2025-avi-0746 Multiples vulnérabilités dans les produits IBM 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0745 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0744 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0743 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0742 Vulnérabilité dans Microsoft Edge 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0741 Vulnérabilité dans Wireshark 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0740 Multiples vulnérabilités dans Tenable Security Center 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0739 Multiples vulnérabilités dans Asterisk 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0738 Multiples vulnérabilités dans les produits Elastic 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0737 Multiples vulnérabilités dans les produits Cisco 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0736 Multiples vulnérabilités dans GitLab 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0735 Vulnérabilité dans GLPI 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0734 Vulnérabilité dans ISC Kea DHCP 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0733 Vulnérabilité dans Nagios XI 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0732 Vulnérabilité dans Google Chrome 2025-08-27T00:00:00.000000 2025-08-27T00:00:00.000000
certfr-2025-avi-0731 Vulnérabilité dans Shibboleth Identity Provider 2025-08-27T00:00:00.000000 2025-08-27T00:00:00.000000
certfr-2025-avi-0730 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-08-26T00:00:00.000000
certfr-2025-avi-0729 Multiples vulnérabilités dans Qnap File Station 2025-08-26T00:00:00.000000 2025-08-26T00:00:00.000000
ID Description Published Updated