Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-23920 | 7.7 (v4.0) | Host and event action script regex validation can be b… |
Zabbix |
Zabbix |
2026-03-24T18:27:52.882Z | 2026-03-26T03:55:29.372Z |
| cve-2026-33539 | Parse Server: SQL injection via aggregate and distinct… |
parse-community |
parse-server |
2026-03-24T18:26:56.046Z | 2026-03-26T19:52:13.216Z | |
| cve-2026-23919 | 7.1 (v4.0) | Insufficient isolation of JavaScript (Duktape) executi… |
Zabbix |
Zabbix |
2026-03-24T18:26:43.877Z | 2026-04-22T07:06:32.148Z |
| cve-2026-33538 | Parse Server: Denial of service via unindexed database… |
parse-community |
parse-server |
2026-03-24T18:24:51.595Z | 2026-03-24T18:37:24.020Z | |
| cve-2026-33527 | Parse Server: Session update endpoint allows overwriti… |
parse-community |
parse-server |
2026-03-24T18:22:44.613Z | 2026-03-24T20:36:39.104Z | |
| cve-2026-33508 | Parse Server: LiveQuery subscription query depth bypass |
parse-community |
parse-server |
2026-03-24T18:21:08.477Z | 2026-03-25T14:28:29.657Z | |
| cve-2026-33498 | Parse Server: Query condition depth bypass via pre-val… |
parse-community |
parse-server |
2026-03-24T18:18:44.587Z | 2026-03-26T19:52:13.415Z | |
| cve-2026-33429 | Parse Server: Protected field change detection oracle … |
parse-community |
parse-server |
2026-03-24T18:16:35.414Z | 2026-03-25T13:34:05.792Z | |
| cve-2026-33421 | Parse Server: LiveQuery bypasses CLP pointer permissio… |
parse-community |
parse-server |
2026-03-24T18:14:30.444Z | 2026-03-24T20:21:04.887Z | |
| cve-2026-33409 | Parse Server: Auth provider validation bypass on login… |
parse-community |
parse-server |
2026-03-24T18:11:36.824Z | 2026-03-25T13:39:23.559Z | |
| cve-2026-2417 | 9.3 (v4.0) | Missing Authentication for Critical Function in Pharos… |
Pharos Controls |
Mosaic Show Controller |
2026-03-24T18:06:32.303Z | 2026-03-24T18:38:05.206Z |
| cve-2026-33323 | Parse Server: Email verification resend page leaks use… |
parse-community |
parse-server |
2026-03-24T18:06:32.189Z | 2026-03-25T14:28:34.748Z | |
| cve-2026-33417 | Wallos: Password Reset Tokens Never Expire |
ellite |
Wallos |
2026-03-24T18:01:07.765Z | 2026-03-24T18:37:53.873Z | |
| cve-2026-1995 | N/A | IDrive Cloud Backup Client for Windows contains a priv… |
IDrive |
IDrive Cloud Backup Client for Windows |
2026-03-24T18:00:15.664Z | 2026-03-25T13:14:39.639Z |
| cve-2026-33401 | Wallos: Incomplete fix for CVE-2026-30840 - SSRF in AI… |
ellite |
Wallos |
2026-03-24T17:58:47.336Z | 2026-03-24T18:11:38.820Z | |
| cve-2026-33400 | Wallos: Stored cross-site scripting (XSS) vulnerabilit… |
ellite |
Wallos |
2026-03-24T17:45:27.144Z | 2026-03-24T20:21:38.544Z | |
| cve-2026-33399 | Wallos: SSRF Bypass - Incomplete Fix for CVE-2026-3083… |
ellite |
Wallos |
2026-03-24T17:43:52.364Z | 2026-03-24T18:27:22.399Z | |
| cve-2026-33407 | Wallos: SSRF via HTTP Proxy Environment Variable |
ellite |
Wallos |
2026-03-24T17:40:58.666Z | 2026-03-26T19:52:13.544Z | |
| cve-2026-33162 | Craft CMS: Authorization bypass in "entries/move-to-se… |
craftcms |
cms |
2026-03-24T17:32:27.208Z | 2026-03-25T13:40:37.056Z | |
| cve-2026-32854 | 6.3 (v4.0) | LibVNCServer httpd proxy NULL Pointer Dereference |
LibVNC |
LibVNCServer |
2026-03-24T17:31:32.011Z | 2026-03-27T03:52:19.164Z |
| cve-2026-33161 | Craft CMS: Anonymous "assets/image-editor" calls retur… |
craftcms |
cms |
2026-03-24T17:31:28.077Z | 2026-03-24T18:02:07.070Z | |
| cve-2026-32853 | 6.9 (v4.0) | LibVNCServer UltraZip Encoding Heap Out-of-bounds Read |
LibVNC |
LibVNCServer |
2026-03-24T17:30:40.061Z | 2026-03-25T13:41:15.171Z |
| cve-2026-33160 | Craft CMS: Anonymous "generate transform" calls for as… |
craftcms |
cms |
2026-03-24T17:30:20.068Z | 2026-03-26T19:52:13.700Z | |
| cve-2026-33159 | Craft CMS: Unauthenticated users could execute project… |
craftcms |
cms |
2026-03-24T17:28:37.422Z | 2026-03-24T17:57:50.529Z | |
| cve-2026-33158 | Craft CMS: Low-privilege users could read private asse… |
craftcms |
cms |
2026-03-24T17:26:03.688Z | 2026-03-24T20:24:48.917Z | |
| cve-2026-33157 | Craft CMS: Potential authenticated Remote Code Executi… |
craftcms |
cms |
2026-03-24T17:22:00.966Z | 2026-03-25T03:56:03.039Z | |
| cve-2025-11571 | 2.1 (v4.0) | Command Execution vulnerability in Simplicity Installer |
silabs.com |
Simplicity Studio v5 |
2026-03-24T16:26:32.789Z | 2026-03-24T17:43:07.517Z |
| cve-2026-33340 | LoLLMs WEBUI has unauthenticated Server-Side Request F… |
ParisNeo |
lollms-webui |
2026-03-24T15:58:35.877Z | 2026-03-24T17:30:06.413Z | |
| cve-2026-33700 | Vikunja has a Link Share Delete IDOR — Missing Project… |
go-vikunja |
vikunja |
2026-03-24T15:51:40.172Z | 2026-03-24T18:04:42.445Z | |
| cve-2026-33680 | Vikunja Vulnerable to Link Share Hash Disclosure via R… |
go-vikunja |
vikunja |
2026-03-24T15:47:47.529Z | 2026-03-26T19:52:13.837Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2015-avi-117 | Multiples vulnérabilités dans OpenSSL | 2015-03-19T00:00:00.000000 | 2015-03-19T00:00:00.000000 |
| certfr-2015-avi-116 | Multiples vulnérabilités dans Drupal | 2015-03-19T00:00:00.000000 | 2015-03-19T00:00:00.000000 |
| certfr-2015-avi-115 | Multiples vulnérabilités dans Moodle | 2015-03-16T00:00:00.000000 | 2015-03-16T00:00:00.000000 |
| certfr-2015-avi-114 | Multiples vulnérabilités dans Adobe Flash Flayer | 2015-03-13T00:00:00.000000 | 2015-03-13T00:00:00.000000 |
| certfr-2015-avi-113 | Vulnérabilité dans Xen | 2015-03-13T00:00:00.000000 | 2015-03-13T00:00:00.000000 |
| certfr-2015-avi-112 | Vulnérabilité dans le noyau Linux d'Ubuntu | 2015-03-12T00:00:00.000000 | 2015-03-12T00:00:00.000000 |
| certfr-2015-avi-111 | Multiples vulnérabilités dans les produits Cisco | 2015-03-12T00:00:00.000000 | 2015-03-12T00:00:00.000000 |
| certfr-2015-avi-110 | Multiples vulnérabilités dans Citrix XenServer | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-109 | Multiples vulnérabilités dans Xen | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-108 | Multiples vulnérabilités dans les produits Cisco | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-107 | Vulnérabilité dans le composant Schannel de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-106 | Vulnérabilité dans le protocole RDP de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-105 | Vulnérabilité dans le traitement des fichiers JPEG de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-104 | Vulnérabilité dans le composant Task Scheduler de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-103 | Vulnérabilité dans le service Netlogon de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-102 | Multiples vulnérabilités dans Microsoft Exchange Server | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-101 | Multiples vulnérabilités dans le noyau de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-100 | Vulnérabilité dans le traitement des images PNG de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-099 | Multiples vulnérabilités dans le noyau de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-098 | Multiples vulnérabilités dans Microsoft Office | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-097 | Multiples vulnérabilités dans le pilote de fontes Adobe de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-096 | Multiples vulnérabilités dans Microsoft Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-095 | Vulnérabilité dans le moteur de script VBScript de Windows | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-094 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2015-03-11T00:00:00.000000 | 2015-03-11T00:00:00.000000 |
| certfr-2015-avi-093 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2015-03-10T00:00:00.000000 | 2015-03-10T00:00:00.000000 |
| certfr-2015-avi-092 | Multiples vulnérabilités dans les produits Apple | 2015-03-10T00:00:00.000000 | 2015-03-10T00:00:00.000000 |
| certfr-2015-avi-091 | Vulnérabilité dans VLC Media Player | 2015-03-09T00:00:00.000000 | 2015-03-09T00:00:00.000000 |
| certfr-2015-avi-090 | Multiples vulnérabilités dans les produits SCADA Siemens | 2015-03-09T00:00:00.000000 | 2015-03-09T00:00:00.000000 |
| certfr-2015-avi-089 | Multiples vulnérabilités dans OpenSSL | 2015-03-06T00:00:00.000000 | 2015-03-06T00:00:00.000000 |
| certfr-2015-avi-088 | Multiples vulnérabilités dans Xen | 2015-03-06T00:00:00.000000 | 2015-03-06T00:00:00.000000 |