Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-1940 | 5.1 (v3.1) | Gstreamer: incomplete fix of cve-2026-1940 |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-23T21:26:14.719Z | 2026-03-24T13:43:53.427Z |
| cve-2026-32277 | Connect-CMS has DOM-based Cross-Site Scripting (XSS) i… |
opensource-workshop |
connect-cms |
2026-03-23T21:22:08.425Z | 2026-03-24T14:01:09.422Z | |
| cve-2026-4611 | TOTOLINK X6000R shttpd setLanCfg privilege escalation |
TOTOLINK |
X6000R |
2026-03-23T21:13:27.140Z | 2026-03-25T19:14:18.836Z | |
| cve-2026-32276 | Connect-CMS has Arbitrary Code Execution by an Authent… |
opensource-workshop |
connect-cms |
2026-03-23T21:06:32.607Z | 2026-03-24T15:13:12.123Z | |
| cve-2026-29111 | systemd: Local unprivileged user can trigger an assert |
systemd |
systemd |
2026-03-23T21:03:56.120Z | 2026-03-25T19:13:11.875Z | |
| cve-2025-60949 | Census CSWeb leaked configuration files |
Census |
CSWeb |
2026-03-23T21:00:55.751Z | 2026-03-25T14:50:13.877Z | |
| cve-2025-60948 | Census CSWeb stored XSS |
Census |
CSWeb |
2026-03-23T21:00:28.330Z | 2026-03-25T14:47:20.070Z | |
| cve-2025-60947 | Census CSWeb arbitrary file upload |
Census |
CSWeb |
2026-03-23T21:00:04.088Z | 2026-03-25T14:38:12.537Z | |
| cve-2025-60946 | Census CSWeb path traversal |
Census |
CSWeb |
2026-03-23T20:59:28.541Z | 2026-03-25T14:34:38.740Z | |
| cve-2026-23882 | Blinko: Admin RCE - MCP Server Command Injection |
blinkospace |
blinko |
2026-03-23T20:52:17.200Z | 2026-03-24T15:59:02.803Z | |
| cve-2026-23485 | Blinko: Unauthorized Path Traversal File Enumeration -… |
blinkospace |
blinko |
2026-03-23T20:50:02.880Z | 2026-03-24T15:13:17.335Z | |
| cve-2026-23488 | Blinko: multiple interfaces in the comment feature all… |
blinkospace |
blinko |
2026-03-23T20:48:55.325Z | 2026-03-24T13:48:42.544Z | |
| cve-2026-23487 | Blinko: IDOR - user.detail Endpoint Leaks Superadmin Token |
blinkospace |
blinko |
2026-03-23T20:45:32.635Z | 2026-03-24T18:46:32.047Z | |
| cve-2026-23486 | Blinko: Unauthorized User Information Leak |
blinkospace |
blinko |
2026-03-23T20:42:24.689Z | 2026-03-24T14:07:26.774Z | |
| cve-2026-23480 | Blinko: Low Privilege User Privilege Escalation - upse… |
blinkospace |
blinko |
2026-03-23T20:39:38.784Z | 2026-03-24T14:08:24.272Z | |
| cve-2026-23481 | Blinko: Authenticated Arbitrary File Write - saveAddit… |
blinkospace |
blinko |
2026-03-23T20:33:32.754Z | 2026-03-24T18:45:57.927Z | |
| cve-2026-23484 | Blinko: Authenticated Arbitrary File Write - saveDevPlugin |
blinkospace |
blinko |
2026-03-23T20:31:19.999Z | 2026-03-25T19:11:30.801Z | |
| cve-2026-23483 | Blinko: Unauthorized Arbitrary File Read - /plugins |
blinkospace |
blinko |
2026-03-23T20:28:55.541Z | 2026-03-24T16:03:10.291Z | |
| cve-2026-23482 | Blinko: Unauthorized Arbitrary File Read - /api/file/temp |
blinkospace |
blinko |
2026-03-23T20:25:50.219Z | 2026-03-24T13:51:48.530Z | |
| cve-2026-3055 | 9.3 (v4.0) | Insufficient input validation leading to memory overread |
NetScaler |
ADC |
2026-03-23T20:21:27.107Z | 2026-03-31T03:55:32.569Z |
| cve-2026-4597 | 648540858 wvp-GB28181-pro Stream Proxy Query StreamPro… |
648540858 |
wvp-GB28181-pro |
2026-03-23T20:15:04.976Z | 2026-04-18T03:34:43.190Z | |
| cve-2026-4368 | 7.7 (v4.0) | Race Condition leading to User Session Mixup |
NetScaler |
ADC |
2026-03-23T20:09:44.971Z | 2026-03-24T03:56:06.153Z |
| cve-2026-2298 | N/A | Improper Neutralization of Argument Delimiters in… |
Salesforce |
Marketing Cloud Engagement |
2026-03-23T19:54:32.967Z | 2026-04-29T19:26:59.300Z |
| cve-2026-32879 | New API has passkey-based secure step-up verification … |
QuantumNous |
new-api |
2026-03-23T19:24:16.336Z | 2026-03-24T15:13:22.246Z | |
| cve-2026-4596 | projectworlds Lawyer Management System lawyers.php cro… |
projectworlds |
Lawyer Management System |
2026-03-23T19:20:03.984Z | 2026-03-24T18:45:11.073Z | |
| cve-2026-30886 | New API: IDOR in VideoProxy allows cross-user video co… |
QuantumNous |
new-api |
2026-03-23T19:18:34.150Z | 2026-03-25T14:41:44.784Z | |
| cve-2026-33548 | MantisBT has Stored HTML Injection / XSS when displayi… |
mantisbt |
mantisbt |
2026-03-23T19:15:18.891Z | 2026-03-24T16:06:54.776Z | |
| cve-2026-33517 | MantisBT Vulnerable to Stored HTML Injection in Tag De… |
mantisbt |
mantisbt |
2026-03-23T19:13:15.220Z | 2026-03-24T14:17:15.295Z | |
| cve-2026-30849 | MantisBT SOAP API has an authentication bypass vulnera… |
mantisbt |
mantisbt |
2026-03-23T19:10:34.345Z | 2026-03-24T18:30:05.202Z | |
| cve-2026-32852 | 5.1 (v4.0) | MailEnable < 10.55 Reflected XSS via FreeBusy.aspx Sta… |
MailEnable |
MailEnable |
2026-03-23T19:06:41.939Z | 2026-05-08T14:00:20.789Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-391 | Vulnérabilité dans le système SCADA Schneider Electric VAMPSET | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-390 | Multiples vulnérabilités dans Wireshark | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-389 | Multiples vulnérabilités dans Adobe Reader et Acrobat | 2014-09-17T00:00:00.000000 | 2014-09-17T00:00:00.000000 |
| certfr-2014-avi-388 | Multiples vulnérabilités dans le noyau Linux de Suse | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-387 | Multiples vulnérabilités dans Juniper | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-386 | Vulnérabilité dans phpMyAdmin | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-385 | Multiples vulnérabilités dans Moodle | 2014-09-15T00:00:00.000000 | 2014-09-15T00:00:00.000000 |
| certfr-2014-avi-384 | Vulnérabilité dans VMware NSX et vCNS | 2014-09-12T00:00:00.000000 | 2014-09-12T00:00:00.000000 |
| certfr-2014-avi-383 | Vulnérabilité dans HP Network Node Manager I | 2014-09-11T00:00:00.000000 | 2014-09-11T00:00:00.000000 |
| certfr-2014-avi-382 | Multiples vulnérabilités dans VMware vSphere | 2014-09-11T00:00:00.000000 | 2014-09-11T00:00:00.000000 |
| certfr-2014-avi-381 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-380 | Multiples vulnérabilités dans Google Chrome | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-379 | Multiples vulnérabilités dans Adobe Flash Player | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-378 | Multiples vulnérabilités dans Microsoft Lync Server | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-377 | Vulnérabilité dans Microsoft Windows | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-376 | Vulnérabilité dans Microsoft .NET | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-375 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2014-09-10T00:00:00.000000 | 2014-09-10T00:00:00.000000 |
| certfr-2014-avi-374 | Vulnérabilité dans Cisco Unified Computing System | 2014-09-09T00:00:00.000000 | 2014-09-09T00:00:00.000000 |
| certfr-2014-avi-373 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-09-04T00:00:00.000000 | 2014-09-04T00:00:00.000000 |
| certfr-2014-avi-372 | Multiples vulnérabilités dans les produits Mozilla | 2014-09-03T00:00:00.000000 | 2014-09-03T00:00:00.000000 |
| certfr-2014-avi-371 | Multiples vulnérabilités dans phpMyAdmin | 2014-09-03T00:00:00.000000 | 2014-09-03T00:00:00.000000 |
| certfr-2014-avi-370 | Vulnérabilité dans Citrix CloudPlatform | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-369 | Vulnérabilité dans Squid | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-368 | Vulnérabilité dans IBM Tivoli | 2014-09-02T00:00:00.000000 | 2014-09-02T00:00:00.000000 |
| certfr-2014-avi-367 | Vulnérabilité dans les équipements Android de Huawei | 2014-08-28T00:00:00.000000 | 2014-08-28T00:00:00.000000 |
| certfr-2014-avi-366 | Multiples vulnérabilités dans Google Chrome | 2014-08-28T00:00:00.000000 | 2014-08-28T00:00:00.000000 |
| certfr-2014-avi-365 | Vulnérabilité dans Red Hat JBoss | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-364 | Multiples vulnérabilités dans les produits IBM | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-363 | Multiples vulnérabilités dans RSA Archer GRC Platform | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |
| certfr-2014-avi-362 | Multiples vulnérabilités dans EMC Documentum | 2014-08-20T00:00:00.000000 | 2014-08-20T00:00:00.000000 |