Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-4594 | erupts erupt EruptJpaUtils.java geneEruptHqlOrderBy sq… |
erupts |
erupt |
2026-03-23T17:41:26.211Z | 2026-03-24T14:11:24.887Z | |
| cve-2026-4593 | erupts erupt MCP Tool EruptDataQuery.java EruptDataQue… |
erupts |
erupt |
2026-03-23T16:55:59.020Z | 2026-03-25T14:19:46.730Z | |
| cve-2026-33507 | AVideo Affected by CSRF on Plugin Import Endpoint Enab… |
WWBN |
AVideo |
2026-03-23T16:32:28.925Z | 2026-03-23T17:09:11.687Z | |
| cve-2026-33502 | AVideo has Unauthenticated SSRF via plugin/Live/test.php |
WWBN |
AVideo |
2026-03-23T16:29:47.822Z | 2026-03-24T15:13:52.835Z | |
| cve-2026-33501 | AVideo has Unauthenticated Information Disclosure of U… |
WWBN |
AVideo |
2026-03-23T16:28:20.513Z | 2026-03-25T14:18:32.194Z | |
| cve-2026-33500 | AVideo Vulnerable to Stored XSS via Markdown `javascri… |
WWBN |
AVideo |
2026-03-23T16:24:52.892Z | 2026-03-24T17:39:33.796Z | |
| cve-2026-33499 | AVideo has Reflected XSS via unlockPassword Parameter … |
WWBN |
AVideo |
2026-03-23T16:11:57.528Z | 2026-03-23T17:42:30.355Z | |
| cve-2026-4592 | kalcaddle kodbox Password Login index.class.php tfaVer… |
kalcaddle |
kodbox |
2026-03-23T15:56:44.699Z | 2026-03-23T17:51:46.217Z | |
| cve-2026-33493 | AVideo has a Path Traversal in import.json.php that Al… |
WWBN |
AVideo |
2026-03-23T15:52:33.788Z | 2026-03-23T16:33:28.572Z | |
| cve-2026-32845 | 6.9 (v4.0) 8.4 (v3.1) | jkuhlmann / cgltf <= 1.15 Sparse Accessor Validation I… |
jkuhlmann |
cgltf |
2026-03-23T15:50:44.296Z | 2026-03-31T15:12:59.848Z |
| cve-2026-33492 | AVideo has Session Fixation via GET PHPSESSID Paramete… |
WWBN |
AVideo |
2026-03-23T15:25:27.288Z | 2026-03-23T15:40:38.783Z | |
| cve-2026-33488 | AVideo has a PGP 2FA Bypass via Cryptographically Brok… |
WWBN |
AVideo |
2026-03-23T15:23:01.438Z | 2026-03-24T15:13:58.214Z | |
| cve-2026-4591 | kalcaddle kodbox fileThumb Endpoint app.php checkBin o… |
kalcaddle |
kodbox |
2026-03-23T15:15:14.996Z | 2026-03-23T15:56:36.807Z | |
| cve-2026-4404 | N/A | Use of hard coded credentials in GoHarbor Harbor |
Harbor |
Harbor |
2026-03-23T14:47:13.396Z | 2026-03-24T15:25:10.390Z |
| cve-2026-4590 | kalcaddle kodbox loginSubmit API index.class.php cross… |
kalcaddle |
kodbox |
2026-03-23T14:24:35.720Z | 2026-03-23T16:38:12.165Z | |
| cve-2026-33485 | AVideo has an Unauthenticated Blind SQL Injection in R… |
WWBN |
AVideo |
2026-03-23T14:14:15.477Z | 2026-03-25T14:17:20.198Z | |
| cve-2026-33483 | AVideo Affected by Unauthenticated Disk Space Exhausti… |
WWBN |
AVideo |
2026-03-23T14:12:05.025Z | 2026-03-24T17:42:00.272Z | |
| cve-2026-33482 | AVideo has an OS Command Injection via $() Shell Subst… |
WWBN |
AVideo |
2026-03-23T14:10:10.157Z | 2026-03-23T18:08:31.712Z | |
| cve-2026-33480 | AVideo has a SSRF Protection Bypass via IPv4-Mapped IP… |
WWBN |
AVideo |
2026-03-23T14:08:49.302Z | 2026-03-23T15:57:19.767Z | |
| cve-2026-33479 | AVideo has PHP Code Injection via eval() in Gallery sa… |
WWBN |
AVideo |
2026-03-23T14:05:55.725Z | 2026-03-23T14:59:02.375Z | |
| cve-2026-33478 | AVideo Multi-Chain Attack: Unauthenticated Remote Code… |
WWBN |
AVideo |
2026-03-23T14:01:19.611Z | 2026-03-23T21:40:58.174Z | |
| cve-2026-33354 | AVideo has an authenticated arbitrary local file read … |
WWBN |
AVideo |
2026-03-23T13:58:13.712Z | 2026-03-25T14:13:08.253Z | |
| cve-2026-33352 | AVideo has an Unauthenticated SQL Injection via `doNot… |
WWBN |
AVideo |
2026-03-23T13:53:47.260Z | 2026-03-24T17:44:35.562Z | |
| cve-2026-3635 | 6.1 (v3.1) | Fastify request.protocol and request.host spoofable vi… |
fastify |
fastify |
2026-03-23T13:53:00.386Z | 2026-03-23T15:30:10.526Z |
| cve-2026-33351 | AVideo has Unauthenticated SSRF via `webSiteRootURL` P… |
WWBN |
AVideo |
2026-03-23T13:51:43.972Z | 2026-03-23T18:44:50.468Z | |
| cve-2019-25625 | 6.9 (v4.0) 6.2 (v3.1) | Blob Studio 2.17 Denial of Service via Malformed Input |
Pixarra |
Blob Studio |
2026-03-23T13:48:40.449Z | 2026-03-23T15:58:10.717Z |
| cve-2019-25624 | 6.9 (v4.0) 6.2 (v3.1) | Liquid Studio 2.17 Denial of Service via Malformed Input |
Pixarra |
Liquid Studio |
2026-03-23T13:48:39.597Z | 2026-03-24T15:14:04.055Z |
| cve-2019-25623 | 6.9 (v4.0) 6.2 (v3.1) | Luminance Studio 2.17 Denial of Service via Malformed Input |
Pixarra |
Luminance Studio |
2026-03-23T13:48:38.908Z | 2026-03-23T19:00:21.879Z |
| cve-2019-25622 | 6.9 (v4.0) 6.2 (v3.1) | Paint Studio 2.17 Denial of Service via Malformed Input |
Pixarra |
Paint Studio |
2026-03-23T13:48:38.205Z | 2026-03-23T18:49:57.594Z |
| cve-2019-25621 | 6.9 (v4.0) 6.2 (v3.1) | Pixel Studio 2.17 Denial of Service via Malformed Input |
Pixarra |
Pixel Studio |
2026-03-23T13:48:37.331Z | 2026-03-25T14:11:29.043Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2014-avi-331 | Multiples vulnérabilités dans les produits Mozilla | 2014-07-23T00:00:00.000000 | 2014-07-23T00:00:00.000000 |
| certfr-2014-avi-330 | Multiples vulnérabilités dans phpMyAdmin | 2014-07-21T00:00:00.000000 | 2014-07-21T00:00:00.000000 |
| certfr-2014-avi-329 | Multiples vulnérabilités dans F5 BigIP Analytics | 2014-07-21T00:00:00.000000 | 2014-07-21T00:00:00.000000 |
| certfr-2014-avi-328 | Multiples vulnérabilités dans Cisco Wireless Residential Gateway | 2014-07-17T00:00:00.000000 | 2014-07-17T00:00:00.000000 |
| certfr-2014-avi-327 | Multiples vulnérabilités dans Google Chrome | 2014-07-17T00:00:00.000000 | 2014-07-17T00:00:00.000000 |
| certfr-2014-avi-326 | Multiples vulnérabilités dans Drupal | 2014-07-17T00:00:00.000000 | 2014-07-17T00:00:00.000000 |
| certfr-2014-avi-325 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2014-07-17T00:00:00.000000 | 2014-07-17T00:00:00.000000 |
| certfr-2014-avi-324 | Multiples vulnérabilités dans Citrix XenServer | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-323 | Multiples vulnérabilités dans Oracle MySQL Product Suite | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-322 | Multiples vulnérabilités dans Oracle Linux and Virtualization | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-321 | Multiples vulnérabilités dans Oracle and Sun Systems Products Suite | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-320 | Multiples vulnérabilités dans Oracle Java SE | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-319 | Multiples vulnérabilités dans Oracle Retail | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-318 | Multiples vulnérabilités dans Oracle Communications Applications | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-317 | Multiples vulnérabilités dans Oracle Siebel | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-316 | Multiples vulnérabilités dans Oracle PeopleSoft | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-315 | Multiples vulnérabilités dans Oracle Supply Chain | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-314 | Multiples vulnérabilités dans Oracle E-Business Suite | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-313 | Multiples vulnérabilités dans Oracle Fusion Middleware | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-312 | Multiples vulnérabilités dans Oracle Database | 2014-07-16T00:00:00.000000 | 2014-07-16T00:00:00.000000 |
| certfr-2014-avi-311 | Multiples vulnérabilités dans Citrix NetScaler Application Delivery Controller et NetScaler Gateway | 2014-07-15T00:00:00.000000 | 2014-07-15T00:00:00.000000 |
| certfr-2014-avi-310 | Vulnérabilité dans Citrix XenDesktop | 2014-07-11T00:00:00.000000 | 2014-07-11T00:00:00.000000 |
| certfr-2014-avi-309 | Multiples vulnérabilités dans les produits EMC | 2014-07-10T00:00:00.000000 | 2014-07-10T00:00:00.000000 |
| certfr-2014-avi-308 | Multiples vulnérabilités dans Juniper Junos | 2014-07-10T00:00:00.000000 | 2014-07-10T00:00:00.000000 |
| certfr-2014-avi-307 | Vulnérabilité dans les produits Cisco | 2014-07-10T00:00:00.000000 | 2014-07-10T00:00:00.000000 |
| certfr-2014-avi-306 | Multiples vulnérabilités dans Adobe Flash Player | 2014-07-09T00:00:00.000000 | 2014-07-09T00:00:00.000000 |
| certfr-2014-avi-305 | Vulnérabilité dans Microsoft Service Bus | 2014-07-09T00:00:00.000000 | 2014-07-09T00:00:00.000000 |
| certfr-2014-avi-304 | Vulnérabilité dans Microsoft Windows | 2014-07-09T00:00:00.000000 | 2014-07-09T00:00:00.000000 |
| certfr-2014-avi-303 | Vulnérabilité dans Microsoft Windows | 2014-07-09T00:00:00.000000 | 2014-07-09T00:00:00.000000 |
| certfr-2014-avi-302 | Vulnérabilité dans Microsoft Windows | 2014-07-09T00:00:00.000000 | 2014-07-09T00:00:00.000000 |