Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-32898 | 5.3 (v4.0) 5.4 (v3.1) | OpenClaw < 2026.2.23 - ACP Permission Auto-Approval By… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:33.718Z | 2026-03-23T17:26:26.267Z |
| cve-2026-32897 | 6.3 (v4.0) 3.7 (v3.1) | OpenClaw < 2026.2.22 - Authentication Token Reuse in O… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:32.975Z | 2026-03-23T16:43:14.696Z |
| cve-2026-32896 | 6.3 (v4.0) 4.8 (v3.1) | OpenClaw < 2026.2.21 - Unauthenticated Webhook Access … |
OpenClaw |
OpenClaw |
2026-03-21T00:42:32.222Z | 2026-03-23T16:55:52.767Z |
| cve-2026-32895 | 5.3 (v4.0) 5.4 (v3.1) | OpenClaw < 2026.2.26 - Sender Authorization Bypass in … |
OpenClaw |
OpenClaw |
2026-03-21T00:42:31.520Z | 2026-03-23T18:46:18.897Z |
| cve-2026-32067 | 2 (v4.0) 3.7 (v3.1) | OpenClaw < 2026.2.26 - Cross-Account Authorization Byp… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:30.798Z | 2026-03-24T15:19:35.680Z |
| cve-2026-32065 | 5.7 (v4.0) 4.8 (v3.1) | OpenClaw < 2026.2.25 - Approval Identity Mismatch in s… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:30.045Z | 2026-03-21T03:38:13.744Z |
| cve-2026-32064 | 8.5 (v4.0) 7.7 (v3.1) | OpenClaw < 2026.2.21 - Missing VNC Authentication in S… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:29.289Z | 2026-03-23T17:28:06.276Z |
| cve-2026-32058 | 2 (v4.0) 2.6 (v3.1) | OpenClaw < 2026.2.26 - Approval Context-Binding Weakne… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:28.560Z | 2026-03-23T16:43:49.661Z |
| cve-2026-32057 | 6 (v4.0) 7.1 (v3.1) | OpenClaw < 2026.2.25 - Authentication Bypass via Contr… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:27.888Z | 2026-03-25T14:26:19.534Z |
| cve-2026-32056 | 7.7 (v4.0) 7.5 (v3.1) | OpenClaw < 2026.2.22 - Remote Code Execution via Shell… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:27.152Z | 2026-03-23T18:48:41.026Z |
| cve-2026-32055 | 7.2 (v4.0) 7.6 (v3.1) | OpenClaw < 2026.2.26 - Workspace Path Boundary Bypass … |
OpenClaw |
OpenClaw |
2026-03-21T00:42:26.429Z | 2026-03-24T15:21:07.820Z |
| cve-2026-32054 | 5.9 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.25 - Symlink Traversal in Browser Tr… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:25.722Z | 2026-03-21T03:40:26.421Z |
| cve-2026-32053 | 6.9 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.23 - Twilio Webhook Replay Bypass vi… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:24.987Z | 2026-03-23T17:29:39.806Z |
| cve-2026-32052 | 5.8 (v4.0) 6.4 (v3.1) | OpenClaw < 2026.2.24 - Hidden Command Execution via Sh… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:24.234Z | 2026-03-23T16:44:28.150Z |
| cve-2026-32051 | 8.7 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.3.1 - Authorization Bypass in Agent Ru… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:23.467Z | 2026-03-23T16:56:06.400Z |
| cve-2026-32050 | 6.3 (v4.0) 3.7 (v3.1) | OpenClaw < 2026.2.25 - Unauthorized Reaction Status Ev… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:22.656Z | 2026-03-23T18:53:38.964Z |
| cve-2026-32049 | 8.7 (v4.0) 7.5 (v3.1) | OpenClaw < 2026.2.22 - Denial of Service via Inbound M… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:21.905Z | 2026-03-24T15:22:25.521Z |
| cve-2026-32048 | 7.7 (v4.0) 7.5 (v3.1) | OpenClaw < 2026.3.1 - Sandbox Escape via Cross-Agent s… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:21.169Z | 2026-03-24T13:43:24.405Z |
| cve-2026-32046 | 4.8 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.2.21 - OS-level Sandbox Bypass via --n… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:20.458Z | 2026-03-23T17:44:28.975Z |
| cve-2026-32045 | 8.2 (v4.0) 5.9 (v3.1) | OpenClaw < 2026.2.21 - Authentication Bypass in HTTP G… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:19.737Z | 2026-03-23T16:42:38.318Z |
| cve-2026-32044 | 6.7 (v4.0) 5.5 (v3.1) | OpenClaw < 2026.3.2 - Tar Archive Safety Bypass in Ski… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:18.960Z | 2026-03-23T16:56:13.757Z |
| cve-2026-32043 | 5.9 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.25 - Time-of-Check-Time-of-Use via M… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:18.279Z | 2026-03-23T18:56:35.785Z |
| cve-2026-32042 | 8.7 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.2.25 - Privilege Escalation via Unpair… |
OpenClaw |
OpenClaw |
2026-03-21T00:42:17.500Z | 2026-03-24T15:23:43.265Z |
| cve-2026-33238 | AVideo has a Path Traversal in listFiles.json.php that… |
WWBN |
AVideo |
2026-03-20T23:31:35.134Z | 2026-05-06T14:40:15.866Z | |
| cve-2026-33237 | AVideo has SSRF in Scheduler Plugin via callbackURL Mi… |
WWBN |
AVideo |
2026-03-20T23:30:04.209Z | 2026-04-13T17:40:38.441Z | |
| cve-2026-2430 | Autoptimize <= 3.1.14 - Authenticated (Contributor+) S… |
optimizingmatters |
Autoptimize |
2026-03-20T23:25:14.410Z | 2026-04-08T17:28:09.590Z | |
| cve-2026-3474 | EmailKit <= 1.6.3 - Authenticated (Administrator+) Pat… |
roxnor |
EmailKit – Email Customizer for WooCommerce & WP |
2026-03-20T23:25:14.024Z | 2026-04-08T17:26:56.219Z | |
| cve-2026-3350 | Image Alt Text Manager <= 1.8.2 - Authenticated (Autho… |
wpsaad |
Image Alt Text Manager – Bulk & Dynamic Alt Tags For image SEO Optimization + AI |
2026-03-20T23:25:13.589Z | 2026-04-08T17:23:40.483Z | |
| cve-2026-3567 | RepairBuddy <= 4.1132 - Missing Authorization to Authe… |
sweetdaisy86 |
RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress |
2026-03-20T23:25:13.175Z | 2026-04-08T17:18:28.234Z | |
| cve-2026-3516 | Contact List <= 3.0.18 - Authenticated (Contributor+) … |
anssilaitila |
Contact List – Online Staff Directory & Address Book |
2026-03-20T23:25:12.779Z | 2026-04-08T17:13:48.185Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-658 | Multiples vulnérabilités dans Samba | 2013-12-09T00:00:00.000000 | 2013-12-09T00:00:00.000000 |
| certa-2013-avi-657 | Multiples vulnérabilités dans VMware ESX | 2013-12-09T00:00:00.000000 | 2013-12-09T00:00:00.000000 |
| certa-2013-avi-656 | Multiples vulnérabilités dans le noyau Linux de Ubuntu | 2013-12-09T00:00:00.000000 | 2013-12-09T00:00:00.000000 |
| certa-2013-avi-655 | Vulnérabilité dans le noyau Linux | 2013-12-05T00:00:00.000000 | 2013-12-05T00:00:00.000000 |
| certa-2013-avi-654 | Multiples vulnérabilités dans Google Chrome | 2013-12-05T00:00:00.000000 | 2013-12-05T00:00:00.000000 |
| certa-2013-avi-653 | Vulnérabilité dans Xen | 2013-12-04T00:00:00.000000 | 2013-12-04T00:00:00.000000 |
| certa-2013-avi-652 | Vulnérabilité dans VMWare | 2013-12-04T00:00:00.000000 | 2013-12-04T00:00:00.000000 |
| certa-2013-avi-651 | Vulnérabilité dans Apache Struts | 2013-12-03T00:00:00.000000 | 2013-12-03T00:00:00.000000 |
| certa-2013-avi-650 | Multiples vulnérabilités dans Fujitsu Interstage HTTP Server | 2013-11-27T00:00:00.000000 | 2013-11-27T00:00:00.000000 |
| certa-2013-avi-649 | Multiples vulnérabilités dans les systèmes SCADA ABB | 2013-11-27T00:00:00.000000 | 2013-11-27T00:00:00.000000 |
| certa-2013-avi-648 | Multiples vulnérabilités dans Moodle | 2013-11-26T00:00:00.000000 | 2013-11-26T00:00:00.000000 |
| certa-2013-avi-647 | Vulnérabilité dans Ruby | 2013-11-22T00:00:00.000000 | 2013-11-22T00:00:00.000000 |
| certa-2013-avi-646 | Vulnérabilité dans Xen | 2013-11-22T00:00:00.000000 | 2013-11-22T00:00:00.000000 |
| certa-2013-avi-645 | Multiples vulnérabilités dans Drupal | 2013-11-21T00:00:00.000000 | 2013-11-21T00:00:00.000000 |
| certa-2013-avi-644 | Vulnérabilité dans nginx | 2013-11-20T00:00:00.000000 | 2013-11-20T00:00:00.000000 |
| certa-2013-avi-643 | Vulnérabilité dans Opera | 2013-11-19T00:00:00.000000 | 2013-11-19T00:00:00.000000 |
| certa-2013-avi-642 | Multiples vulnérabilités dans les produits Mozilla | 2013-11-19T00:00:00.000000 | 2013-11-21T00:00:00.000000 |
| certa-2013-avi-641 | Vulnérabilité dans VMware | 2013-11-15T00:00:00.000000 | 2013-11-15T00:00:00.000000 |
| certa-2013-avi-640 | Vulnérabilité dans Google Chrome | 2013-11-15T00:00:00.000000 | 2013-11-15T00:00:00.000000 |
| certa-2013-avi-639 | Vulnérabilité dans Apple iOS | 2013-11-15T00:00:00.000000 | 2013-11-15T00:00:00.000000 |
| certa-2013-avi-638 | Vulnérabilité dans IBM WebSphere Virtual Enterprise | 2013-11-14T00:00:00.000000 | 2013-11-14T00:00:00.000000 |
| certa-2013-avi-637 | Multiples vulnérabilités dans Cisco Prime Data Center Network Manager | 2013-11-14T00:00:00.000000 | 2013-11-14T00:00:00.000000 |
| certa-2013-avi-636 | Multiples vulnérabilités dans Adobe Flash Player | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-635 | Multiples vulnérabilités dans Google Chrome | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-634 | Vulnérabilité liée aux signatures numériques de Microsoft Windows | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-633 | Vulnérabilité dans Microsoft Outlook | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-632 | Vulnérabilité dans le pilote de gestion des sockets de Microsoft Windows | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-631 | Vulnérabilité dans Microsoft Hyper-V | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-630 | Multiples vulnérabilités dans Microsoft Office | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |
| certa-2013-avi-629 | Vulnérabilité dans Microsoft ActiveX | 2013-11-13T00:00:00.000000 | 2013-11-13T00:00:00.000000 |