Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-25086 | 7.7 (v3.1) | Automated Logic WebCTRL Premium Server Multiple Binds … |
Automated Logic |
WebCTRL Premium Server |
2026-03-20T23:14:23.075Z | 2026-03-23T15:56:09.720Z |
| cve-2026-33425 | Discourse has inferable private group membership or ex… |
discourse |
discourse |
2026-03-20T23:12:30.489Z | 2026-03-23T16:48:49.363Z | |
| cve-2026-33424 | PM access granted through invites after access revocation |
discourse |
discourse |
2026-03-20T23:08:11.929Z | 2026-03-25T13:43:16.900Z | |
| cve-2026-33228 | flatted: Prototype Pollution via parse() |
WebReflection |
flatted |
2026-03-20T23:06:48.485Z | 2026-03-24T17:57:22.866Z | |
| cve-2026-33423 | Discourse staff can modify any user's group notificati… |
discourse |
discourse |
2026-03-20T23:06:21.734Z | 2026-03-23T21:41:22.620Z | |
| cve-2026-31926 | 6.5 (v3.1) 6.9 (v4.0) | IGL-Technologies eParking.fi Insufficiently Protected … |
IGL-Technologies |
eParking.fi |
2026-03-20T23:06:15.110Z | 2026-03-23T15:56:15.899Z |
| cve-2026-33422 | Discourse exposes ip_address of flagged user |
discourse |
discourse |
2026-03-20T23:04:45.477Z | 2026-03-24T02:10:31.793Z | |
| cve-2026-33226 | Budibase Unrestricted Server-Side Request Forgery (SSR… |
Budibase |
budibase |
2026-03-20T23:04:24.424Z | 2026-03-23T16:48:16.745Z | |
| cve-2026-33221 | Nhost Storage Affected by MIME Type Spoofing via Trust… |
nhost |
nhost |
2026-03-20T23:00:18.342Z | 2026-03-25T13:44:43.741Z | |
| cve-2026-32663 | 7.3 (v3.1) 6.9 (v4.0) | IGL-Technologies eParking.fi Insufficient Session Expiration |
IGL-Technologies |
eParking.fi |
2026-03-20T22:59:42.911Z | 2026-03-23T15:56:21.511Z |
| cve-2026-33411 | Discourse's solved topic stream has potential stored X… |
discourse |
discourse |
2026-03-20T22:58:14.546Z | 2026-03-24T18:03:07.240Z | |
| cve-2026-33210 | Ruby JSON has a format string injection vulnerability |
ruby |
json |
2026-03-20T22:57:08.758Z | 2026-03-23T21:41:29.624Z | |
| cve-2026-31903 | 7.5 (v3.1) 8.7 (v4.0) | IGL-Technologies eParking.fi Improper Restriction of E… |
IGL-Technologies |
eParking.fi |
2026-03-20T22:56:27.047Z | 2026-03-23T15:56:29.649Z |
| cve-2026-33291 | Discourse user can create Zendesk tickets even when it… |
discourse |
discourse |
2026-03-20T22:56:06.423Z | 2026-03-24T02:08:54.073Z | |
| cve-2026-29796 | 9.4 (v3.1) 9.3 (v4.0) | IGL-Technologies eParking.fi Missing Authentication fo… |
IGL-Technologies |
eParking.fi |
2026-03-20T22:53:27.741Z | 2026-03-23T14:29:03.578Z |
| cve-2026-22163 | N/A | GPU DDK - Unsafe writing of MMU PT entries on systems … |
Imagination Technologies |
Graphics DDK |
2026-03-20T22:52:43.831Z | 2026-03-23T14:59:27.041Z |
| cve-2026-33251 | Discourse has a Hidden Solved topics permission bypass |
discourse |
discourse |
2026-03-20T22:52:37.051Z | 2026-03-24T18:05:41.967Z | |
| cve-2026-33243 | barebox: FIT Signature Verification Bypass Vulnerability |
barebox |
barebox |
2026-03-20T22:51:15.938Z | 2026-03-26T20:08:12.009Z | |
| cve-2026-21732 | N/A | GPU DDK - libusc OOB write at ConvertSwitchToArrayLook… |
Imagination Technologies |
Graphics DDK |
2026-03-20T22:48:42.695Z | 2026-03-23T15:03:50.302Z |
| cve-2026-28204 | 6.5 (v3.1) 6.9 (v4.0) | CTEK Chargeportal Insufficiently Protected Credentials |
CTEK |
Chargeportal |
2026-03-20T22:47:58.676Z | 2026-03-23T14:18:21.698Z |
| cve-2026-33236 | NLTK has a Downloader Path Traversal Vulnerability (AF… |
nltk |
nltk |
2026-03-20T22:47:10.308Z | 2026-03-23T16:46:42.554Z | |
| cve-2026-27649 | 7.3 (v3.1) 6.9 (v4.0) | CTEK Chargeportal Insufficient Session Expiration |
CTEK |
Chargeportal |
2026-03-20T22:46:40.106Z | 2026-03-23T14:17:03.447Z |
| cve-2026-33231 | NLTK has unauthenticated remote shutdown in nltk.app.w… |
nltk |
nltk |
2026-03-20T22:45:40.784Z | 2026-03-25T13:43:45.724Z | |
| cve-2026-31904 | 7.5 (v3.1) 8.7 (v4.0) | CTEK Chargeportal Improper Restriction of Excessive Au… |
CTEK |
Chargeportal |
2026-03-20T22:45:17.571Z | 2026-03-23T14:16:28.724Z |
| cve-2026-33230 | nltk Vulnerable to Cross-site Scripting |
nltk |
nltk |
2026-03-20T22:43:39.621Z | 2026-03-24T02:07:12.001Z | |
| cve-2026-25192 | 9.4 (v3.1) 9.3 (v4.0) | CTEK Chargeportal Missing Authentication for Critical … |
CTEK |
Chargeportal |
2026-03-20T22:42:14.820Z | 2026-03-23T14:15:57.579Z |
| cve-2026-32810 | Halloy has insecure file permissions on credential files |
squidowl |
halloy |
2026-03-20T22:40:49.237Z | 2026-03-23T21:41:38.612Z | |
| cve-2026-33209 | Avo has a XSS vulnerability on `return_to` param |
avo-hq |
avo |
2026-03-20T22:39:19.422Z | 2026-03-24T18:07:25.007Z | |
| cve-2026-32733 | Halloy has a file transfer path traveral vulnerability |
squidowl |
halloy |
2026-03-20T22:37:39.365Z | 2026-03-24T02:06:30.856Z | |
| cve-2026-33204 | SimpleJWT has an Unauthenticated Denial of Service via… |
kelvinmo |
simplejwt |
2026-03-20T22:37:13.411Z | 2026-03-24T15:34:35.165Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-598 | Vulnérabilité dans Citrix XenDesktop | 2013-10-23T00:00:00.000000 | 2013-10-23T00:00:00.000000 |
| certa-2013-avi-597 | Multiples vulnérabilités dans le noyau Linux de Ubuntu | 2013-10-22T00:00:00.000000 | 2013-10-22T00:00:00.000000 |
| certa-2013-avi-596 | Multiples vulnérabilités dans Apache Struts | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-595 | Multiples vulnérabilités dans Apple OS X et Mac OS X | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-594 | Multiples vulnérabilités dans VMware vSphere | 2013-10-21T00:00:00.000000 | 2013-10-21T00:00:00.000000 |
| certa-2013-avi-593 | Multiples vulnérabilités dans Oracle Solaris | 2013-10-18T00:00:00.000000 | 2013-10-18T00:00:00.000000 |
| certa-2013-avi-592 | Multiples vulnérabilités dans Puppet | 2013-10-17T00:00:00.000000 | 2013-10-17T00:00:00.000000 |
| certa-2013-avi-591 | Vulnérabilité dans Ruby on Rails | 2013-10-17T00:00:00.000000 | 2013-10-17T00:00:00.000000 |
| certa-2013-avi-590 | Multiples vulnérabilités dans Oracle Solaris | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-589 | Multiples vulnérabilités dans Oracle MySQL | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-588 | Multiples vulnérabilités dans Oracle Virtualization | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-587 | Multiples vulnérabilités dans Oracle et Sun Systems Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-586 | Multiples vulnérabilités dans Oracle Java SE | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-585 | Multiples vulnérabilités dans Oracle Primavera Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-584 | Vulnérabilité dans Oracle FLEXCUBE | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-583 | Vulnérabilité dans Oracle Retail Invoice Matching | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-582 | Multiples vulnérabilités dans Oracle Health Sciences InForm | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-581 | Multiples vulnérabilités dans Oracle iLearning | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-580 | Multiples vulnérabilités dans Oracle Siebel | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-579 | Multiples vulnérabilités dans Oracle PeopleSoft Enterprise | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-578 | Multiples vulnérabilités dans Oracle Supply Chain Products Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-577 | Vulnérabilité dans Oracle E-Business Suite | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-576 | Multiples vulnérabilités dans Oracle Enterprise Manager Grid Control | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-575 | Multiples vulnérabilités dans Oracle Fusion Middleware | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-574 | Multiples vulnérabilités dans Oracle Database | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-573 | Multiples vulnérabilités dans Google Chrome | 2013-10-16T00:00:00.000000 | 2013-10-16T00:00:00.000000 |
| certa-2013-avi-572 | Vulnérabilité dans Symantec Management Platform Agent | 2013-10-11T00:00:00.000000 | 2013-10-11T00:00:00.000000 |
| certa-2013-avi-571 | Multiples vulnérabilités dans Juniper Junos OS | 2013-10-11T00:00:00.000000 | 2013-10-11T00:00:00.000000 |
| certa-2013-avi-570 | Vulnérabilité dans Xen qemu | 2013-10-11T00:00:00.000000 | 2013-10-11T00:00:00.000000 |
| certa-2013-avi-569 | Multiples vulnérabilités dans Cisco ASA Software | 2013-10-10T00:00:00.000000 | 2013-10-10T00:00:00.000000 |