Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-6487 | Qihui jtbc5 CMS Code Endpoint manage.php path traversal |
Qihui |
jtbc5 CMS |
2026-04-17T12:30:39.824Z | 2026-04-17T13:18:00.383Z | |
| cve-2026-6507 | 7.5 (v3.1) | Dnsmasq: dnsmasq: denial of service due to out-of-boun… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-04-17T12:23:31.852Z | 2026-04-20T14:59:06.735Z |
| cve-2026-6486 | classroombookings User Display Name layout.php read cr… |
n/a |
classroombookings |
2026-04-17T12:15:14.036Z | 2026-04-18T02:58:17.041Z | |
| cve-2026-23777 | 4.3 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:52:13.427Z | 2026-04-17T13:14:12.461Z |
| cve-2026-28263 | 5.9 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:44:12.943Z | 2026-04-18T02:57:02.616Z |
| cve-2025-46606 | 6.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:36:54.469Z | 2026-04-18T03:55:33.318Z |
| cve-2025-46605 | 6.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:27:24.378Z | 2026-04-20T14:06:10.099Z |
| cve-2025-46641 | 6.6 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:19:52.871Z | 2026-04-18T03:55:34.970Z |
| cve-2025-46607 | 6.6 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:13:08.869Z | 2026-04-18T03:55:37.071Z |
| cve-2026-35073 | 6.7 (v3.1) | Dell PowerProtect Data Domain, versions 7.7.1.0 t… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:05:38.442Z | 2026-04-18T03:55:40.665Z |
| cve-2026-35074 | 6.7 (v3.1) | Dell PowerProtect Data Domain, versions 7.7.1.0 t… |
Dell |
PowerProtect Data Domain |
2026-04-17T10:57:20.150Z | 2026-04-18T03:55:42.483Z |
| cve-2026-35072 | 6.7 (v3.1) | Dell PowerProtect Data Domain, versions 7.7.1.0 t… |
Dell |
PowerProtect Data Domain |
2026-04-17T10:48:48.167Z | 2026-04-18T03:55:38.963Z |
| cve-2026-5131 | 6.9 (v4.0) | Server-Side Request Forgery in GREENmod |
Nomios Poland |
GREENmod |
2026-04-17T10:45:34.021Z | 2026-04-17T11:45:23.719Z |
| cve-2026-35153 | 6.7 (v3.1) | Dell PowerProtect Data Domain, versions 7.7.1.0 t… |
Dell |
PowerProtect Data Domain |
2026-04-17T10:38:18.357Z | 2026-04-18T03:55:43.881Z |
| cve-2026-6483 | Wavlink WL-WN530H4 internet.cgi snprintf os command in… |
Wavlink |
WL-WN530H4 |
2026-04-17T10:30:17.119Z | 2026-04-17T10:53:26.356Z | |
| cve-2026-23779 | 6.7 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T09:04:37.716Z | 2026-04-18T03:55:45.896Z |
| cve-2026-23776 | 7.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T08:56:41.213Z | 2026-04-20T14:06:32.671Z |
| cve-2025-15625 | 9.5 (v4.0) | Unauthenticated execution of arbitrary SQL queries in … |
Sparx Systems Pty Ltd. |
Sparx Pro Cloud Server |
2026-04-17T08:38:59.972Z | 2026-04-17T11:46:37.537Z |
| cve-2025-15624 | 9.3 (v4.0) | Plaintext Storage of a Password in Sparx Pro Cloud Server. |
Sparx Systems Pty Ltd. |
Sparx Pro Cloud Server |
2026-04-17T08:38:36.968Z | 2026-04-17T11:58:38.118Z |
| cve-2025-15623 | 9.3 (v4.0) | Sparx Pro Cloud Server reveals sensitive information t… |
Sparx Systems Pty Ltd. |
Sparx Pro Cloud Server |
2026-04-17T08:37:27.611Z | 2026-04-17T12:19:21.714Z |
| cve-2025-15622 | 6.2 (v4.0) | Sparx Enterprise Architect Client reveals plaintext OA… |
Sparx Systems Pty Ltd. |
Sparx Enterprise Architect |
2026-04-17T08:35:05.019Z | 2026-04-17T12:56:53.740Z |
| cve-2026-23778 | 7.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T08:33:21.569Z | 2026-04-18T03:55:49.150Z |
| cve-2026-6439 | VideoZen <= 1.0.1 - Authenticated (Administrator+) Sto… |
jconti |
VideoZen |
2026-04-17T08:28:26.200Z | 2026-04-20T14:59:14.759Z | |
| cve-2026-23775 | 7.6 (v3.1) | Dell PowerProtect Data Domain appliances with Dat… |
Dell |
PowerProtect Data Domain appliances |
2026-04-17T08:22:59.899Z | 2026-04-17T11:01:10.107Z |
| cve-2026-6494 | 5.3 (v3.1) | Aap-mcp-server: aap mcp server: log injection allows s… |
Red Hat |
Red Hat Ansible Automation Platform 2 |
2026-04-17T08:18:50.757Z | 2026-04-18T02:53:52.696Z |
| cve-2025-36568 | 7.8 (v3.1) | Dell PowerProtect Data Domain BoostFS for client … |
Dell |
PowerProtect Data Domain BoostFS |
2026-04-17T08:12:17.696Z | 2026-04-18T03:55:51.109Z |
| cve-2026-33392 | 7.2 (v3.1) | In JetBrains YouTrack before 2025.3.131383 high p… |
JetBrains |
YouTrack |
2026-04-17T07:46:11.710Z | 2026-04-18T03:55:54.262Z |
| cve-2026-6451 | CMS für Motorrad Werkstätten <= 1.0.0 - Cross-Site Req… |
tholstkabelbwde |
Plugin: CMS für Motorrad Werkstätten |
2026-04-17T07:45:57.242Z | 2026-04-17T14:21:59.771Z | |
| cve-2026-40002 | 5 (v3.1) | ZTE Red Magic 11 Pro (NX809J) contains a vulnerability… |
ZTE |
Red Magic 11 Pro (NX809J) |
2026-04-17T07:40:58.277Z | 2026-04-17T12:11:37.153Z |
| cve-2026-23853 | 8.4 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T07:16:26.138Z | 2026-04-18T03:55:52.619Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000014 | Calsos CSDJ fails to restrict access permissions | 2021-02-15T15:52+09:00 | 2021-02-15T15:52+09:00 |
| jvndb-2021-000013 | Wekan vulnerable to cross-site scripting | 2021-02-10T14:01+09:00 | 2021-02-10T14:01+09:00 |
| jvndb-2021-001022 | Cross-site Scripting Vulnerability in Hitachi Application Server Help | 2021-02-09T15:08+09:00 | 2021-02-09T15:08+09:00 |
| jvndb-2021-001021 | Improper access control vulnerability in JP1/IT Desktop Management 2 - Manager and JP1/NETM/Asset Information Manager | 2021-02-09T15:08+09:00 | 2021-02-09T15:08+09:00 |
| jvndb-2021-000012 | WordPress Plugin "Name Directory" vulnerable to cross-site request forgery | 2021-02-05T16:24+09:00 | 2021-02-05T16:24+09:00 |
| jvndb-2021-001017 | Trend Micro HouseCall for Home Networks (Windows Edition) may insecurely load Dynamic Link Libraries | 2021-02-04T15:42+09:00 | 2021-02-04T15:42+09:00 |
| jvndb-2021-000011 | Panasonic Video Insight VMS vulnerable to arbitrary code execution | 2021-02-04T15:39+09:00 | 2021-02-04T15:39+09:00 |
| jvndb-2021-001014 | Vulnerability in JP1/VERITAS | 2021-02-01T16:49+09:00 | 2021-02-01T16:49+09:00 |
| jvndb-2021-000007 | OS command injection vulnerability in multiple Infoscience Corporation log management tools | 2021-01-27T18:31+09:00 | 2022-07-26T15:53+09:00 |
| jvndb-2021-000009 | Android App "ELECOM File Manager" vulnerable to directory traversal | 2021-01-27T17:38+09:00 | 2021-01-27T17:38+09:00 |
| jvndb-2021-000008 | Multiple vulnerabilities in multiple ELECOM products | 2021-01-26T16:33+09:00 | 2021-01-26T16:33+09:00 |
| jvndb-2021-000010 | Multiple vulnerabilities in multiple LOGITEC products | 2021-01-26T16:26+09:00 | 2021-01-26T16:26+09:00 |
| jvndb-2021-001010 | TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection | 2021-01-25T16:21+09:00 | 2021-01-25T16:21+09:00 |
| jvndb-2021-000006 | Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2 | 2021-01-22T17:55+09:00 | 2021-02-03T12:05+09:00 |
| jvndb-2021-000005 | GROWI vulnerable to cross-site scripting | 2021-01-19T14:05+09:00 | 2021-01-19T14:05+09:00 |
| jvndb-2021-000004 | Multiple vulnerabilities in acmailer | 2021-01-14T16:22+09:00 | 2021-01-14T16:22+09:00 |
| jvndb-2021-000003 | The installer of SKYSEA Client View may insecurely load Dynamic Link Libraries | 2021-01-12T15:53+09:00 | 2021-01-12T15:53+09:00 |
| jvndb-2021-000002 | Multiple NEC Products vulnerable to authentication bypass | 2021-01-04T17:24+09:00 | 2021-01-08T12:22+09:00 |
| jvndb-2021-000001 | Multiple vulnerabilities in UNIVERGE SV9500/SV8500 series | 2021-01-04T14:37+09:00 | 2021-01-04T14:37+09:00 |
| jvndb-2020-009965 | Cleartext Transmission of Sensitive Information Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2020-12-21T17:48+09:00 | 2020-12-21T17:48+09:00 |
| jvndb-2020-009964 | Improper certificate validation vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2020-12-21T17:48+09:00 | 2020-12-21T17:48+09:00 |
| jvndb-2020-010072 | Cross-site Scripting Vulnerability in Hitachi Command Suite | 2020-12-21T14:20+09:00 | 2020-12-21T14:20+09:00 |
| jvndb-2020-000087 | Management software for NEC Storage disk array system vulnerable to improper server certificate verification | 2020-12-18T17:00+09:00 | 2021-07-21T16:21+09:00 |
| jvndb-2020-000086 | Self-Extracting files created by multiple SEIKO EPSON products may insecurely load Dynamic Link Libraries | 2020-12-18T16:47+09:00 | 2020-12-18T16:47+09:00 |
| jvndb-2020-000085 | Multiple vulnerabilities in GROWI | 2020-12-15T15:41+09:00 | 2021-08-30T16:29+09:00 |
| jvndb-2020-000083 | Multiple vulnerabilities in Aterm SA3500G | 2020-12-11T16:59+09:00 | 2020-12-11T16:59+09:00 |
| jvndb-2020-000084 | Apache Struts 2 vulnerable to remote code execution (S2-061) | 2020-12-11T15:09+09:00 | 2022-08-09T13:55+09:00 |
| jvndb-2020-000082 | FileZen vulnerable to directory traversal | 2020-12-10T15:21+09:00 | 2020-12-10T15:21+09:00 |
| jvndb-2020-009771 | ServerProtect for Linux vulnerable to heap-based buffer overflow | 2020-12-08T12:34+09:00 | 2020-12-08T12:34+09:00 |
| jvndb-2020-000081 | Apache Cordova Plugin camera vulnerable to information exposure | 2020-12-07T16:34+09:00 | 2020-12-07T16:34+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0632 | Multiples vulnérabilités dans GLPI | 2025-07-30T00:00:00.000000 | 2025-07-30T00:00:00.000000 |
| certfr-2025-avi-0631 | Vulnérabilité dans SolarWinds SWOSH | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| certfr-2025-avi-0630 | Vulnérabilité dans Palo Alto Networks GlobalProtect App | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| certfr-2025-avi-0629 | Multiples vulnérabilités dans Microsoft Edge | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0628 | Multiples vulnérabilités dans Synology BeeDrive | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0627 | Multiples vulnérabilités dans les produits IBM | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0626 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0625 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0624 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0623 | Multiples vulnérabilités dans les produits ESET | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0622 | Multiples vulnérabilités dans les produits VMware | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0621 | Multiples vulnérabilités dans les produits Tenable | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0620 | Vulnérabilité dans Apache HTTP Server | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0619 | Multiples vulnérabilités dans GitLab | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0618 | Multiples vulnérabilités dans les produits Mitel | 2025-07-24T00:00:00.000000 | 2026-01-28T00:00:00.000000 |
| certfr-2025-avi-0617 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0616 | Multiples vulnérabilités dans Sonicwall Secure Mobile Access | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0615 | Multiples vulnérabilités dans les produits Mozilla | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0614 | Multiples vulnérabilités dans les produits Mattermost | 2025-07-23T00:00:00.000000 | 2025-08-21T00:00:00.000000 |
| certfr-2025-avi-0613 | Multiples vulnérabilités dans Google Chrome | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0612 | Multiples vulnérabilités dans Sophos Firewall | 2025-07-22T00:00:00.000000 | 2025-07-22T00:00:00.000000 |
| certfr-2025-avi-0611 | Multiples vulnérabilités dans les produits Microsoft | 2025-07-21T00:00:00.000000 | 2025-07-22T00:00:00.000000 |
| certfr-2025-avi-0610 | Multiples vulnérabilités dans Microsoft Azure | 2025-07-21T00:00:00.000000 | 2025-07-21T00:00:00.000000 |
| certfr-2025-avi-0609 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2025-07-21T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0608 | Multiples vulnérabilités dans les produits IBM | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0607 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0606 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0605 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0604 | Multiples vulnérabilités dans Oracle Weblogic | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0603 | Multiples vulnérabilités dans Oracle Virtualization | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |