Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-32011 | 8.7 (v4.0) 7.5 (v3.1) | OpenClaw < 2026.3.2 - Slow-Request Denial of Service v… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:50.512Z | 2026-03-20T15:04:20.869Z |
| cve-2026-32010 | 5.8 (v4.0) 6.3 (v3.1) | OpenClaw < 2026.2.22 - Allowlist Bypass via sort --com… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:49.608Z | 2026-03-20T18:22:07.024Z |
| cve-2026-32009 | 7 (v4.0) 5.7 (v3.1) | OpenClaw < 2026.2.24 - Binary Hijacking via Static Def… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:48.726Z | 2026-03-21T03:21:35.129Z |
| cve-2026-32008 | 7.1 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.21 - Arbitrary Local File Read via B… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:47.977Z | 2026-03-20T17:04:09.305Z |
| cve-2026-32007 | 7.6 (v4.0) 6.8 (v3.1) | OpenClaw < 2026.2.23 - Sandbox Bypass in apply_patch T… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:47.160Z | 2026-03-20T20:13:16.999Z |
| cve-2026-32006 | 2.3 (v4.0) 3.1 (v3.1) | OpenClaw < 2026.2.26 - Authorization Bypass via DM Pai… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:46.414Z | 2026-03-20T18:10:14.403Z |
| cve-2026-32005 | 7.6 (v4.0) 6.8 (v3.1) | OpenClaw < 2026.2.25 - Authorization Bypass in Interac… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:45.641Z | 2026-03-20T15:13:05.699Z |
| cve-2026-32004 | 8.3 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.2 - Authentication Bypass via Encode… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:44.627Z | 2026-03-20T18:26:52.969Z |
| cve-2026-32003 | 7.5 (v4.0) 6.6 (v3.1) | OpenClaw < 2026.2.22 - Remote Code Execution via SHELL… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:43.856Z | 2026-03-21T03:23:11.364Z |
| cve-2026-32002 | 6 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.2.23 - Sandbox Boundary Bypass via Ima… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:43.140Z | 2026-03-20T17:04:54.047Z |
| cve-2026-32001 | 5.3 (v4.0) 5.4 (v3.1) | OpenClaw < 2026.2.22 - Node Role Device-Identity Bypas… |
OpenClaw |
OpenClaw |
2026-03-19T22:06:42.305Z | 2026-03-20T20:09:55.684Z |
| cve-2026-33394 | Discourse leaks PM post edits to moderators |
discourse |
discourse |
2026-03-19T22:06:06.572Z | 2026-03-20T18:36:24.612Z | |
| cve-2026-33393 | Discourse fixes loose hostname matching in spam host a… |
discourse |
discourse |
2026-03-19T22:04:26.484Z | 2026-03-20T20:15:16.294Z | |
| cve-2026-33355 | Discourse filters whisper posts from private-posts feed |
discourse |
discourse |
2026-03-19T22:01:42.387Z | 2026-03-20T18:10:20.981Z | |
| cve-2026-30873 | OpenWrt Project jsonpath: Memory leak when processing … |
openwrt |
openwrt |
2026-03-19T22:01:03.867Z | 2026-03-21T03:26:08.591Z | |
| cve-2026-33410 | Discourse hardens chat DM channel creation and expansion |
discourse |
discourse |
2026-03-19T21:57:27.176Z | 2026-03-20T16:11:14.726Z | |
| cve-2026-30872 | OpenWrt Project has a Stack-based Buffer Overflow vuln… |
openwrt |
openwrt |
2026-03-19T21:56:23.472Z | 2026-03-25T03:56:13.660Z | |
| cve-2026-32099 | Discourse prevents hidden profile data leak via user onebox |
discourse |
discourse |
2026-03-19T21:52:24.531Z | 2026-03-20T18:38:21.818Z | |
| cve-2026-4342 | 8.8 (v3.1) | ingress-nginx comment-based nginx configuration injection |
Kubernetes |
ingress-nginx |
2026-03-19T21:50:17.878Z | 2026-03-21T04:01:49.391Z |
| cve-2026-30871 | OpenWrt Project has Stack-based Buffer Overflow in DNS… |
openwrt |
openwrt |
2026-03-19T21:49:50.876Z | 2026-03-25T03:56:12.627Z | |
| cve-2026-29072 | Discourse missing permission check for policy creation… |
discourse |
discourse |
2026-03-19T21:49:33.865Z | 2026-03-20T16:27:46.085Z | |
| cve-2026-28282 | Discourse vulnerable to group membership addition perm… |
discourse |
discourse |
2026-03-19T21:45:13.648Z | 2026-03-20T18:10:26.922Z | |
| cve-2026-27936 | Discourse discloses restricted post-action counts to n… |
discourse |
discourse |
2026-03-19T21:42:36.677Z | 2026-03-24T01:45:26.962Z | |
| cve-2026-32815 | SiYuan: Cross-Origin WebSocket Hijacking via Authentic… |
siyuan-note |
siyuan |
2026-03-19T21:39:31.365Z | 2026-03-20T20:22:46.364Z | |
| cve-2026-32754 | FreeScout: Stored XSS via Unescaped Email Template Ren… |
freescout-help-desk |
freescout |
2026-03-19T21:35:17.373Z | 2026-03-20T18:52:18.644Z | |
| cve-2026-27935 | Discourse leaks private topic metadata to non-authoriz… |
discourse |
discourse |
2026-03-19T21:33:38.459Z | 2026-03-20T16:28:35.052Z | |
| cve-2026-32753 | FreeScout: Stored XSS through SVG file upload with fil… |
freescout-help-desk |
freescout |
2026-03-19T21:26:09.802Z | 2026-03-20T20:16:50.749Z | |
| cve-2026-32752 | FreeScout: Broken Access Control in ThreadPolicy — Any… |
freescout-help-desk |
freescout |
2026-03-19T21:21:54.613Z | 2026-03-20T18:10:32.968Z | |
| cve-2026-32194 | 9.8 (v3.1) | Microsoft Bing Images Remote Code Execution Vulnerability |
Microsoft |
Microsoft Bing Images |
2026-03-19T21:21:22.762Z | 2026-04-14T16:36:33.188Z |
| cve-2026-4159 | 1.2 (v4.0) | wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read |
wolfSSL |
wolfSSL |
2026-03-19T21:17:46.357Z | 2026-03-20T16:29:05.925Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2013-avi-178 | Vulnérabilité dans Microsoft Silverlight | 2013-03-13T00:00:00.000000 | 2013-03-13T00:00:00.000000 |
| certa-2013-avi-177 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2013-03-13T00:00:00.000000 | 2013-03-13T00:00:00.000000 |
| certa-2013-avi-176 | Multiples vulnérabilités dans Adobe Flash Player et AIR | 2013-03-12T00:00:00.000000 | 2013-03-12T00:00:00.000000 |
| certa-2013-avi-175 | Vulnérabilité dans HP LaserJet Pro | 2013-03-08T00:00:00.000000 | 2013-03-08T00:00:00.000000 |
| certa-2013-avi-174 | Vulnérabilité dans HP ServiceCenter | 2013-03-08T00:00:00.000000 | 2013-03-08T00:00:00.000000 |
| certa-2013-avi-173 | Multiples vulnérabilités dans Wireshark | 2013-03-08T00:00:00.000000 | 2013-03-08T00:00:00.000000 |
| certa-2013-avi-172 | Vulnérabilité dans Google Chrome | 2013-03-08T00:00:00.000000 | 2013-03-08T00:00:00.000000 |
| certa-2013-avi-171 | Vulnérabilité dans les produits Mozilla | 2013-03-08T00:00:00.000000 | 2013-03-08T00:00:00.000000 |
| certa-2013-avi-170 | Vulnérabilité dans le noyau Red Hat | 2013-03-07T00:00:00.000000 | 2013-03-07T00:00:00.000000 |
| certa-2013-avi-169 | Vulnérabilité dans Citrix Access Gateway Standard Edition | 2013-03-07T00:00:00.000000 | 2013-03-07T00:00:00.000000 |
| certa-2013-avi-168 | Multiples vulnérabilités dans TYPO3 | 2013-03-07T00:00:00.000000 | 2013-03-07T00:00:00.000000 |
| certa-2013-avi-167 | Multiples vulnérabilités dans MediaWiki | 2013-03-06T00:00:00.000000 | 2013-03-06T00:00:00.000000 |
| certa-2013-avi-166 | Multiples vulnérabilités dans Xerox FreeFlow Print Server | 2013-03-06T00:00:00.000000 | 2013-03-06T00:00:00.000000 |
| certa-2013-avi-165 | Vulnérabilité dans IBM WebSphere Commerce Enterprise | 2013-03-06T00:00:00.000000 | 2013-03-06T00:00:00.000000 |
| certa-2013-avi-164 | Multiples vulnérabilités dans les produits Apple | 2013-03-05T00:00:00.000000 | 2013-03-05T00:00:00.000000 |
| certa-2013-avi-163 | Multiples vulnérabilités dans Oracle Java | 2013-03-05T00:00:00.000000 | 2013-03-05T00:00:00.000000 |
| certa-2013-avi-162 | Multiples vulnérabilités dans Google Chrome | 2013-03-05T00:00:00.000000 | 2013-03-05T00:00:00.000000 |
| certa-2013-avi-161 | Vulnérabilité dans EMC RSA Authentication Agent | 2013-03-04T00:00:00.000000 | 2013-03-04T00:00:00.000000 |
| certa-2013-avi-160 | Vulnérabilité dans Ubuntu | 2013-03-01T00:00:00.000000 | 2013-03-01T00:00:00.000000 |
| certa-2013-avi-159 | Multiples vulnérabilités dans IBM DB2 | 2013-03-01T00:00:00.000000 | 2013-03-01T00:00:00.000000 |
| certa-2013-avi-158 | Multiples vulnérabilités dans Citrix XenServer | 2013-02-28T00:00:00.000000 | 2013-02-28T00:00:00.000000 |
| certa-2013-avi-157 | Multiples vulnérabilités dans les produits Cisco | 2013-02-28T00:00:00.000000 | 2013-02-28T00:00:00.000000 |
| certa-2013-avi-156 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2013-02-28T00:00:00.000000 | 2013-02-28T00:00:00.000000 |
| certa-2013-avi-155 | Multiples vulnérabilités dans le noyau Linux | 2013-02-28T00:00:00.000000 | 2013-02-28T00:00:00.000000 |
| certa-2013-avi-154 | Vulnérabilité dans Cisco Cloud Portal | 2013-02-27T00:00:00.000000 | 2013-02-27T00:00:00.000000 |
| certa-2013-avi-153 | Multiples vulnérabilités dans Apache HTTP Server | 2013-02-27T00:00:00.000000 | 2013-02-27T00:00:00.000000 |
| certa-2013-avi-152 | Multiples vulnérabilités dans Adobe Flash Player | 2013-02-27T00:00:00.000000 | 2013-02-27T00:00:00.000000 |
| certa-2013-avi-151 | Multiples vulnérabilités dans Hitachi Cosminexus | 2013-02-26T00:00:00.000000 | 2013-02-26T00:00:00.000000 |
| certa-2013-avi-150 | Vulnérabilité dans Apache Maven | 2013-02-26T00:00:00.000000 | 2013-02-26T00:00:00.000000 |
| certa-2013-avi-149 | Vulnérabilité dans Drupal | 2013-02-25T00:00:00.000000 | 2013-02-25T00:00:00.000000 |