Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-6441 Canto <= 3.1.1 - Missing Authorization to Authenticate… flightbycanto
 Canto
 2026-04-17T06:44:50.145Z 2026-04-17T16:39:26.532Z
cve-2026-4659 Unlimited Elements For Elementor <= 2.0.6 - Authentica… unitecms
 Unlimited Elements For Elementor
 2026-04-17T06:44:49.739Z 2026-04-17T12:14:39.811Z
cve-2026-6443 Essentialplugin Plugins (Various Versions) - Injected … essentialplugin
 Accordion and Accordion Slider
 2026-04-17T06:44:49.128Z 2026-04-21T19:53:07.705Z
cve-2026-6421 Mobatek MobaXterm Home Edition msimg32.dll uncontrolle… Mobatek
 MobaXterm Home Edition
 2026-04-17T05:45:11.921Z 2026-04-17T18:37:21.676Z
cve-2026-5797 Quiz and Survey Master (QSM) <= 11.1.0 - Unauthenticat… expresstech
 Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker
 2026-04-17T05:29:26.679Z 2026-04-17T11:14:55.597Z
cve-2026-6482 8.5 (v4.0) Local Privilege Escalation via OpenSSL configuration f… Rapid7
 Insight Agent
 2026-04-17T05:19:20.485Z 2026-04-18T03:55:55.477Z
cve-2026-35496 2.7 (v3.0) 5.1 (v4.0) A path traversal vulnerability exists in CubeCart… CubeCart Limited
 CubeCart
 2026-04-17T04:33:49.813Z 2026-04-17T12:18:33.735Z
cve-2026-34018 6.3 (v3.0) 5.1 (v4.0) An SQL injection vulnerability exists in CubeCart… CubeCart Limited
 CubeCart
 2026-04-17T04:33:35.768Z 2026-04-17T12:20:12.217Z
cve-2026-21719 7.2 (v3.0) 8.6 (v4.0) An OS command injection vulnerability exists in C… CubeCart Limited
 CubeCart
 2026-04-17T04:33:17.708Z 2026-04-17T12:21:48.770Z
cve-2026-5502 Tutor LMS <= 3.9.8 - Authenticated (Subscriber+) Arbit… themeum
 Tutor LMS – eLearning and online course solution
 2026-04-17T03:36:45.463Z 2026-04-17T14:28:01.492Z
cve-2026-5427 Kubio AI Page Builder <= 2.7.2 - Missing Authorization… extendthemes
 Kubio AI Page Builder
 2026-04-17T03:36:44.993Z 2026-04-17T18:48:57.774Z
cve-2026-5234 LatePoint <= 5.3.2 - Insecure Direct Object Reference … latepoint
 LatePoint – Calendar Booking Plugin for Appointments and Events
 2026-04-17T03:36:44.618Z 2026-04-17T18:38:40.183Z
cve-2026-6080 Tutor LMS <= 3.9.8 - Authenticated (Admin+) SQL Inject… themeum
 Tutor LMS – eLearning and online course solution
 2026-04-17T03:36:44.234Z 2026-04-20T14:59:23.108Z
cve-2026-3330 Form Maker by 10Web <= 1.15.40 - Authenticated (Admini… 10web
 Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder
 2026-04-17T03:36:43.818Z 2026-04-17T11:15:39.808Z
cve-2026-4853 JetBackup <= 3.1.19.8 - Authenticated (Administrator+)… backupguard
 JetBackup – Backup, Restore & Migrate
 2026-04-17T03:36:43.041Z 2026-04-17T12:23:01.736Z
cve-2026-5807 7.5 (v3.1) Vault Vulnerable to Denial-of-Service via Unauthentica… HashiCorp
 Vault
 2026-04-17T03:22:13.816Z 2026-04-17T17:57:55.504Z
cve-2026-4525 7.5 (v3.1) Vault Token Leaked to Backends via Authorization: Bear… HashiCorp
 Vault
 2026-04-17T03:00:47.561Z 2026-04-17T17:22:41.255Z
cve-2026-5052 5.3 (v3.1) Vault Vulnerable to Server-Side Request Forgery in ACM… HashiCorp
 Vault
 2026-04-17T02:55:25.080Z 2026-04-17T17:57:55.377Z
cve-2026-3605 8.1 (v3.1) Vault KVv2 Metadata and Secret Deletion Policy Bypass … HashiCorp
 Vault
 2026-04-17T02:44:42.032Z 2026-04-17T17:57:55.431Z
cve-2026-4666 wpForo Forum <= 2.4.16 - Missing Authorization to Auth… tomdever
 wpForo Forum
 2026-04-17T02:25:04.892Z 2026-04-20T14:59:31.196Z
cve-2026-3488 WP Statistics <= 14.16.4 - Missing Authorization to Au… veronalabs
 WP Statistics – Simple, privacy-friendly Google Analytics alternative
 2026-04-17T01:24:37.967Z 2026-04-17T12:25:12.232Z
cve-2026-5231 WP Statistics <= 14.16.4 - Unauthenticated Stored Cros… veronalabs
 WP Statistics – Simple, privacy-friendly Google Analytics alternative
 2026-04-17T01:24:37.573Z 2026-04-17T14:30:43.119Z
cve-2026-4817 MasterStudy LMS <= 3.7.25 - Authenticated (Subscriber+… stylemix
 MasterStudy LMS WordPress Plugin – for Online Courses and Education
 2026-04-17T01:24:37.193Z 2026-04-17T18:39:48.201Z
cve-2026-5162 Royal Addons for Elementor <= 1.7.1056 - Authenticated… wproyal
 Royal Addons for Elementor – Addons and Templates Kit for Elementor
 2026-04-17T01:24:36.629Z 2026-04-17T18:48:24.671Z
cve-2026-37749 N/A A SQL injection vulnerability in CodeAstro Simple… n/a
 n/a
 2026-04-17T00:00:00.000Z 2026-04-17T15:23:39.696Z
cve-2026-31317 N/A Craftql v1.3.7 and before is vulnerable to Server… n/a
 n/a
 2026-04-17T00:00:00.000Z 2026-04-20T14:59:43.878Z
cve-2025-70795 N/A STProcessMonitor 11.11.4.0, part of the Safetica … n/a
 n/a
 2026-04-17T00:00:00.000Z 2026-04-17T14:58:56.485Z
cve-2026-40265 Note Mark has Broken Access Control on Asset Download enchant97
 note-mark
 2026-04-16T23:56:02.961Z 2026-04-17T18:40:45.157Z
cve-2026-40263 Note Mark: Username Enumeration via Login Endpoint Tim… enchant97
 note-mark
 2026-04-16T23:53:50.195Z 2026-04-17T12:23:42.042Z
cve-2026-40262 Note Mark has Stored XSS via Unrestricted Asset Upload enchant97
 note-mark
 2026-04-16T23:51:38.679Z 2026-04-18T02:51:02.474Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2020-000080 Multiple vulnerabilities in EC-CUBE 2020-12-03T18:15+09:00 2020-12-03T18:15+09:00
jvndb-2020-000079 desknet's NEO vulnerable to cross-site scripting 2020-12-03T17:54+09:00 2023-03-08T17:02+09:00
jvndb-2020-000077 Multiple vulnerabilities in GROWI 2020-11-25T14:54+09:00 2020-11-25T14:54+09:00
jvndb-2020-000076 NETGEAR GS108Ev3 vulnerable to cross-site request forgery 2020-11-24T14:32+09:00 2020-11-24T14:32+09:00
jvndb-2020-000075 The installers of multiple SEIKO EPSON products may insecurely load Dynamic Link Libraries 2020-11-20T15:39+09:00 2020-11-20T15:39+09:00
jvndb-2020-009590 Trend Micro Security 2020 (Consumer) is vulnerable to arbitrary file deletion 2020-11-19T18:03+09:00 2020-11-19T18:03+09:00
jvndb-2020-000074 Hibernate ORM vulnerable to SQL injection 2020-11-19T14:33+09:00 2020-11-19T14:33+09:00
jvndb-2020-009584 Multiple vulnerabilities in KonaWiki3 2020-11-18T18:13+09:00 2020-11-18T18:13+09:00
jvndb-2020-000073 Movable Type Premium vulnerable to cross-site scripting 2020-11-18T18:01+09:00 2020-11-18T18:01+09:00
jvndb-2020-000072 MELSEC iQ-R Series CPU Modules vulnerable to uncontrolled resource consumption 2020-11-12T14:58+09:00 2020-11-13T12:06+09:00
jvndb-2020-009467 Multiple vulnerabilities in XOOPS module "XooNIps" 2020-11-09T15:10+09:00 2020-11-09T15:10+09:00
jvndb-2020-000070 Studyplus App uses a hard-coded API key for an external service 2020-11-05T18:43+09:00 2023-03-08T17:02+09:00
jvndb-2020-000071 Cybozu Garoon vulnerable to improper input validation 2020-11-05T11:43+09:00 2021-08-02T11:08+09:00
jvndb-2020-009141 Local File Inclusion vulnerability in OneThird CMS 2020-10-21T15:21+09:00 2020-10-21T15:21+09:00
jvndb-2020-000069 Multiple vulnerabilities in WordPress Plugin "Simple Download Monitor" 2020-10-21T14:50+09:00 2020-10-21T14:50+09:00
jvndb-2020-000068 WordPress Plugin "Live Chat - Live support" vulnerable to cross-site request forgery 2020-10-14T15:32+09:00 2020-10-14T15:32+09:00
jvndb-2020-008931 Trend Micro Antivirus for Mac vulnerable to a privilege escalation 2020-10-07T15:10+09:00 2020-10-07T15:10+09:00
jvndb-2020-000067 OS command injection vulnerability in multiple ELECOM LAN routers 2020-10-05T15:33+09:00 2020-10-05T15:33+09:00
jvndb-2020-000066 InfoCage SiteShell installs their files with improper access permissions 2020-09-30T15:37+09:00 2020-09-30T15:37+09:00
jvndb-2020-008821 CMONOS.JP vulnerable to cross-site scripting 2020-09-28T18:10+09:00 2020-09-28T18:10+09:00
jvndb-2020-008762 ServerProtect for Linux vulnerable to OS command injection 2020-09-28T15:52+09:00 2020-09-28T15:52+09:00
jvndb-2020-000064 Multiple vulnerabilities in Active Update function implemented in multiple Trend Micro products 2020-09-23T15:26+09:00 2020-09-23T15:26+09:00
jvndb-2020-000065 Multiple access restriction bypass vulnerabilities in UNIQLO App 2020-09-17T14:41+09:00 2020-09-17T14:41+09:00
jvndb-2020-000063 Multiple vulnerabilities in Buffalo AirStation WHR-G54S 2020-09-11T15:57+09:00 2020-09-11T15:57+09:00
jvndb-2020-000062 Yodobashi App for Android fails to restrict access permissions 2020-09-07T14:24+09:00 2020-09-07T14:24+09:00
jvndb-2020-000059 CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to XML external entity injection (XXE) 2020-08-31T15:10+09:00 2020-08-31T15:10+09:00
jvndb-2020-000060 "Shadankun Server Security Type" vulnerable to denial-of-service (DoS) 2020-08-31T14:41+09:00 2020-08-31T14:41+09:00
jvndb-2020-000056 Multiple NETGEAR switching hubs vulnerable to cross-site request forgery 2020-08-28T15:33+09:00 2020-08-28T15:33+09:00
jvndb-2020-000058 Multiple vulnerabilities in XOOPS module "XooNIps" 2020-08-27T15:37+09:00 2020-08-27T15:37+09:00
jvndb-2020-000057 NITORI App fails to restrict access permissions 2020-08-26T15:34+09:00 2020-08-26T15:34+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0602 Multiples vulnérabilités dans Oracle PeopleSoft 2025-07-18T00:00:00.000000 2025-07-18T00:00:00.000000
certfr-2025-avi-0601 Multiples vulnérabilités dans Oracle MySQL 2025-07-18T00:00:00.000000 2025-07-18T00:00:00.000000
certfr-2025-avi-0600 Multiples vulnérabilités dans Oracle Java SE 2025-07-18T00:00:00.000000 2025-07-18T00:00:00.000000
certfr-2025-avi-0599 Multiples vulnérabilités dans Oracle Database Server 2025-07-18T00:00:00.000000 2025-07-18T00:00:00.000000
certfr-2025-avi-0598 Multiples vulnérabilités dans Sophos Intercept X 2025-07-18T00:00:00.000000 2025-07-22T00:00:00.000000
certfr-2025-avi-0597 Multiples vulnérabilités dans Grafana 2025-07-18T00:00:00.000000 2025-07-18T00:00:00.000000
certfr-2025-avi-0596 Multiples vulnérabilités dans ISC BIND 2025-07-17T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-avi-0595 Vulnérabilité dans Cisco Unified Intelligence Center 2025-07-17T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-avi-0594 Multiples vulnérabilités dans Microsoft Edge 2025-07-17T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-avi-0593 Multiples vulnérabilités dans les produits Atlassian 2025-07-16T00:00:00.000000 2025-07-16T00:00:00.000000
certfr-2025-avi-0592 Multiples vulnérabilités dans les produits VMware 2025-07-16T00:00:00.000000 2025-07-16T00:00:00.000000
certfr-2025-avi-0591 Multiples vulnérabilités dans Google Chrome 2025-07-16T00:00:00.000000 2025-07-16T00:00:00.000000
certfr-2025-avi-0590 Multiples vulnérabilités dans les produits IBM 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0589 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0588 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0587 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0586 Multiples vulnérabilités dans Apache HTTP Server 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0585 Multiples vulnérabilités dans VMware Tanzu 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0584 Multiples vulnérabilités dans Apache Tomcat 2025-07-11T00:00:00.000000 2025-07-11T00:00:00.000000
certfr-2025-avi-0583 Multiples vulnérabilités dans les produits Juniper Networks 2025-07-10T00:00:00.000000 2025-07-10T00:00:00.000000
certfr-2025-avi-0582 Multiples vulnérabilités dans les produits Palo Alto Networks 2025-07-10T00:00:00.000000 2025-07-10T00:00:00.000000
certfr-2025-avi-0581 Multiples vulnérabilités dans GitLab 2025-07-10T00:00:00.000000 2025-07-10T00:00:00.000000
certfr-2025-avi-0580 Multiples vulnérabilités dans VMware Tanzu 2025-07-10T00:00:00.000000 2025-07-10T00:00:00.000000
certfr-2025-avi-0579 Multiples vulnérabilités dans les produits Microsoft 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
certfr-2025-avi-0578 Multiples vulnérabilités dans Microsoft Azure 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
certfr-2025-avi-0577 Multiples vulnérabilités dans Microsoft Windows 2025-07-09T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-avi-0576 Multiples vulnérabilités dans Microsoft Office 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
certfr-2025-avi-0575 Multiples vulnérabilités dans les produits Fortinet 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
certfr-2025-avi-0574 Multiples vulnérabilités dans les produits Ivanti 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
certfr-2025-avi-0573 Multiples vulnérabilités dans Node.js 2025-07-09T00:00:00.000000 2025-07-09T00:00:00.000000
ID Description Published Updated