Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-22217 | 5.8 (v4.0) 6.1 (v3.1) | OpenClaw 2026.2.22 < 2026.2.23 - Arbitrary Binary Exec… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:25.500Z | 2026-03-25T14:33:28.280Z |
| cve-2026-22181 | 6.1 (v4.0) 7.6 (v3.1) | OpenClaw < 2026.3.2 - DNS Pinning Bypass via Environme… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:24.746Z | 2026-03-25T14:33:11.716Z |
| cve-2026-22180 | 4.8 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.2 - Path Confinement Bypass in Brows… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:23.955Z | 2026-03-18T16:04:25.645Z |
| cve-2026-22179 | 7.5 (v4.0) 7.2 (v3.1) | OpenClaw < 2026.2.22 - Allowlist Bypass via Command Su… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:23.197Z | 2026-03-25T14:32:59.376Z |
| cve-2026-22178 | 6.9 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.19 - ReDoS and Regex Injection via U… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:22.432Z | 2026-03-18T16:07:18.120Z |
| cve-2026-22177 | 6.9 (v4.0) 6.1 (v3.1) | OpenClaw < 2026.2.21 - Environment Variable Injection … |
OpenClaw |
OpenClaw |
2026-03-18T01:34:21.592Z | 2026-04-08T16:05:27.893Z |
| cve-2026-22175 | 7.1 (v4.0) 7.1 (v3.1) | OpenClaw < 2026.2.23 - Exec Approval Bypass via Unreco… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:20.825Z | 2026-03-18T19:50:55.623Z |
| cve-2026-22174 | 5.9 (v4.0) 6.8 (v3.1) | OpenClaw < 2026.2.22 - Gateway Token Disclosure via Ch… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:20.043Z | 2026-03-25T14:32:43.121Z |
| cve-2026-22171 | 8.8 (v4.0) 8.2 (v3.1) | OpenClaw < 2026.2.19 - Path Traversal in Feishu Media … |
OpenClaw |
OpenClaw |
2026-03-18T01:34:19.103Z | 2026-03-18T14:04:27.283Z |
| cve-2026-22170 | 6.3 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.22 BlueBubbles - Access Control Bypa… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:18.300Z | 2026-03-31T15:21:31.298Z |
| cve-2026-22169 | 7.1 (v4.0) 6.7 (v3.1) | OpenClaw < 2026.2.22 - Allowlist Bypass via sort Confi… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:17.508Z | 2026-03-25T14:32:16.170Z |
| cve-2026-22168 | 7.1 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.2.21 - Command Injection via cmd.exe /… |
OpenClaw |
OpenClaw |
2026-03-18T01:34:16.700Z | 2026-03-18T14:06:48.407Z |
| cve-2026-4268 | WP Go Maps (formerly WP Google Maps) <= 10.0.05 - Miss… |
wpgmaps |
WP Go Maps (formerly WP Google Maps) |
2026-03-18T01:24:48.418Z | 2026-04-08T17:26:06.798Z | |
| cve-2026-28499 | LeafKit's HTML escaping may be skipped for Collection … |
vapor |
leaf-kit |
2026-03-18T01:19:36.122Z | 2026-03-18T14:08:06.611Z | |
| cve-2026-28500 | ONNX Untrusted Model Repository Warnings Suppressed by… |
onnx |
onnx |
2026-03-18T01:15:07.644Z | 2026-03-18T14:08:50.003Z | |
| cve-2026-2603 | 8.1 (v3.1) | Keycloak: keycloak: unauthorized authentication via di… |
Red Hat |
Red Hat build of Keycloak 26.2 |
2026-03-18T01:14:53.540Z | 2026-03-18T14:10:10.355Z |
| cve-2026-2092 | 7.7 (v3.1) | Keycloak-services: keycloak: unauthorized access via i… |
Red Hat |
Red Hat build of Keycloak 26.2 |
2026-03-18T01:14:48.364Z | 2026-03-18T14:11:08.708Z |
| cve-2026-4356 | itsourcecode University Management System add_result.p… |
itsourcecode |
University Management System |
2026-03-18T01:02:10.804Z | 2026-03-18T14:11:41.455Z | |
| cve-2026-28674 | xiaoheiFS Vulnerable to RCE via Arbitrary Payment Plug… |
danvei233 |
xiaoheiFS |
2026-03-18T00:48:39.652Z | 2026-03-18T14:34:00.955Z | |
| cve-2026-28673 | xiaoheiFS Vulnerable to RCE via Unrestricted Plugin In… |
danvei233 |
xiaoheiFS |
2026-03-18T00:41:35.055Z | 2026-03-18T14:34:38.632Z | |
| cve-2026-29057 | Next.js: HTTP request smuggling in rewrites |
vercel |
next.js |
2026-03-18T00:30:27.738Z | 2026-03-18T14:47:25.258Z | |
| cve-2026-27980 | Next.js: Unbounded next/image disk cache growth can ex… |
vercel |
next.js |
2026-03-18T00:23:34.862Z | 2026-03-18T19:50:12.877Z | |
| cve-2026-27979 | Next.js: Unbounded postponed resume buffering can lead… |
vercel |
next.js |
2026-03-18T00:13:29.748Z | 2026-03-18T19:51:36.190Z | |
| cve-2026-30704 | N/A | The WiFi Extender WDR201A (HW V2.1, FW LFMZX28040… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-19T14:35:45.872Z |
| cve-2026-30703 | N/A | A command injection vulnerability exists in the w… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-23T15:56:39.241Z |
| cve-2026-30702 | N/A | The WiFi Extender WDR201A (HW V2.1, FW LFMZX28040… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-23T15:56:47.034Z |
| cve-2026-30701 | N/A | The web interface of the WiFi Extender WDR201A (H… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-23T15:56:53.466Z |
| cve-2026-30695 | N/A | A Cross-Site Scripting (XSS) vulnerability exists… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-19T14:14:34.931Z |
| cve-2026-30345 | N/A | A zip slip vulnerability in the Admin import func… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-04-29T14:33:47.686Z |
| cve-2026-30048 | N/A | A stored cross-site scripting (XSS) vulnerability… |
n/a |
n/a |
2026-03-18T00:00:00.000Z | 2026-03-19T14:31:35.234Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-614 | Vulnérabilité dans Cisco Prime Data Center Network Manager | 2012-11-02T00:00:00.000000 | 2012-11-02T00:00:00.000000 |
| certa-2012-avi-613 | Vulnérabilité dans EMC Avamar | 2012-10-31T00:00:00.000000 | 2012-10-31T00:00:00.000000 |
| certa-2012-avi-612 | Vulnérabilités dans phpMyAdmin | 2012-10-30T00:00:00.000000 | 2012-10-30T00:00:00.000000 |
| certa-2012-avi-611 | Vulnérabilité dans Tiki wiki CMS groupware | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-610 | Multiples vulnérabilités dans Request Tracker | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-609 | Multiples vulnérabilités dans les produits Mozilla | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-608 | Vulnérabilité dans Exim DKIM | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-607 | Multiples vulnérabilités dans IBM WebSphere MQ | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-606 | Multiples vulnérabilités dans IBM InfoSphere | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-605 | Vulnérabilité dans Xen | 2012-10-29T00:00:00.000000 | 2012-10-29T00:00:00.000000 |
| certa-2012-avi-604 | Vulnérabilité dans des produits HP, 3COM et H3C | 2012-10-26T00:00:00.000000 | 2012-10-26T00:00:00.000000 |
| certa-2012-avi-603 | Vulnérabilité dans ISC BIND | 2012-10-25T00:00:00.000000 | 2012-10-25T00:00:00.000000 |
| certa-2012-avi-602 | Vulnérabilité dans AIX BIND | 2012-10-25T00:00:00.000000 | 2012-10-25T00:00:00.000000 |
| certa-2012-avi-601 | Multiples vulnérabilités dans HP-UX | 2012-10-25T00:00:00.000000 | 2012-10-25T00:00:00.000000 |
| certa-2012-avi-600 | Vulnérabilité dans F5 FirePass | 2012-10-24T00:00:00.000000 | 2012-10-24T00:00:00.000000 |
| certa-2012-avi-599 | Multiples vulnérabilités dans Adobe Shockwave Player | 2012-10-24T00:00:00.000000 | 2012-10-24T00:00:00.000000 |
| certa-2012-avi-598 | Vulnérabilité dans IBM DataQuant et IBM DB2 | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-597 | Vulnérabilité dans IBM AIX | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-596 | Vulnérabilité dans McAfee Firewall Enterprise | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-595 | Multiples vulnérabilités dans les composants Java de HP-UX | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-594 | Multiples vulnérabilités dans IBM XIV Storage System | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-593 | Vulnérabilité dans IBM WebSphere Message Broker | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-592 | Multiples vulnérabilités dans IBM DB2 QMF | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-591 | Vulnérabilités dans CA ARCserve Backup | 2012-10-22T00:00:00.000000 | 2012-10-22T00:00:00.000000 |
| certa-2012-avi-590 | Multiples vulnérabilités dans Drupal | 2012-10-19T00:00:00.000000 | 2012-10-19T00:00:00.000000 |
| certa-2012-avi-589 | Multiples vulnérabilités dans Java pour Apple OS X | 2012-10-18T00:00:00.000000 | 2012-10-18T00:00:00.000000 |
| certa-2012-avi-588 | Vulnérabilité dans AWStats | 2012-10-18T00:00:00.000000 | 2012-10-18T00:00:00.000000 |
| certa-2012-avi-587 | Vulnérabilités dans Oracle Virtualization | 2012-10-17T00:00:00.000000 | 2012-10-17T00:00:00.000000 |
| certa-2012-avi-586 | Multiples vulnérabilités dans Oracle Sun Products Suite | 2012-10-17T00:00:00.000000 | 2012-10-17T00:00:00.000000 |
| certa-2012-avi-585 | Multiples vulnérabilités dans Oracle Financial Services Software | 2012-10-17T00:00:00.000000 | 2012-10-17T00:00:00.000000 |