Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-4307 | frdel/agent0ai agent-zero files.py get_abs_path path t… |
frdel |
agent-zero |
2026-03-17T03:32:07.609Z | 2026-03-17T13:25:49.019Z | |
| cve-2026-0708 | 8.3 (v3.1) | Libucl: libucl: denial of service via embedded null by… |
libucl |
libucl |
2026-03-17T02:28:08.429Z | 2026-03-17T13:26:47.057Z |
| cve-2026-2579 | WowStore – Store Builder & Product Blocks for WooComme… |
wpxpo |
WowStore – Store Builder & Product Blocks for WooCommerce |
2026-03-17T01:24:28.737Z | 2026-04-08T17:18:56.039Z | |
| cve-2026-4289 | Tiandy Easy7 Integrated Management Platform getRecByTe… |
Tiandy |
Easy7 Integrated Management Platform |
2026-03-17T00:03:10.717Z | 2026-03-17T13:32:52.355Z | |
| cve-2026-4288 | Tiandy Easy7 Integrated Management Platform Endpoint g… |
Tiandy |
Easy7 Integrated Management Platform |
2026-03-17T00:02:39.811Z | 2026-03-17T13:33:29.998Z | |
| cve-2026-30707 | N/A | An issue was discovered in SpeedExam Online Exami… |
n/a |
n/a |
2026-03-17T00:00:00.000Z | 2026-04-23T15:31:21.485Z |
| cve-2026-4287 | Tiandy Easy7 Integrated Management Platform Endpoint q… |
Tiandy |
Easy7 Integrated Management Platform |
2026-03-16T23:33:17.024Z | 2026-03-17T13:34:00.118Z | |
| cve-2026-4285 | taoofagi easegen-admin Pdf2MdUtil.java recognizeMarkdo… |
taoofagi |
easegen-admin |
2026-03-16T23:32:42.192Z | 2026-03-17T13:20:20.802Z | |
| cve-2026-4284 | taoofagi easegen-admin PPT File PPTUtil.java downloadF… |
taoofagi |
easegen-admin |
2026-03-16T23:02:43.594Z | 2026-03-17T13:34:53.412Z | |
| cve-2026-4177 | N/A | YAML::Syck versions through 1.36 for Perl has several … |
TODDR |
YAML::Syck |
2026-03-16T22:30:25.367Z | 2026-03-17T14:04:53.600Z |
| cve-2026-21991 | A DTrace component, dtprobed, allows arbitrary fi… |
Oracle Corporation |
Oracle Linux |
2026-03-16T21:36:44.856Z | 2026-03-17T13:35:45.790Z | |
| cve-2026-29522 | 8.7 (v4.0) | ZwickRoell Test Data Management < 3.0.8 Path Traversal LFI |
ZwickRoell GmbH & Co. KG |
Test Data Management |
2026-03-16T20:46:49.771Z | 2026-03-17T13:36:22.871Z |
| cve-2026-1629 | 4.3 (v3.1) | Permalink Preview Information Disclosure After Permiss… |
Mattermost |
Mattermost |
2026-03-16T20:24:05.415Z | 2026-03-17T13:36:52.223Z |
| cve-2026-26230 | 3.8 (v3.1) | Team Admin Privilege Escalation to Demote Members to Guest |
Mattermost |
Mattermost |
2026-03-16T20:19:51.287Z | 2026-03-17T13:37:17.914Z |
| cve-2026-2454 | 5.8 (v3.1) | DoS in Calls plugin via malformed msgpack in websocket… |
Mattermost |
Mattermost |
2026-03-16T20:10:16.644Z | 2026-03-17T13:37:43.947Z |
| cve-2026-26304 | 4.3 (v3.1) | Permission Bypass in Playbook Run Creation |
Mattermost |
Mattermost |
2026-03-16T19:53:21.650Z | 2026-03-17T13:38:03.996Z |
| cve-2026-30882 | Chamilo LMS: Reflected XSS in the session category lis… |
chamilo |
chamilo-lms |
2026-03-16T19:21:15.507Z | 2026-03-16T20:22:42.453Z | |
| cve-2026-30881 | Chamilo LMS: SQL Injection in the statistics AJAX endpoint |
chamilo |
chamilo-lms |
2026-03-16T19:19:59.782Z | 2026-03-16T20:22:42.641Z | |
| cve-2026-30876 | Chamilo LMS: User enumeration vulnerability via response |
chamilo |
chamilo-lms |
2026-03-16T19:18:41.508Z | 2026-03-16T20:22:42.799Z | |
| cve-2026-30875 | Chamilo LMS: Authenticated RCE via H5P Import |
chamilo |
chamilo-lms |
2026-03-16T19:16:37.936Z | 2026-03-16T20:22:42.979Z | |
| cve-2026-28430 | Chamilo LMS Vulnerable to Unauthenticated SQL Injectio… |
chamilo |
chamilo-lms |
2026-03-16T19:13:58.544Z | 2026-03-17T13:38:36.572Z | |
| cve-2026-29516 | 6.9 (v4.0) 4.9 (v3.1) | Buffalo TeraStation TS5400R Excessive File Permissions… |
Buffalo |
TeraStation NAS TS5400R |
2026-03-16T19:07:52.684Z | 2026-03-17T15:28:01.152Z |
| cve-2026-32267 | Craft CMS Vulnerable to Privilege Escalation/Bypass th… |
craftcms |
cms |
2026-03-16T19:04:47.781Z | 2026-03-18T15:43:25.399Z | |
| cve-2026-32264 | Craft CMS vulnerable to behavior injection RCE Element… |
craftcms |
cms |
2026-03-16T19:02:22.720Z | 2026-03-17T15:20:28.421Z | |
| cve-2026-32263 | Craft CMS vulnerable to behavior injection RCE via Ent… |
craftcms |
cms |
2026-03-16T18:57:50.342Z | 2026-03-17T15:21:16.718Z | |
| cve-2026-32262 | Craft CMS has a Path Traversal Vulnerability in Assets… |
craftcms |
cms |
2026-03-16T18:57:46.516Z | 2026-03-17T15:22:08.875Z | |
| cve-2026-32261 | RCE via SSTI for users with permissions to access the … |
craftcms |
webhooks |
2026-03-16T18:50:18.158Z | 2026-03-16T19:27:05.370Z | |
| cve-2025-69196 | FastMCP OAuth Proxy token reuse across MCP servers |
jlowin |
fastmcp |
2026-03-16T18:07:06.332Z | 2026-03-16T19:09:43.436Z | |
| cve-2026-4269 | 7.5 (v3.1) 5.8 (v4.0) | Improper S3 ownership verification in Bedrock AgentCor… |
AWS |
Bedrock AgentCore Starter Toolkit |
2026-03-16T18:03:56.124Z | 2026-03-16T18:12:08.533Z |
| cve-2026-28498 | Authlib: Fail-Open Cryptographic Verification in OIDC … |
authlib |
authlib |
2026-03-16T18:03:28.821Z | 2026-03-16T18:14:42.149Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-464 | Vulnérabilité dans IBM Power Hardware Management Console | 2012-08-23T00:00:00.000000 | 2012-08-23T00:00:00.000000 |
| certa-2012-avi-463 | Vulnérabilité dans certains produits Avaya | 2012-08-23T00:00:00.000000 | 2012-08-23T00:00:00.000000 |
| certa-2012-avi-462 | Vulnérabilité dans HP Serviceguard | 2012-08-23T00:00:00.000000 | 2012-08-23T00:00:00.000000 |
| certa-2012-avi-461 | Multiples vulnérabilités dans Lotus Domino | 2012-08-23T00:00:00.000000 | 2012-08-23T00:00:00.000000 |
| certa-2012-avi-460 | Multiples vulnérabilités dans Apache Web Server | 2012-08-23T00:00:00.000000 | 2012-08-23T00:00:00.000000 |
| certa-2012-avi-459 | Multiples vulnérabilités dans Adobe Flash Player | 2012-08-22T00:00:00.000000 | 2012-08-22T00:00:00.000000 |
| certa-2012-avi-458 | Vulnérabilités dans Xen | 2012-08-22T00:00:00.000000 | 2012-08-22T00:00:00.000000 |
| certa-2012-avi-457 | Multiples vulnérabilités dans Wireshark | 2012-08-22T00:00:00.000000 | 2012-08-22T00:00:00.000000 |
| certa-2012-avi-456 | Vulnérabilité dans Apple Remote Desktop | 2012-08-22T00:00:00.000000 | 2012-08-22T00:00:00.000000 |
| certa-2012-avi-455 | Vulnérabilités dans PostgreSQL | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-454 | Vulnérabilités dans Roundcube | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-453 | Vulnérabilité dans HP Integrity Server | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-452 | Multiples vulnérabilités dans Java pour HP-UX | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-451 | Vulnérabilité dans HP Service Manager Web Tier et HP Service Center Tier | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-450 | Vulnérabilité dans HP Service Manager Server et HP Service Center Server | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-449 | Vulnérabilité dans phpMyAdmin | 2012-08-20T00:00:00.000000 | 2012-08-20T00:00:00.000000 |
| certa-2012-avi-448 | Vulnérabilités dans Adobe Reader X et Adobe Acrobat X | 2012-08-17T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-avi-447 | Vulnérabilités dans HP Fortify | 2012-08-17T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-avi-446 | Vulnérabilités dans Adobe Shockwave Player | 2012-08-17T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-avi-445 | Vulnérabilité dans Adobe Flash Player | 2012-08-17T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-avi-444 | Vulnérabilité dans Cisco IOS XR | 2012-08-17T00:00:00.000000 | 2012-08-17T00:00:00.000000 |
| certa-2012-avi-443 | Vulnérabilité dans Microsoft Common Controls | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-442 | Vulnérabilité dans Microsoft Visio | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-441 | Multiples vulnérabilités dans Microsoft Exchange Server | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-440 | Vulnérabilité dans Microsoft Office | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-439 | Vulnérabilité dans les moteurs JScript et VBScript de Microsoft | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-438 | Vulnérabilité dans le noyau Windows | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-436 | Vulnérabilité dans Windows Remote Desktop Protocol | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-435 | Multiples vulnérabilités dans Internet Explorer | 2012-08-16T00:00:00.000000 | 2012-08-16T00:00:00.000000 |
| certa-2012-avi-437 | Multiples vulnérabilités dans les composants réseau Microsoft Windows | 2012-08-14T00:00:00.000000 | 2012-08-14T00:00:00.000000 |