Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-1870 | Thim Kit for Elementor <= 1.3.7 - Missing Authorizatio… |
thimpress |
Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor |
2026-03-14T13:24:42.173Z | 2026-04-08T17:02:42.813Z | |
| cve-2025-54920 | Apache Spark: Spark History Server Code Execution Vuln… |
Apache Software Foundation |
Apache Spark |
2026-03-14T09:01:50.486Z | 2026-03-17T12:45:29.903Z | |
| cve-2026-1948 | NEX-Forms – Ultimate Forms Plugin for WordPress <= 9.1… |
webaways |
NEX-Forms – Ultimate Forms Plugin for WordPress |
2026-03-14T03:24:14.344Z | 2026-04-08T16:41:58.456Z | |
| cve-2026-0385 | 5 (v3.1) | Microsoft Edge (Chromium-based) for Android Spoofing V… |
Microsoft |
Microsoft Edge for Android |
2026-03-13T21:55:20.781Z | 2026-04-23T15:29:33.113Z |
| cve-2026-32732 | XSS in @leanprover/unicode-input-component |
leanprover |
vscode-lean4 |
2026-03-13T21:43:22.209Z | 2026-03-16T20:22:43.428Z | |
| cve-2026-32729 | Runtipi has a TOTP two-factor authentication bypass vi… |
runtipi |
runtipi |
2026-03-13T21:41:11.699Z | 2026-03-16T20:22:43.613Z | |
| cve-2026-32724 | PX4 autopilot has a heap Use-After-Free in MavlinkShel… |
PX4 |
PX4-Autopilot |
2026-03-13T21:39:19.207Z | 2026-03-16T20:22:43.754Z | |
| cve-2026-3227 | 8.5 (v4.0) | Authenticated Command Injection on TP-Link TL-WR802N, … |
TP-Link Systems Inc. |
TL-WR802N v4 |
2026-03-13T21:38:31.666Z | 2026-03-17T03:55:35.442Z |
| cve-2026-32720 | Improper Access Control in github.com/ctfer-io/monitoring |
ctfer-io |
monitoring |
2026-03-13T21:27:52.824Z | 2026-03-16T16:42:54.043Z | |
| cve-2026-32719 | AnythingLLM has a Zip Slip Path Traversal and Code Exe… |
Mintplex-Labs |
anything-llm |
2026-03-13T21:25:31.682Z | 2026-03-16T16:44:38.247Z | |
| cve-2026-32717 | AnythingLLM access control bypass: suspended users can… |
Mintplex-Labs |
anything-llm |
2026-03-13T21:23:48.659Z | 2026-03-16T16:45:17.568Z | |
| cve-2026-32715 | AnythingLLM Manager Privilege Bypass Allows Access to … |
Mintplex-Labs |
anything-llm |
2026-03-13T21:22:00.783Z | 2026-03-16T16:46:00.551Z | |
| cve-2026-32713 | PX4 Autopilot MAVLink FTP Session Validation Logic Err… |
PX4 |
PX4-Autopilot |
2026-03-13T21:20:09.352Z | 2026-03-17T15:11:04.784Z | |
| cve-2026-32709 | PX4 Autopilot MAVLink FTP Unauthenticated Path Travers… |
PX4 |
PX4-Autopilot |
2026-03-13T21:19:33.528Z | 2026-03-17T15:12:28.877Z | |
| cve-2026-32708 | Zenoh uORB Subscriber Allows Arbitrary Stack Allocatio… |
PX4 |
PX4-Autopilot |
2026-03-13T21:18:53.025Z | 2026-03-17T15:32:42.537Z | |
| cve-2026-32707 | PX4 autopilot has a stack buffer overflow in tattu_can… |
PX4 |
PX4-Autopilot |
2026-03-13T21:18:09.118Z | 2026-03-17T15:34:02.447Z | |
| cve-2026-32706 | PX4 autopilot has a global buffer overflow in crsf_rc … |
PX4 |
PX4-Autopilot |
2026-03-13T21:17:02.719Z | 2026-03-17T15:41:50.077Z | |
| cve-2026-32705 | PX4 autopilot BST Device Name Length Can Overflow Driv… |
PX4 |
PX4-Autopilot |
2026-03-13T21:15:55.509Z | 2026-03-17T16:03:00.531Z | |
| cve-2026-32616 | Pigeon has a Host Header Injection in email verificati… |
kasuganosoras |
Pigeon |
2026-03-13T21:12:40.529Z | 2026-03-16T16:46:32.353Z | |
| cve-2026-32704 | SiYuan renderSprig: missing admin check allows any use… |
siyuan-note |
siyuan |
2026-03-13T21:10:36.613Z | 2026-03-16T16:46:59.090Z | |
| cve-2026-26133 | 7.1 (v3.1) | M365 Copilot Information Disclosure Vulnerability |
Microsoft |
Microsoft 365 Copilot for Android |
2026-03-13T21:10:13.535Z | 2026-04-14T16:36:44.731Z |
| cve-2026-32702 | Cleanuparr has Username Enumeration via Timing Attack |
Cleanuparr |
Cleanuparr |
2026-03-13T21:09:00.127Z | 2026-03-16T16:47:53.284Z | |
| cve-2026-32640 | (SimpleEval) Objects (including modules) can leak dang… |
danthedeckie |
simpleeval |
2026-03-13T21:03:53.435Z | 2026-04-21T15:29:09.693Z | |
| cve-2026-32772 | 3.4 (v3.1) | telnet in GNU inetutils through 2.7 allows server… |
GNU |
inetutils |
2026-03-13T21:01:17.782Z | 2026-03-16T17:02:16.817Z |
| cve-2026-32635 | Angular has XSS in i18n attribute bindings |
@angular |
compiler |
2026-03-13T20:58:12.554Z | 2026-03-17T03:55:33.785Z | |
| cve-2026-32630 | file-type affected by ZIP Decompression Bomb DoS via [… |
sindresorhus |
file-type |
2026-03-13T20:54:16.960Z | 2026-03-16T16:59:36.473Z | |
| cve-2026-32628 | AnythingLLM has SQL Injection in Built-in SQL Agent Pl… |
Mintplex-Labs |
anything-llm |
2026-03-13T20:50:15.991Z | 2026-03-16T15:41:05.437Z | |
| cve-2026-32627 | cpp-httplib has a Silent TLS Certificate Verification … |
yhirose |
cpp-httplib |
2026-03-13T20:48:14.442Z | 2026-03-16T15:41:05.578Z | |
| cve-2025-15060 | 9.8 (v3.0) | claude-hovercraft executeClaudeCode Command Injection … |
claude-hovercraft |
claude-hovercraft |
2026-03-13T20:43:36.780Z | 2026-03-16T15:41:05.701Z |
| cve-2026-2491 | 6.3 (v3.0) | Socomec DIRIS A-40 HTTP API Authentication Bypass Vuln… |
Socomec |
DIRIS A-40 |
2026-03-13T20:43:15.417Z | 2026-03-16T15:41:05.821Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2012-avi-200 | Vulnérabilité dans Ghostscript | 2012-04-10T00:00:00.000000 | 2012-04-10T00:00:00.000000 |
| certa-2012-avi-199 | Multiples vulnérabilités dans RealNetworks Helix | 2012-04-10T00:00:00.000000 | 2012-04-10T00:00:00.000000 |
| certa-2012-avi-198 | Vulnérabilités dans MySQL | 2012-04-10T00:00:00.000000 | 2012-04-10T00:00:00.000000 |
| certa-2012-avi-197 | Multiples vulnérabilités dans Google Chrome | 2012-04-10T00:00:00.000000 | 2012-04-10T00:00:00.000000 |
| certa-2012-avi-196 | Vulnérabilité dans Juniper IVE | 2012-04-06T00:00:00.000000 | 2012-04-06T00:00:00.000000 |
| certa-2012-avi-195 | Vulnérabilité dans F5 FirePass | 2012-04-06T00:00:00.000000 | 2012-04-06T00:00:00.000000 |
| certa-2012-avi-194 | Vulnérabilité dans HP Business Availability Center | 2012-04-05T00:00:00.000000 | 2012-04-05T00:00:00.000000 |
| certa-2012-avi-193 | Vulnérabilités dans Cisco WebEx Player | 2012-04-05T00:00:00.000000 | 2012-04-05T00:00:00.000000 |
| certa-2012-avi-192 | Vulnérabilité dans libtiff | 2012-04-05T00:00:00.000000 | 2012-04-05T00:00:00.000000 |
| certa-2012-avi-191 | Vulnérabilité dans FreeRADIUS | 2012-04-05T00:00:00.000000 | 2012-04-05T00:00:00.000000 |
| certa-2012-avi-190 | Vulnérabilités dans curl | 2012-04-05T00:00:00.000000 | 2012-04-05T00:00:00.000000 |
| certa-2012-avi-189 | Vulnérabilité dans HP-UX | 2012-04-04T00:00:00.000000 | 2012-04-04T00:00:00.000000 |
| certa-2012-avi-188 | Vulnérabilité dans Joomla! | 2012-04-04T00:00:00.000000 | 2012-04-04T00:00:00.000000 |
| certa-2012-avi-187 | Vulnérabilité dans IBM Cognos | 2012-04-03T00:00:00.000000 | 2012-04-03T00:00:00.000000 |
| certa-2012-avi-186 | Vulnérabilités dans HP Onboard Administrator | 2012-04-03T00:00:00.000000 | 2012-04-03T00:00:00.000000 |
| certa-2012-avi-185 | Vulnérabilité corrigée dans CheckPoint | 2012-04-03T00:00:00.000000 | 2012-04-03T00:00:00.000000 |
| certa-2012-avi-184 | Multiples vulnérabilités dans VMware | 2012-04-02T00:00:00.000000 | 2012-04-02T00:00:00.000000 |
| certa-2012-avi-183 | Vulnérabilité dans libpng | 2012-04-02T00:00:00.000000 | 2012-04-02T00:00:00.000000 |
| certa-2012-avi-182 | Multiples vulnérabilités dans Chrome | 2012-04-02T00:00:00.000000 | 2012-04-02T00:00:00.000000 |
| certa-2012-avi-181 | Multiples vulnérabilités dans TYPO3 | 2012-03-30T00:00:00.000000 | 2012-03-30T00:00:00.000000 |
| certa-2012-avi-180 | Vulnérabilités dans Joomla! | 2012-03-29T00:00:00.000000 | 2012-03-29T00:00:00.000000 |
| certa-2012-avi-179 | Multiples vulnérabilités dans Novell iManager | 2012-03-29T00:00:00.000000 | 2012-03-29T00:00:00.000000 |
| certa-2012-avi-178 | Vulnérabilité dans HP Performance Manager | 2012-03-29T00:00:00.000000 | 2012-03-29T00:00:00.000000 |
| certa-2012-avi-177 | Multiples vulnérabilités dans Cisco IOS Software | 2012-03-29T00:00:00.000000 | 2012-03-29T00:00:00.000000 |
| certa-2012-avi-176 | Vulnérabilités dans Adobe Flash Player | 2012-03-29T00:00:00.000000 | 2012-08-06T00:00:00.000000 |
| certa-2012-avi-175 | Multiples vulnérabilités dans Opera | 2012-03-28T00:00:00.000000 | 2012-03-28T00:00:00.000000 |
| certa-2012-avi-174 | Vulnérabilité dans eZ Publish | 2012-03-28T00:00:00.000000 | 2012-03-28T00:00:00.000000 |
| certa-2012-avi-173 | Vulnérabilité dans Apache Traffic Server | 2012-03-27T00:00:00.000000 | 2012-03-27T00:00:00.000000 |
| certa-2012-avi-172 | Vulnérabilités dans MediaWiki | 2012-03-26T00:00:00.000000 | 2012-03-26T00:00:00.000000 |
| certa-2012-avi-171 | Multiples vulnérabilités dans IBM AIX | 2012-03-26T00:00:00.000000 | 2012-03-26T00:00:00.000000 |