Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-3873 | 7.2 (v3.1) | Legacy built-in user account |
syslink software AG |
Avantra |
2026-03-13T08:14:29.350Z | 2026-03-13T16:05:47.203Z |
| cve-2026-2890 | Formidable Forms <= 6.28 - Missing Authorization to Un… |
strategy11team |
Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form Builder |
2026-03-13T07:23:39.586Z | 2026-04-08T17:31:16.361Z | |
| cve-2026-1704 | Appointment Booking Calendar <= 1.6.9.29 - Insecure Di… |
croixhaug |
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin |
2026-03-13T07:23:38.921Z | 2026-04-08T17:21:32.359Z | |
| cve-2026-3045 | Appointment Booking Calendar <= 1.6.9.29 - Missing Aut… |
croixhaug |
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin |
2026-03-13T07:23:38.549Z | 2026-04-08T16:54:49.064Z | |
| cve-2026-3891 | Pix for WooCommerce <= 1.5.0 - Unauthenticated Arbitra… |
linknacional |
Pix for WooCommerce |
2026-03-13T07:23:37.971Z | 2026-04-08T16:41:11.061Z | |
| cve-2025-15515 | 6.9 (v4.0) | The authentication mechanism for a specific featu… |
vivo |
Easyshare |
2026-03-13T06:43:50.023Z | 2026-03-13T14:12:55.422Z |
| cve-2025-57849 | 6.4 (v3.1) | Fuse: privilege escalation via excessive /etc/passwd p… |
Red Hat |
Red Hat Fuse 7 |
2026-03-13T03:08:32.594Z | 2026-03-13T14:13:19.030Z |
| cve-2025-8766 | 6.4 (v3.1) | Noobaa-core: excessive permissions of /etc could lead … |
Red Hat |
Red Hat Openshift Data Foundation 4 |
2026-03-13T02:48:19.748Z | 2026-05-10T07:17:25.677Z |
| cve-2026-22216 | 6.9 (v4.0) 6.5 (v3.1) | wpDiscuz before 7.6.47 - No Rate Limiting on Subscript… |
gVectors |
wpDiscuz |
2026-03-13T01:18:16.708Z | 2026-03-13T14:14:03.341Z |
| cve-2026-22215 | 5.3 (v4.0) 4.3 (v3.1) | wpDiscuz before 7.6.47 - Missing CSRF Protection on wp… |
gVectors |
wpDiscuz |
2026-03-13T01:18:15.358Z | 2026-03-13T14:14:23.315Z |
| cve-2026-22210 | 2.1 (v4.0) 4.4 (v3.1) | wpDiscuz before 7.6.47 - Cross-Site Scripting via Unes… |
gVectors |
wpDiscuz |
2026-03-13T01:18:14.123Z | 2026-03-13T14:14:59.813Z |
| cve-2026-22209 | 5.1 (v4.0) 5.5 (v3.1) | wpDiscuz before 7.6.47 - Cross-Site Scripting via Unes… |
gVectors |
wpDiscuz |
2026-03-13T01:18:13.141Z | 2026-03-26T18:43:47.480Z |
| cve-2026-22204 | 6.3 (v4.0) 3.7 (v3.1) | wpDiscuz before 7.6.47 - Unsanitized Cookie Email Used… |
gVectors |
wpDiscuz |
2026-03-13T01:18:11.931Z | 2026-03-13T16:07:30.506Z |
| cve-2026-22203 | 6.9 (v4.0) 4.9 (v3.1) | wpDiscuz before 7.6.47 - Options Export Leaks OAuth Se… |
gVectors |
wpDiscuz |
2026-03-13T01:18:09.696Z | 2026-03-13T16:07:55.322Z |
| cve-2026-22202 | 6.1 (v4.0) 8.1 (v3.1) | wpDiscuz before 7.6.47 - Destructive GET Action Delete… |
gVectors |
wpDiscuz |
2026-03-13T01:18:08.762Z | 2026-03-13T16:08:59.351Z |
| cve-2026-22201 | 6.9 (v4.0) 5.3 (v3.1) | wpDiscuz before 7.6.47 - IP Address Spoofing in getIP() |
gVectors |
wpDiscuz |
2026-03-13T01:18:07.476Z | 2026-03-13T16:09:19.907Z |
| cve-2026-22199 | 8.7 (v4.0) 7.5 (v3.1) | Voltronic Power SNMP Web Pro 1.1 Path Traversal via up… |
Voltronic Power |
SNMP Web Pro |
2026-03-13T01:18:06.507Z | 2026-04-23T13:02:10.267Z |
| cve-2026-22193 | 9.2 (v4.0) 8.1 (v3.1) | wpDiscuz before 7.6.47 - SQL Injection in getAllSubscr… |
gVectors |
wpDiscuz |
2026-03-13T01:18:05.494Z | 2026-03-13T16:10:03.471Z |
| cve-2026-22192 | 8.8 (v4.0) 9.9 (v3.1) | Voltronic Power SNMP Web Pro 1.1 Authentication Bypass… |
Voltronic Power |
SNMP Web Pro |
2026-03-13T01:18:03.921Z | 2026-04-22T18:34:51.911Z |
| cve-2026-22191 | 5.1 (v4.0) 5.2 (v3.1) | Beghelli Sicuro24 SicuroWeb AngularJS Template Injection |
Beghelli |
SicuroWeb (Sicuro24) |
2026-03-13T01:18:01.962Z | 2026-04-22T18:36:18.229Z |
| cve-2026-22183 | 5.3 (v4.0) 6.1 (v3.1) | wpDiscuz before 7.6.47 - Stored Cross-Site Scripting i… |
gVectors |
wpDiscuz |
2026-03-13T01:18:00.616Z | 2026-03-13T14:17:15.681Z |
| cve-2026-22182 | 8.7 (v4.0) 7.5 (v3.1) | wpDiscuz before 7.6.47 - Unauthenticated Email Notific… |
gVectors |
wpDiscuz |
2026-03-13T01:17:59.272Z | 2026-03-13T14:47:20.700Z |
| cve-2026-32612 | Statamic: privilege escalation via stored cross-site s… |
statamic |
cms |
2026-03-12T21:47:21.697Z | 2026-03-13T16:38:42.464Z | |
| cve-2026-32597 | PyJWT accepts unknown `crit` header extensions (RFC 75… |
jpadilla |
pyjwt |
2026-03-12T21:41:50.427Z | 2026-05-05T17:32:42.698Z | |
| cve-2026-32322 | soroban-sdk: `Fr` scalar field equality comparison byp… |
stellar |
rs-soroban-sdk |
2026-03-12T21:39:38.022Z | 2026-03-13T15:00:09.804Z | |
| cve-2026-32320 | Ella Core: AMF DoS via malformed PathSwitchRequest wit… |
ellanetworks |
core |
2026-03-12T21:34:50.318Z | 2026-03-14T03:46:29.938Z | |
| cve-2026-32319 | Ella Core: Unauthenticated AMF DoS via malformed Initi… |
ellanetworks |
core |
2026-03-12T21:33:32.463Z | 2026-03-14T03:45:57.547Z | |
| cve-2026-32598 | OneUptime: Password Reset Token Logged at INFO Level |
OneUptime |
oneuptime |
2026-03-12T21:31:12.776Z | 2026-03-14T03:45:17.998Z | |
| cve-2026-3910 | N/A | Inappropriate implementation in V8 in Google Chro… |
Google |
Chrome |
2026-03-12T21:30:51.861Z | 2026-03-14T03:55:26.662Z |
| cve-2026-3909 | N/A | Out of bounds write in Skia in Google Chrome prio… |
Google |
Chrome |
2026-03-12T21:30:51.265Z | 2026-03-24T21:17:08.100Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2011-avi-659 | Vulnérabilité dans iBM Lotus Mobile Connect | 2011-11-22T00:00:00.000000 | 2011-11-22T00:00:00.000000 |
| certa-2011-avi-658 | Vulnérabilité dans Ubuntu Software Center | 2011-11-22T00:00:00.000000 | 2011-11-22T00:00:00.000000 |
| certa-2011-avi-657 | Vulnérabilités dans TikiWiki | 2011-11-22T00:00:00.000000 | 2011-11-22T00:00:00.000000 |
| certa-2011-avi-656 | Multiples vulnérabilités dans RealPlayer | 2011-11-22T00:00:00.000000 | 2011-11-22T00:00:00.000000 |
| certa-2011-avi-655 | Vulnérabilité dans Dovecot | 2011-11-22T00:00:00.000000 | 2011-11-22T00:00:00.000000 |
| certa-2011-avi-654 | Vulnérabilités dans SPIP | 2011-11-21T00:00:00.000000 | 2011-11-21T00:00:00.000000 |
| certa-2011-avi-653 | Vulnérabilité dans Ruby on Rails | 2011-11-21T00:00:00.000000 | 2011-11-21T00:00:00.000000 |
| certa-2011-avi-652 | Vulnérabilités dans SAP | 2011-11-21T00:00:00.000000 | 2011-11-21T00:00:00.000000 |
| certa-2011-avi-651 | Vulnérabilités dans HP Network Node Manager | 2011-11-21T00:00:00.000000 | 2011-11-21T00:00:00.000000 |
| certa-2011-avi-650 | Vulnérabilité dans Juniper Junos | 2011-11-18T00:00:00.000000 | 2011-11-18T00:00:00.000000 |
| certa-2011-avi-649 | Multiples vulnérabilités dans SAP NetWeaver | 2011-11-18T00:00:00.000000 | 2011-11-18T00:00:00.000000 |
| certa-2011-avi-648 | Vulnérabilité dans nginx | 2011-11-18T00:00:00.000000 | 2011-11-18T00:00:00.000000 |
| certa-2011-avi-647 | VMware vCenter Update Manager | 2011-11-18T00:00:00.000000 | 2011-11-18T00:00:00.000000 |
| certa-2011-avi-646 | Vulnérabilité dans iTunes | 2011-11-18T00:00:00.000000 | 2011-11-18T00:00:00.000000 |
| certa-2011-avi-645 | Vulnérabilité dans ISC BIND | 2011-11-17T00:00:00.000000 | 2012-01-31T00:00:00.000000 |
| certa-2011-avi-644 | Vulnérabilité dans AIX | 2011-11-17T00:00:00.000000 | 2011-11-17T00:00:00.000000 |
| certa-2011-avi-643 | Vulnérabilité dans phpMyAdmin | 2011-11-17T00:00:00.000000 | 2011-11-17T00:00:00.000000 |
| certa-2011-avi-642 | Vulnérabilités dans Google Chrome | 2011-11-17T00:00:00.000000 | 2011-11-17T00:00:00.000000 |
| certa-2011-avi-641 | HP Directories Support for ProLiant Management Processors | 2011-11-15T00:00:00.000000 | 2011-11-15T00:00:00.000000 |
| certa-2011-avi-640 | Vulnérabilités dans Joomla! | 2011-11-15T00:00:00.000000 | 2011-11-15T00:00:00.000000 |
| certa-2011-avi-639 | Vulnérabilités dans HP OpenVMS | 2011-11-15T00:00:00.000000 | 2011-11-15T00:00:00.000000 |
| certa-2011-avi-638 | Vulnérabilités dans des produits Cisco TelePresence et Tandberg | 2011-11-15T00:00:00.000000 | 2011-11-15T00:00:00.000000 |
| certa-2011-avi-637 | Vulnérabilité dans les produits Apple <SPAN class="textit">Time Capsule</SPAN> et <SPAN class="textit">AirPort Base Station</SPAN> | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-636 | Vulnérabilité dans HP StorageWorks P4000 Virtual SAN Appliance | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-635 | Vulnérabilité dans ProFTPd | 2011-11-14T00:00:00.000000 | 2011-11-17T00:00:00.000000 |
| certa-2011-avi-634 | Vulnérabilités dans Apple iOS | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-633 | Vulnérabilité dans Juniper | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-632 | Vulnérabilité dans GnuTLS | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-631 | Vulnérabilités dans HP Network Node Manager i | 2011-11-14T00:00:00.000000 | 2011-11-14T00:00:00.000000 |
| certa-2011-avi-630 | Multiples vulnérabilités dans Adobe Flash Player | 2011-11-14T00:00:00.000000 | 2012-02-09T00:00:00.000000 |