Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2024-10242 | 6.1 (v3.1) | Reflected Cross-Site Scripting via Authentication Endp… |
WSO2 |
WSO2 API Manager |
2026-04-16T09:45:46.115Z | 2026-04-16T12:30:30.619Z |
| cve-2024-8010 | 3.5 (v3.1) | XML External Entity Injection via Publisher in WSO2 AP… |
WSO2 |
WSO2 API Manager |
2026-04-16T09:39:20.130Z | 2026-04-16T12:30:36.466Z |
| cve-2024-4867 | 5.4 (v3.1) | Cross-Site Scripting via Developer Portal in WSO2 API … |
WSO2 |
WSO2 API Manager |
2026-04-16T09:32:40.941Z | 2026-04-16T12:30:42.568Z |
| cve-2026-23772 | 7.3 (v3.1) | Dell Storage Manager - Replay Manager for Microso… |
Dell |
Storage Manager |
2026-04-16T08:30:56.774Z | 2026-04-17T03:55:13.852Z |
| cve-2024-2374 | 7.5 (v3.1) | XML External Entity Injection in Multiple WSO2 Product… |
WSO2 |
WSO2 API Manager |
2026-04-16T08:12:58.247Z | 2026-04-16T12:30:49.250Z |
| cve-2026-0718 | Post Grid Gutenberg Blocks for News, Magazines, Blog W… |
wpxpo |
Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX |
2026-04-16T07:39:50.799Z | 2026-04-16T12:55:16.326Z | |
| cve-2025-14868 | Career Section <= 1.6 - Cross-Site Request Forgery to … |
shahinurislam |
Career Section |
2026-04-16T07:39:49.576Z | 2026-04-16T12:52:42.034Z | |
| cve-2026-41035 | 7.4 (v3.1) | In rsync 3.0.1 through 3.4.1, receive_xattr relie… |
Samba |
rsync |
2026-04-16T06:53:05.237Z | 2026-04-22T03:03:52.565Z |
| cve-2026-3876 | Prismatic <= 3.7.3 - Unauthenticated Stored Cross-Site… |
specialk |
Prismatic |
2026-04-16T06:44:53.787Z | 2026-04-16T14:13:20.711Z | |
| cve-2026-3355 | Customer Reviews for WooCommerce <= 5.101.0 - Reflecte… |
ivole |
Customer Reviews for WooCommerce |
2026-04-16T06:44:53.276Z | 2026-04-16T14:25:11.362Z | |
| cve-2025-13364 | WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapb… |
flippercode |
WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters |
2026-04-16T06:44:52.144Z | 2026-04-16T12:04:16.719Z | |
| cve-2026-3875 | BetterDocs <= 4.3.8 - Authenticated (Contributor+) Sto… |
wpdevteam |
BetterDocs – Knowledge Base Docs & FAQ Solution for Elementor & Block Editor |
2026-04-16T06:44:51.744Z | 2026-04-16T13:41:59.186Z | |
| cve-2026-3995 | OPEN-BRAIN <= 0.5.0 - Authenticated (Administrator+) S… |
faridsaniee |
OPEN-BRAIN |
2026-04-16T06:44:51.340Z | 2026-04-16T12:04:24.073Z | |
| cve-2026-1572 | Livemesh Addons by Elementor <= 9.0 - Missing Authoriz… |
livemesh |
Livemesh Addons by Elementor |
2026-04-16T06:44:50.911Z | 2026-04-16T12:55:37.314Z | |
| cve-2026-1620 | Livemesh Addons by Elementor <= 9.0 - Authenticated (C… |
livemesh |
Livemesh Addons by Elementor |
2026-04-16T06:44:50.305Z | 2026-04-16T12:55:49.055Z | |
| cve-2026-41034 | 5 (v3.1) | ONLYOFFICE DocumentServer before 9.3.0 has an unt… |
Ascensio |
ONLYOFFICE DocumentServer |
2026-04-16T06:06:44.570Z | 2026-04-16T12:31:05.251Z |
| cve-2026-3861 | LINE client for iOS versions prior to 26.3.0 cont… |
LINE Corporation |
LINE client for iOS |
2026-04-16T05:54:05.194Z | 2026-04-16T12:31:11.953Z | |
| cve-2026-41030 | 6.2 (v3.1) | In ONLYOFFICE DesktopEditors before 9.3.0, the up… |
Ascensio |
ONLYOFFICE DesktopEditors |
2026-04-16T05:51:21.338Z | 2026-04-16T12:31:19.989Z |
| cve-2026-3581 | Basic Google Maps Placemarks <= 1.10.7 - Missing Autho… |
iandunn |
Basic Google Maps Placemarks |
2026-04-16T05:29:55.137Z | 2026-04-16T13:44:00.613Z | |
| cve-2026-3773 | Accessibility Suite by Ability, Inc <= 4.20 - Authenti… |
onlineada |
Accessibility Suite by Ability, Inc |
2026-04-16T05:29:54.754Z | 2026-04-16T13:42:08.243Z | |
| cve-2026-3614 | AcyMailing 9.11.0 - 10.8.1 - Missing Authorization to … |
acyba |
AcyMailing – An Ultimate Newsletter Plugin and Marketing Automation Solution for WordPress |
2026-04-16T05:29:54.350Z | 2026-04-16T13:42:14.595Z | |
| cve-2026-3599 | Riaxe Product Customizer <= 2.1.2 - Unauthenticated SQ… |
imprintnext |
Riaxe Product Customizer |
2026-04-16T05:29:53.971Z | 2026-04-16T12:58:22.965Z | |
| cve-2026-5050 | Payment Gateway for Redsys & WooCommerce Lite <= 7.0.0… |
jconti |
Payment Gateway for Redsys & WooCommerce Lite |
2026-04-16T05:29:53.590Z | 2026-04-16T13:42:20.364Z | |
| cve-2026-3551 | Custom New User Notification <= 1.2.0 - Authenticated … |
rafasashi |
Custom New User Notification |
2026-04-16T05:29:53.185Z | 2026-04-16T13:42:26.444Z | |
| cve-2026-3595 | Riaxe Product Customizer <= 2.1.2 - Unauthenticated Ar… |
imprintnext |
Riaxe Product Customizer |
2026-04-16T05:29:52.794Z | 2026-04-16T12:04:31.317Z | |
| cve-2026-3596 | Riaxe Product Customizer <= 2.1.2 - Missing Authorizat… |
imprintnext |
Riaxe Product Customizer |
2026-04-16T05:29:52.265Z | 2026-04-16T12:56:20.193Z | |
| cve-2026-22619 | 7.8 (v3.1) | Eaton Intelligent Power Protector (IPP) is affect… |
Eaton |
IPP software |
2026-04-16T05:26:48.952Z | 2026-04-16T12:59:37.700Z |
| cve-2026-22618 | 5.9 (v3.1) | A security misconfiguration was identified in Eat… |
Eaton |
IPP software |
2026-04-16T05:11:06.548Z | 2026-04-16T13:10:01.651Z |
| cve-2026-22617 | 5.7 (v3.1) | Eaton Intelligent Power Protector (IPP) uses an i… |
Eaton |
IPP Software |
2026-04-16T05:02:07.710Z | 2026-04-16T13:23:29.510Z |
| cve-2023-5872 | 4.3 (v3.1) | Wago: Vulnerability in Smart Designer Web-Application |
Wago |
Smart Designer |
2026-04-16T04:55:36.146Z | 2026-04-16T12:59:27.608Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2019-014138 | Improper Authentication Vulnerability in RICOH printers | 2020-02-25T15:47+09:00 | 2020-02-25T15:47+09:00 |
| jvndb-2019-014137 | Improper Access Control Vulnerability in RICOH printers | 2020-02-25T15:44+09:00 | 2020-02-25T15:44+09:00 |
| jvndb-2019-014437 | Privilege escalation vulnerability in multiple RICOH printer drivers | 2020-02-25T15:29+09:00 | 2020-02-25T15:29+09:00 |
| jvndb-2019-014031 | Cross-site Request Forgery Vulnerability in RICOH printers | 2020-02-25T14:06+09:00 | 2020-02-25T14:06+09:00 |
| jvndb-2019-014136 | Information Disclosure Vulnerability in RICOH printers | 2020-02-25T14:02+09:00 | 2020-02-25T14:02+09:00 |
| jvndb-2020-000016 | Multiple OS command injection vulnerabilities in Aterm WF1200C, Aterm WG1200CR, and Aterm WG2600HS | 2020-02-19T14:39+09:00 | 2020-02-19T14:39+09:00 |
| jvndb-2020-000015 | Multiple vulnerabilities in Aterm WG2600HS | 2020-02-19T14:34+09:00 | 2020-02-19T14:34+09:00 |
| jvndb-2020-000012 | WordPress Plugin "Easy Property Listings" vulnerable to cross-site request forgery | 2020-02-18T13:42+09:00 | 2020-02-18T13:42+09:00 |
| jvndb-2020-001591 | Multiple vulnerabilities in TCP/IP function on Mitsubishi Electric MELSEC C Controller Module and MELIPC Series MI5000 | 2020-02-18T12:10+09:00 | 2020-02-18T12:10+09:00 |
| jvndb-2020-001545 | Security information for Hitachi Disk Array Systems | 2020-02-14T15:34+09:00 | 2020-02-14T15:34+09:00 |
| jvndb-2020-000014 | ilbo App vulnerable to authentication bypass | 2020-02-14T13:43+09:00 | 2020-02-14T13:43+09:00 |
| jvndb-2020-000013 | Multiple Trend Micro products vulnerable to denial-of-service (DoS) | 2020-02-14T13:39+09:00 | 2020-03-06T13:56+09:00 |
| jvndb-2020-000011 | HtmlUnit vulenerable to arbitrary code execution | 2020-02-10T12:30+09:00 | 2020-02-10T12:30+09:00 |
| jvndb-2020-000009 | Movable Type vulnerable to cross-site scripting | 2020-02-06T12:29+09:00 | 2020-02-06T12:29+09:00 |
| jvndb-2019-012236 | Ghostscript access restriction bypass vulnerability | 2020-02-05T13:51+09:00 | 2020-02-13T16:36+09:00 |
| jvndb-2020-000008 | AWMS Mobile App vulnerable to improper server certificate verification | 2020-01-31T12:30+09:00 | 2021-04-12T13:30+09:00 |
| jvndb-2020-000007 | Android App "MyPallete" vulnerable to improper server certificate verification | 2020-01-28T15:59+09:00 | 2020-01-28T15:59+09:00 |
| jvndb-2020-000006 | Multiple Fuji Xerox mobile applications fails to verify SSL server certificates | 2020-01-21T13:55+09:00 | 2020-01-21T13:55+09:00 |
| jvndb-2020-000005 | Trend Micro Password Manager vulnerable to information disclosure | 2020-01-17T15:08+09:00 | 2020-01-17T15:08+09:00 |
| jvndb-2020-000004 | Trend Micro Password Manager vulnerable to information disclosure | 2020-01-17T15:01+09:00 | 2020-01-17T15:01+09:00 |
| jvndb-2020-000003 | Junos OS vulnerable to cross-site scripting | 2020-01-10T14:48+09:00 | 2020-01-10T14:48+09:00 |
| jvndb-2020-000002 | Junos OS vulnerable to directory traversal | 2020-01-10T14:48+09:00 | 2020-01-10T14:48+09:00 |
| jvndb-2020-000001 | F-RevoCRM vulnerable to cross-site scripting | 2020-01-08T14:22+09:00 | 2020-01-08T14:22+09:00 |
| jvndb-2019-013272 | Multiple Vulnerabilities in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor | 2019-12-24T16:02+09:00 | 2019-12-24T16:02+09:00 |
| jvndb-2019-013271 | Multiple Vulnerabilities in Hitachi Automation Director | 2019-12-24T16:02+09:00 | 2019-12-24T16:02+09:00 |
| jvndb-2019-013273 | DoS Vulnerability in Hitachi Compute Systems Manager | 2019-12-24T16:01+09:00 | 2019-12-24T16:01+09:00 |
| jvndb-2019-000078 | Multiple vulnerabilities in a-blog cms | 2019-12-20T15:43+09:00 | 2019-12-20T15:43+09:00 |
| jvndb-2019-000077 | Android App "NTV News24" fails to verify SSL server certificates | 2019-12-19T13:59+09:00 | 2019-12-19T13:59+09:00 |
| jvndb-2019-000076 | Multiple vulnerabilities in Cybozu Office | 2019-12-17T13:55+09:00 | 2019-12-17T13:55+09:00 |
| jvndb-2019-000074 | Athenz vulnerable to open redirect | 2019-12-12T15:00+09:00 | 2019-12-26T17:14+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0512 | Multiples vulnérabilités dans les produits IBM | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0511 | Multiples vulnérabilités dans les produits Google | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0510 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0509 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0508 | Multiples vulnérabilités dans les produits Splunk | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0507 | Multiples vulnérabilités dans Tenable Nessus Agent | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0506 | Vulnérabilité dans Spring Framework | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0505 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0504 | Vulnérabilité dans les produits Moxa | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0503 | Multiples vulnérabilités dans les produits Mitel | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0502 | Multiples vulnérabilités dans GitLab | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0501 | Multiples vulnérabilités dans les produits Microsoft | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0500 | Vulnérabilité dans Microsoft .Net | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0499 | Multiples vulnérabilités dans Microsoft Windows | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0498 | Multiples vulnérabilités dans Microsoft Office | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0497 | Vulnérabilité dans les processeurs Intel | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0496 | Multiples vulnérabilités dans les produits Fortinet | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0495 | Multiples vulnérabilités dans les produits Adobe | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0494 | Vulnérabilité dans Elastic Kibana | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0493 | Multiples vulnérabilités dans les produits Centreon | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0492 | Multiples vulnérabilités dans les produits Siemens | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0491 | Multiples vulnérabilités dans les produits Mozilla | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0490 | Multiples vulnérabilités dans Ivanti Workspace Control (IWC) | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0489 | Multiples vulnérabilités dans Google Chrome | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0488 | Vulnérabilité dans Stormshield Network Security | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0487 | Multiples vulnérabilités dans les produits SAP | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0486 | Multiples vulnérabilités dans les produits Qnap | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0485 | Multiples vulnérabilités dans les produits Schneider Electric | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0484 | Vulnérabilité dans les produits HPE Aruba Networking | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0483 | Vulnérabilité dans Mozilla VPN | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |