Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-32138 | NEXULEAN API Key Leak |
Stalin-143 |
website |
2026-03-12T18:32:15.489Z | 2026-03-12T20:46:51.699Z | |
| cve-2026-3497 | 2.7 (v4.0) | Vulnerability in the OpenSSH GSSAPI delta include… |
Ubuntu |
openssh |
2026-03-12T18:27:44.917Z | 2026-04-16T18:24:30.556Z |
| cve-2026-32232 | ZeptoClaw: Path boundary checks bypass via symlink, TO… |
qhkm |
zeptoclaw |
2026-03-12T18:24:35.225Z | 2026-03-12T20:46:56.857Z | |
| cve-2026-32231 | ZeptoClaw: Generic webhook channel trusts caller-suppl… |
qhkm |
zeptoclaw |
2026-03-12T18:22:48.872Z | 2026-03-12T20:47:02.636Z | |
| cve-2026-32142 | shopware/commercial: `/api/_info/config` route exposes… |
shopware |
commercial |
2026-03-12T18:17:35.939Z | 2026-03-13T16:18:35.366Z | |
| cve-2025-13913 | 5.4 (v4.0) 6.3 (v3.1) | Inductive Automation Ignition Software Deserialization… |
Inductive Automation |
Ignition Software |
2026-03-12T18:17:22.839Z | 2026-03-17T15:29:47.962Z |
| cve-2026-32230 | Uptime Kuma is Missing Authorization Checks on Ping Ba… |
louislam |
uptime-kuma |
2026-03-12T18:13:58.543Z | 2026-03-13T16:19:12.948Z | |
| cve-2026-32100 | swag/platform-security: `/api/_info/config` route expo… |
swag |
platform-security |
2026-03-12T18:10:58.556Z | 2026-03-13T16:19:37.859Z | |
| cve-2026-32141 | flatted: Unbounded recursion DoS in parse() revive phase |
WebReflection |
flatted |
2026-03-12T18:08:09.634Z | 2026-03-13T16:20:19.201Z | |
| cve-2026-32140 | Dataease: Redshift JDBC RCE Bypass |
dataease |
dataease |
2026-03-12T18:04:49.569Z | 2026-03-13T16:21:15.825Z | |
| cve-2025-13462 | 2 (v4.0) | tarfile: Skip DIRTYPE normalization during GNU LONGNAM… |
Python Software Foundation |
CPython |
2026-03-12T17:59:26.620Z | 2026-05-01T15:09:17.843Z |
| cve-2026-32139 | Dataease: Unfiltered active SVG content leads to Stored XSS |
dataease |
dataease |
2026-03-12T17:57:32.247Z | 2026-03-13T16:22:49.694Z | |
| cve-2026-32137 | DataEase SQL Injection Vulnerability |
dataease |
dataease |
2026-03-12T17:53:00.318Z | 2026-03-13T16:23:17.480Z | |
| cve-2026-32129 | Poseidon V1 variable-length input collision via implic… |
stellar |
rs-soroban-poseidon |
2026-03-12T17:47:10.717Z | 2026-03-13T16:23:54.655Z | |
| cve-2026-32116 | Magic Wormhole: "wormhole receive" allows arbitrary lo… |
magic-wormhole |
magic-wormhole |
2026-03-12T17:40:49.791Z | 2026-03-13T16:24:27.152Z | |
| cve-2026-31890 | Inspektor Gadget: Tracing Denial of Service via Event … |
inspektor-gadget |
inspektor-gadget |
2026-03-12T17:35:02.129Z | 2026-03-13T16:25:05.936Z | |
| cve-2026-28256 | 6.9 (v4.0) | Use of Hard-coded Credentials vulnerability in Trane T… |
Trane |
Tracer SC |
2026-03-12T17:34:56.595Z | 2026-03-12T18:00:32.808Z |
| cve-2026-28255 | 8.2 (v4.0) | Use of Hard-coded Credentials vulnerability in Trane T… |
Trane |
Tracer SC |
2026-03-12T17:33:29.171Z | 2026-03-12T18:02:28.832Z |
| cve-2026-28254 | 6.9 (v4.0) | Missing Authorization vulnerability in Trane Tracer SC… |
Trane |
Tracer SC |
2026-03-12T17:29:56.723Z | 2026-03-12T19:21:04.760Z |
| cve-2026-28253 | 8.7 (v4.0) | Memory Allocation with Excessive Size Value vulnerabil… |
Trane |
Tracer SC |
2026-03-12T17:27:03.567Z | 2026-03-13T16:25:47.523Z |
| cve-2026-3841 | 8.5 (v4.0) | Command Injection Vulnerability in Telnet CLI on TP-Li… |
TP-Link Systems Inc. |
TL-MR6400 v5.3 |
2026-03-12T17:25:58.864Z | 2026-03-13T14:35:24.733Z |
| cve-2026-28252 | 9.2 (v4.0) | Use of a Broken or Risky Cryptographic Algorithm vulne… |
Trane |
Tracer SC |
2026-03-12T17:24:04.256Z | 2026-03-13T16:26:13.627Z |
| cve-2026-31873 | Unhead has a Bypass of URI Scheme Sanitization in make… |
unjs |
unhead |
2026-03-12T17:20:35.660Z | 2026-03-12T17:46:46.723Z | |
| cve-2026-31860 | Unhead has a XSS bypass in `useHeadSafe` via attribute… |
unjs |
unhead |
2026-03-12T17:18:20.452Z | 2026-03-13T16:26:51.670Z | |
| cve-2026-31841 | Raw exposure of database statements in Hyperterse MCP … |
hyperterse |
hyperterse |
2026-03-12T17:03:32.818Z | 2026-03-12T17:50:15.398Z | |
| cve-2026-21887 | OpenCTI has a Semi-Blind SSRF via Unvalidated External… |
OpenCTI-Platform |
opencti |
2026-03-12T17:00:43.944Z | 2026-03-12T17:52:55.089Z | |
| cve-2026-29066 | Arbitrary File Read via Disabled Vite Filesystem Restr… |
@tinacms |
cli |
2026-03-12T16:57:41.393Z | 2026-03-13T16:27:22.344Z | |
| cve-2026-28791 | Path Traversal in Media Upload Handle in Tina |
tinacms |
tinacms |
2026-03-12T16:55:47.528Z | 2026-03-13T16:27:56.642Z | |
| cve-2026-28793 | Path Traversal Leading to Arbitrary File Read, Write a… |
@tinacms |
cli |
2026-03-12T16:50:20.132Z | 2026-03-13T16:28:33.184Z | |
| cve-2026-28792 | Cross-Origin File Exfiltration via CORS Misconfigurati… |
@tinacms |
cli |
2026-03-12T16:48:16.461Z | 2026-03-13T16:29:06.236Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2011-avi-599 | Vulnérabilité dans OpenLDAP | 2011-10-28T00:00:00.000000 | 2011-10-28T00:00:00.000000 |
| certa-2011-avi-598 | Vulnérabilité dans Novell iPrint | 2011-10-28T00:00:00.000000 | 2011-10-28T00:00:00.000000 |
| certa-2011-avi-597 | Vulnérabilités dans Apple QuickTime | 2011-10-28T00:00:00.000000 | 2011-10-28T00:00:00.000000 |
| certa-2011-avi-596 | Vulnérabilité dans McAfee Web Gateway | 2011-10-26T00:00:00.000000 | 2011-10-26T00:00:00.000000 |
| certa-2011-avi-595 | Vulnérabilités dans MIT Kerberos | 2011-10-26T00:00:00.000000 | 2011-10-26T00:00:00.000000 |
| certa-2011-avi-594 | Vulnérabilités dans Alcatel OmniTouch Instant Communication Suite | 2011-10-26T00:00:00.000000 | 2011-10-26T00:00:00.000000 |
| certa-2011-avi-593 | Vulnérabilités dans Google Chrome | 2011-10-26T00:00:00.000000 | 2011-10-26T00:00:00.000000 |
| certa-2011-avi-592 | Vulnérabilités dans Linux-PAM | 2011-10-26T00:00:00.000000 | 2011-10-26T00:00:00.000000 |
| certa-2011-avi-591 | Multiples vulnérabilités dans FFmpeg | 2011-10-25T00:00:00.000000 | 2011-10-25T00:00:00.000000 |
| certa-2011-avi-590 | Vulnérabilité dans OCS Inventory | 2011-10-25T00:00:00.000000 | 2011-10-25T00:00:00.000000 |
| certa-2011-avi-589 | Vulnérabilités dans LibreOffice | 2011-10-25T00:00:00.000000 | 2011-10-25T00:00:00.000000 |
| certa-2011-avi-588 | Vulnérabilités dans HP Data Protector Notebook Extension | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-587 | Vulnérabilités dans Splunk | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-586 | Multiples vulnérabilités dans les produits Oracle | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-585 | Vulnérabilités dans HP MFP Digital Sending Software | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-584 | Vulnérabilités dans Cisco Show and Share | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-583 | Vulnérabilité dans CiscoWorks Common Services | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-582 | Vulnérabilités dans plusieurs produits Symantec | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-581 | Vulnérabilité dans IBM Websphere | 2011-10-21T00:00:00.000000 | 2011-10-21T00:00:00.000000 |
| certa-2011-avi-580 | Vulnérabilités dans Java | 2011-10-20T00:00:00.000000 | 2012-01-31T00:00:00.000000 |
| certa-2011-avi-579 | Multiples vulnérabilités dans Moodle | 2011-10-20T00:00:00.000000 | 2011-10-20T00:00:00.000000 |
| certa-2011-avi-578 | Vulnérabilité dans Opera | 2011-10-19T00:00:00.000000 | 2011-10-19T00:00:00.000000 |
| certa-2011-avi-577 | Vulnérabilités dans Joomla! | 2011-10-19T00:00:00.000000 | 2011-10-19T00:00:00.000000 |
| certa-2011-avi-576 | Vulnérabilités dans Symantec IM Manager | 2011-10-19T00:00:00.000000 | 2011-10-19T00:00:00.000000 |
| certa-2011-avi-575 | Vulnérabilité dans ClamAV | 2011-10-19T00:00:00.000000 | 2011-10-19T00:00:00.000000 |
| certa-2011-avi-574 | Multiples vulnérabilités dans Cisco Adaptive Security Appliances | 2011-10-18T00:00:00.000000 | 2011-10-18T00:00:00.000000 |
| certa-2011-avi-573 | Vulnérabilité dans Cisco Network Admission Control Manager | 2011-10-18T00:00:00.000000 | 2011-10-18T00:00:00.000000 |
| certa-2011-avi-572 | Vulnérabilités dans phpMyAdmin | 2011-10-18T00:00:00.000000 | 2011-10-18T00:00:00.000000 |
| certa-2011-avi-571 | Vulnérabilités dans VMWare ESX et ESXi | 2011-10-18T00:00:00.000000 | 2011-10-18T00:00:00.000000 |
| certa-2011-avi-570 | Vulnérabilité dans Asterisk | 2011-10-18T00:00:00.000000 | 2011-10-18T00:00:00.000000 |