Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2024-0456 | 4.3 (v3.1) | Direct Request ('Forced Browsing') in GitLab |
GitLab |
GitLab |
2024-01-26T01:02:43.953Z | 2026-06-10T23:00:10.858Z |
| cve-2026-50636 | 8.8 (v3.1) 8.7 (v4.0) | LimeSurvey RemoteControl invite_participants/remind_pa… |
LimeSurvey |
LimeSurvey |
2026-06-09T17:34:31.751Z | 2026-06-10T22:47:05.513Z |
| cve-2026-50635 | 8.8 (v3.1) 8.7 (v4.0) | LimeSurvey Password Reset Host Header Injection Disclo… |
LimeSurvey |
LimeSurvey |
2026-06-09T17:34:30.992Z | 2026-06-10T22:46:42.371Z |
| cve-2026-50223 | Apache OFBiz: DataResource Low-Privileged Authenticate… |
Apache Software Foundation |
Apache OFBiz |
2026-06-10T22:23:49.650Z | 2026-06-10T22:42:04.290Z | |
| cve-2026-47342 | Apache OFBiz: Privilege Escalation via updateOrRemove … |
Apache Software Foundation |
Apache OFBiz |
2026-06-10T22:29:06.793Z | 2026-06-10T22:41:59.149Z | |
| cve-2026-46645 | SQLAdmin: Authorization Bypass on `ajax_lookup` |
smithyhq |
sqladmin |
2026-06-10T22:23:57.397Z | 2026-06-10T22:23:57.397Z | |
| cve-2026-46695 | BoxLite: Permission Bypass in boxlite Allows Modificat… |
boxlite-ai |
boxlite |
2026-06-10T22:20:44.589Z | 2026-06-10T22:20:44.589Z | |
| cve-2026-46703 | BoxLite: Path Traversal Vulnerability in boxlite Leads… |
boxlite-ai |
boxlite |
2026-06-10T22:20:24.569Z | 2026-06-10T22:20:24.569Z | |
| cve-2026-47213 | BoxLite: Timeout Bypass Vulnerability |
boxlite-ai |
boxlite |
2026-06-10T22:20:04.243Z | 2026-06-10T22:20:04.243Z | |
| cve-2026-42568 | Yamcs Vulnerable to LDAP Injection in LdapAuthModule |
yamcs |
yamcs |
2026-06-10T22:15:52.087Z | 2026-06-10T22:15:52.087Z | |
| cve-2026-52726 | Dulwich's submodule path traversal in porcelain.submod… |
jelmer |
dulwich |
2026-06-10T22:13:33.320Z | 2026-06-10T22:13:33.320Z | |
| cve-2026-44693 | Pi-hole FTL: Unauthenticated Session Hijacking via Rac… |
pi-hole |
FTL |
2026-06-10T22:11:29.237Z | 2026-06-10T22:11:29.237Z | |
| cve-2026-47734 | Dulwich has unbounded memory allocation in receive-pac… |
jelmer |
dulwich |
2026-06-10T22:11:02.704Z | 2026-06-10T22:11:02.704Z | |
| cve-2026-53465 | ImageMagick: Heap Buffer Over-Write in SF3 encoder whe… |
ImageMagick |
ImageMagick |
2026-06-10T22:07:50.597Z | 2026-06-10T22:07:50.597Z | |
| cve-2026-53464 | ImageMagick: Memory Leak in wand option parser when pr… |
ImageMagick |
ImageMagick |
2026-06-10T22:07:06.566Z | 2026-06-10T22:07:06.566Z | |
| cve-2026-53463 | ImageMagick: Null Pointer Dereference in distort opera… |
ImageMagick |
ImageMagick |
2026-06-10T22:05:58.915Z | 2026-06-10T22:05:58.915Z | |
| cve-2026-53462 | ImageMagick: Use-After-Free when allocation in CheckPr… |
ImageMagick |
ImageMagick |
2026-06-10T22:04:53.967Z | 2026-06-10T22:04:53.967Z | |
| cve-2026-53461 | ImageMagick: Out-of-bounds write in ICON decoder due t… |
ImageMagick |
ImageMagick |
2026-06-10T22:03:11.449Z | 2026-06-10T22:03:11.449Z | |
| cve-2026-53460 | ImageMagick: Policy Bypass can trigger out-of-Memory c… |
ImageMagick |
ImageMagick |
2026-06-10T22:02:22.689Z | 2026-06-10T22:02:22.689Z | |
| cve-2026-47712 | Dulwich doesn't sanitize commit subjects in `porcelain… |
jelmer |
dulwich |
2026-06-10T22:01:49.996Z | 2026-06-10T22:01:49.996Z | |
| cve-2026-49219 | ImageMagick: Policy Bypass can read disallowed files |
ImageMagick |
ImageMagick |
2026-06-10T22:00:26.685Z | 2026-06-10T22:00:26.685Z | |
| cve-2026-49218 | ImageMagick: Policy Bypass in DCM decoder could result… |
ImageMagick |
ImageMagick |
2026-06-10T21:59:04.443Z | 2026-06-10T21:59:04.443Z | |
| cve-2026-48994 | ImageMagick: Heap Buffer Over-Write in MAT decoder on … |
ImageMagick |
ImageMagick |
2026-06-10T21:58:14.617Z | 2026-06-10T21:58:14.617Z | |
| cve-2026-48734 | ImageMagick: Stack Overflow in MVG decoder |
ImageMagick |
ImageMagick |
2026-06-10T21:55:59.800Z | 2026-06-10T21:55:59.800Z | |
| cve-2026-42305 | Dulwich has an arbitrary file write via NTFS-hostile t… |
jelmer |
dulwich |
2026-06-10T21:55:30.942Z | 2026-06-10T21:55:30.942Z | |
| cve-2024-21944 | 5.3 (v3.1) | Improper input validation for DIMM serial presenc… |
AMD |
AMD EPYC™ 7003 Series Processors |
2026-06-10T21:54:19.444Z | 2026-06-10T21:54:19.444Z |
| cve-2026-48733 | ImageMagick: Infinite Loop in subimage-search with cra… |
ImageMagick |
ImageMagick |
2026-06-10T21:53:35.587Z | 2026-06-10T21:53:35.587Z | |
| cve-2026-48724 | ImageMagick: Heap Buffer Underwrite in Floyd-Steinberg… |
ImageMagick |
ImageMagick |
2026-06-10T21:52:32.525Z | 2026-06-10T21:52:32.525Z | |
| cve-2026-47166 | ImageMagick: Heap Buffer Over-Read in distributed pixe… |
ImageMagick |
ImageMagick |
2026-06-10T21:51:18.236Z | 2026-06-10T21:51:18.236Z | |
| cve-2026-47165 | ImageMagick: Information Disclosure in distributed pix… |
ImageMagick |
ImageMagick |
2026-06-10T21:50:30.668Z | 2026-06-10T21:50:30.668Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2026-000049 | Multiple vulnerabilities in NEC Aterm series (NV26-001) | 2026-04-03T15:09+09:00 | 2026-04-03T15:09+09:00 |
| jvndb-2026-009412 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009411 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009410 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009409 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009408 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009406 | Security information for Hitachi Disk Array Systems | 2026-03-31T15:53+09:00 | 2026-03-31T15:53+09:00 |
| jvndb-2026-009147 | Vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer | 2026-03-27T18:18+09:00 | 2026-03-27T18:18+09:00 |
| jvndb-2026-009148 | Open Redirect Vulnerability in Hitachi Ops Center Administrator | 2026-03-27T18:17+09:00 | 2026-03-27T18:17+09:00 |
| jvndb-2026-000047 | Multiple vulnerabilities in baserCMS | 2026-03-27T18:00+09:00 | 2026-03-27T18:00+09:00 |
| jvndb-2026-000045 | WordPress Plugin "OpenStreetMap" vulnerable to cross-site scripting | 2026-03-27T17:34+09:00 | 2026-03-27T17:34+09:00 |
| jvndb-2026-000046 | Multiple vulnerabilities in BUFFALO Wi-Fi routers | 2026-03-27T17:18+09:00 | 2026-03-27T17:18+09:00 |
| jvndb-2026-000044 | Multiple vulnerabilities in the installer of RATOC RAID Monitoring Manager for Windows | 2026-03-26T17:41+09:00 | 2026-03-26T17:41+09:00 |
| jvndb-2026-000042 | Digital Photo Frame GH-WDF10A vulnerable to improper access restriction | 2026-03-26T17:41+09:00 | 2026-03-26T17:41+09:00 |
| jvndb-2026-000043 | SHARP routers missing authentication for some web APIs | 2026-03-25T18:41+09:00 | 2026-03-25T18:41+09:00 |
| jvndb-2026-000040 | Installer of OM Workspace (Windows Edition) may insecurely load Dynamic Link Libraries | 2026-03-25T18:13+09:00 | 2026-03-25T18:13+09:00 |
| jvndb-2026-000041 | SANYO DENKI SANUPS SOFTWARE registers Windows services with unquoted file paths | 2026-03-25T17:58+09:00 | 2026-03-25T17:58+09:00 |
| jvndb-2026-007524 | Vulnerability in Hitachi Command Suite | 2026-03-17T16:42+09:00 | 2026-03-17T16:42+09:00 |
| jvndb-2026-000038 | Installer for IBM Trusteer Rapport may insecurely load Dynamic Link Libraries | 2026-03-17T14:57+09:00 | 2026-03-17T14:57+09:00 |
| jvndb-2026-000039 | Missing authorization in the OpenAI thread/message API endpoints of GROWI | 2026-03-16T17:18+09:00 | 2026-03-16T17:18+09:00 |
| jvndb-2026-000037 | OpenLiteSpeed and LSWS Enterprise vulnerable to OS command injection | 2026-03-16T17:18+09:00 | 2026-03-16T17:18+09:00 |
| jvndb-2026-006887 | Multiple vulnerabilities in Micro Research MR-GM5L-S1 and MR-GM5A-L1 | 2026-03-12T17:22+09:00 | 2026-03-12T17:22+09:00 |
| jvndb-2026-000036 | Improper file access permission settings in multiple Digital Arts products | 2026-03-09T14:57+09:00 | 2026-03-09T16:23+09:00 |
| jvndb-2026-000035 | Installer for Qsee Client may insecurely load Dynamic Link Libraries | 2026-03-09T14:57+09:00 | 2026-03-09T14:57+09:00 |
| jvndb-2026-006102 | Security issues in ESC/POS | 2026-03-06T10:31+09:00 | 2026-03-06T10:31+09:00 |
| jvndb-2026-000034 | django-allauth vulnerable to open redirect | 2026-03-05T12:36+09:00 | 2026-03-05T12:36+09:00 |
| jvndb-2026-000033 | EC-CUBE vulnerable to multi-factor authentication bypass | 2026-03-05T12:36+09:00 | 2026-03-05T12:36+09:00 |
| jvndb-2026-000032 | Multiple vulnerabilities in Dell UPS Multi-UPS Management Console (MUMC) | 2026-03-04T12:20+09:00 | 2026-03-04T12:20+09:00 |
| jvndb-2026-005746 | Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (February 2026) | 2026-03-04T10:40+09:00 | 2026-03-04T10:40+09:00 |
| jvndb-2026-005744 | Canon IJ Scan Utility registers Windows services with unquoted file paths | 2026-03-04T10:40+09:00 | 2026-03-04T10:40+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0689 | Vulnérabilité dans les produits Cisco | 2026-06-04T00:00:00.000000 | 2026-06-04T00:00:00.000000 |
| certfr-2026-avi-0688 | Multiples vulnérabilités dans FreeRadius | 2026-06-04T00:00:00.000000 | 2026-06-04T00:00:00.000000 |
| certfr-2026-avi-0687 | Multiples vulnérabilités dans Synology Chat Server pour DSM | 2026-06-04T00:00:00.000000 | 2026-06-04T00:00:00.000000 |
| certfr-2026-avi-0686 | Multiples vulnérabilités dans les produits NetApp | 2026-06-04T00:00:00.000000 | 2026-06-04T00:00:00.000000 |
| certfr-2026-avi-0685 | Multiples vulnérabilités dans Microsoft Azure Linux | 2026-06-03T00:00:00.000000 | 2026-06-03T00:00:00.000000 |
| certfr-2026-avi-0684 | Multiples vulnérabilités dans Mozilla Firefox | 2026-06-03T00:00:00.000000 | 2026-06-03T00:00:00.000000 |
| certfr-2026-avi-0683 | Vulnérabilité dans HPE Aruba Networking AOS-CX | 2026-06-03T00:00:00.000000 | 2026-06-03T00:00:00.000000 |
| certfr-2026-avi-0682 | Vulnérabilité dans les produits Laravel | 2026-06-03T00:00:00.000000 | 2026-06-03T00:00:00.000000 |
| certfr-2026-avi-0515 | Multiples vulnérabilités dans MISP | 2026-04-30T00:00:00.000000 | 2026-06-03T00:00:00.000000 |
| certfr-2026-avi-0681 | Multiples vulnérabilités dans les produits Microsoft | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0680 | Multiples vulnérabilités dans Microsoft Edge | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0679 | Multiples vulnérabilités dans Google Android | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0678 | Vulnérabilité dans Apache Kafka | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0677 | Vulnérabilité dans les produits Ivanti | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0676 | Multiples vulnérabilités dans Mozilla Firefox | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0675 | Multiples vulnérabilités dans GLPI | 2026-06-02T00:00:00.000000 | 2026-06-02T00:00:00.000000 |
| certfr-2026-avi-0674 | Multiples vulnérabilités dans les produits Microsoft | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0673 | Vulnérabilité dans Microsoft Azure | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0672 | Multiples vulnérabilités dans les produits Mitel | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0671 | Multiples vulnérabilités dans les produits NetApp | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0670 | Vulnérabilité dans Laravel | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0669 | Vulnérabilité dans Keycloak | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0668 | Vulnérabilité dans Kaspersky Anti Targeted Attack Platform | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0667 | Multiples vulnérabilités dans les produits IBM | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0666 | Multiples vulnérabilités dans le noyau Linux de Debian | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0665 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0664 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0663 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0662 | Multiples vulnérabilités dans Oracle Database Server | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0661 | Multiples vulnérabilités dans Elastic Kibana | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-ale-003 | [MàJ] Vulnérabilité dans l'implémentation du protocole RPC par Microsoft | 2022-04-13T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2022-ale-001 | [MaJ] Vulnérabilité dans Microsoft Windows | 2022-01-12T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2021-ale-022 | [MaJ] Vulnérabilité dans Apache Log4j | 2021-12-10T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2021-ale-021 | Vulnérabilité dans Microsoft Exchange | 2021-11-10T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2021-ale-019 | [MaJ] Vulnérabilité dans Microsoft Windows | 2021-09-08T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2021-ale-017 | Multiples vulnérabilités dans Microsoft Exchange | 2021-08-27T00:00:00.000000 | 2022-05-04T00:00:00.000000 |
| certfr-2021-ale-020 | [Maj] Multiples vulnérabilités dans Microsoft Azure Open Management Infrastructure | 2021-09-17T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2021-ale-018 | Vulnérabilité dans Atlassian Confluence Server et Data Center | 2021-09-06T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2021-ale-014 | [MaJ] Multiples vulnérabilités dans Microsoft Windows | 2021-07-02T00:00:00.000000 | 2022-01-05T00:00:00.000000 |
| certfr-2021-ale-015 | Multiples vulnérabilités dans SolarWinds Serv-U | 2021-07-13T00:00:00.000000 | 2021-10-19T00:00:00.000000 |
| certfr-2021-ale-012 | Multiples vulnérabilités dans Microsoft Windows | 2021-06-09T00:00:00.000000 | 2021-10-19T00:00:00.000000 |
| certfr-2021-ale-011 | Vulnérabilité dans VMware vCenter Server | 2021-06-07T00:00:00.000000 | 2021-10-19T00:00:00.000000 |
| certfr-2021-ale-016 | Vulnérabilité dans SonicWall | 2021-07-15T00:00:00.000000 | 2021-08-19T00:00:00.000000 |
| certfr-2021-ale-004 | [MàJ] Multiples vulnérabilités dans Microsoft Exchange Server | 2021-03-03T00:00:00.000000 | 2021-07-16T00:00:00.000000 |
| certfr-2021-ale-013 | [MaJ] Vulnérabilité dans Microsoft Windows | 2021-06-30T00:00:00.000000 | 2021-07-02T00:00:00.000000 |
| certfr-2021-ale-010 | Vulnérabilité dans Adobe Acrobat et Acrobat Reader | 2021-05-12T00:00:00.000000 | 2021-06-29T00:00:00.000000 |
| certfr-2021-ale-007 | [MàJ] Vulnérabilité dans Pulse Connect Secure | 2021-04-20T00:00:00.000000 | 2021-06-21T00:00:00.000000 |
| certfr-2021-ale-009 | [MàJ] Vulnérabilité dans Microsoft Windows | 2021-05-12T00:00:00.000000 | 2021-06-10T00:00:00.000000 |
| certfr-2021-ale-008 | Multiples vulnérabilités dans Exim | 2021-05-05T00:00:00.000000 | 2021-06-10T00:00:00.000000 |
| certfr-2021-ale-005 | Multiples vulnérabilités dans Microsoft DNS server | 2021-03-12T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-ale-003 | [MàJ] Vulnérabilité dans VMware vCenter Server | 2021-02-25T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-ale-001 | |MàJ] Vulnérabilité dans SonicWall SMA100 | 2021-02-02T00:00:00.000000 | 2021-05-12T00:00:00.000000 |
| certfr-2021-ale-006 | [MàJ] Vulnérabilité dans F5 BIG-IP | 2021-03-22T00:00:00.000000 | 2021-04-15T00:00:00.000000 |
| certfr-2020-ale-026 | [MaJ] Présence de code malveillant dans SolarWinds Orion | 2020-12-14T00:00:00.000000 | 2021-04-15T00:00:00.000000 |
| certfr-2021-ale-002 | [MàJ] Vulnérabilité dans Google Chrome et Microsoft Edge | 2021-02-05T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-021 | Vulnérabilité dans Samba | 2020-09-18T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-020 | [MàJ] Vulnérabilité dans Microsoft Netlogon | 2020-09-15T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-019 | Recrudescence d'activité Emotet en France | 2020-09-07T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2020-ale-025 | Vulnérabilité dans Fortinet FortiOS SSL-VPN | 2020-11-27T00:00:00.000000 | 2021-02-08T00:00:00.000000 |
| certfr-2020-ale-024 | [MaJ] Vulnérabilité dans les produits VMware | 2020-11-24T00:00:00.000000 | 2020-12-17T00:00:00.000000 |