Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2026-6632		Tenda F451 httpd SafeClientFilter fromSafeClientFilter…	Tenda	F451	2026-04-20T11:00:19.795Z	2026-04-20T15:05:42.179Z
cve-2026-6634		usememos UpdateInstanceSetting App.tsx memos_access_to…	usememos	memos	2026-04-20T11:30:13.847Z	2026-04-20T15:02:48.499Z
cve-2026-6589		ComfyUI server.py create_origin_only_middleware cross-…	n/a	ComfyUI	2026-04-20T00:30:21.353Z	2026-04-20T15:02:44.809Z
cve-2026-33207		DataEase SQL Injection Vulnerability	dataease	dataease	2026-04-16T19:37:36.197Z	2026-04-20T15:00:41.415Z
cve-2026-33472		Cryptomator Hub OAuth token exchange HTTP downgrade vi…	cryptomator	cryptomator	2026-04-16T21:12:37.076Z	2026-04-20T15:00:33.905Z
cve-2026-40170		ngtcp2 has a qlog transport parameter serialization st…	ngtcp2	ngtcp2	2026-04-16T21:34:07.610Z	2026-04-20T15:00:26.193Z
cve-2026-40248		free5gc UDR improper path validation allows unauthenti…	free5gc	free5gc	2026-04-16T21:57:13.101Z	2026-04-20T15:00:17.552Z
cve-2026-40259		SiYuan: Publish Reader Can Arbitrarily Delete Attribut…	siyuan-note	siyuan	2026-04-16T22:49:36.992Z	2026-04-20T14:59:59.417Z
cve-2026-40922		SiYuan: Incomplete sanitization of bazaar README allow…	siyuan-note	siyuan	2026-04-16T23:14:00.592Z	2026-04-20T14:59:52.008Z
cve-2026-31317	N/A	Craftql v1.3.7 and before is vulnerable to Server…	n/a	n/a	2026-04-17T00:00:00.000Z	2026-04-20T14:59:43.878Z
cve-2026-4666		wpForo Forum <= 2.4.16 - Missing Authorization to Auth…	tomdever	wpForo Forum	2026-04-17T02:25:04.892Z	2026-04-20T14:59:31.196Z
cve-2026-6080		Tutor LMS <= 3.9.8 - Authenticated (Admin+) SQL Inject…	themeum	Tutor LMS – eLearning and online course solution	2026-04-17T03:36:44.234Z	2026-04-20T14:59:23.108Z
cve-2026-6439		VideoZen <= 1.0.1 - Authenticated (Administrator+) Sto…	jconti	VideoZen	2026-04-17T08:28:26.200Z	2026-04-20T14:59:14.759Z
cve-2026-6603		modelscope agentscope _python.py execute_shell_command…	modelscope	agentscope	2026-04-20T04:00:20.462Z	2026-04-20T14:59:13.475Z
cve-2026-6507	7.5 (v3.1)	Dnsmasq: dnsmasq: denial of service due to out-of-boun…	Red Hat	Red Hat Enterprise Linux 10	2026-04-17T12:23:31.852Z	2026-04-20T14:59:06.735Z
cve-2026-6488		QueryMine sms GET Request Parameter editcourse.php sql…	QueryMine	sms	2026-04-17T12:45:11.275Z	2026-04-20T14:58:56.910Z
cve-2026-6493		lukevella rallly Reset Password reset-password-form.ts…	lukevella	rallly	2026-04-17T14:15:15.422Z	2026-04-20T14:58:49.011Z
cve-2026-41153	5.8 (v3.1)	In JetBrains Junie before 252.549.29 command exec…	JetBrains	Junie	2026-04-17T14:29:04.503Z	2026-04-20T14:58:41.237Z
cve-2026-6284	9.3 (v4.0) 9.1 (v3.1)	Horner Automation Cscape and XL4, XL7 PLC Weak passwor…	Horner Automation	Cscape	2026-04-17T15:14:06.346Z	2026-04-20T14:58:32.621Z
cve-2026-6605		modelscope agentscope Internal Service _common.py _get…	modelscope	agentscope	2026-04-20T04:30:13.482Z	2026-04-20T14:58:30.070Z
cve-2026-6636		p2r3 convert API buildCache.js Bun.serve path traversal	p2r3	convert	2026-04-20T12:00:17.473Z	2026-04-20T14:58:24.131Z
cve-2026-40515	8.7 (v4.0) 7.5 (v3.1)	OpenHarness Permission Bypass via grep and glob root a…	HKUDS	OpenHarness	2026-04-17T16:00:07.116Z	2026-04-20T14:58:22.999Z
cve-2026-40283		WeGIA has stored XSS in profile_paciente.php	LabRedesCefetRJ	WeGIA	2026-04-17T20:03:14.016Z	2026-04-20T14:58:05.365Z
cve-2026-40282		WeGIA has stored XSS in intercorrencia_visualizar.php	LabRedesCefetRJ	WeGIA	2026-04-17T20:16:46.878Z	2026-04-20T14:57:55.798Z
cve-2026-6608		lm-sys fastchat Arena Side-by-Side View add_text contr…	lm-sys	fastchat	2026-04-20T05:15:12.337Z	2026-04-20T14:57:55.071Z
cve-2026-35603		Claude Code: Insecure System-Wide Configuration Loadin…	anthropics	claude-code	2026-04-17T20:38:49.901Z	2026-04-20T14:57:47.669Z
cve-2026-40301		rhukster/dom-sanitizer: SVG <style> tag allows CSS inj…	rhukster	dom-sanitizer	2026-04-17T20:51:37.226Z	2026-04-20T14:57:39.192Z
cve-2026-40155		Auth0 Next.js SDK has Improper Proxy Cache Lookup	auth0	nextjs-auth0	2026-04-17T20:54:38.958Z	2026-04-20T14:57:32.023Z
cve-2026-40304		zrok's broken ownership check in DELETE /api/v2/unacce…	openziti	zrok	2026-04-17T21:04:23.648Z	2026-04-20T14:57:24.486Z
cve-2026-6613		TransformerOptimus SuperAGI agent.py get_schedule_data…	TransformerOptimus	SuperAGI	2026-04-20T06:30:14.889Z	2026-04-20T14:57:19.410Z

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Package	Published	Updated

ID	Description	Type

ID	Description	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
jvndb-2019-000069	Movable Type vulnerable to open redirect	2019-11-13T13:59+09:00	2019-11-13T13:59+09:00
jvndb-2019-011486	Arbitrary File Deletion Vulnerability in Hitachi Command Suite	2019-11-11T14:10+09:00	2019-11-11T14:10+09:00
jvndb-2019-011487	DoS Vulnerability in Hitachi Command Suite and Hitachi Infrastructure Analytics Advisor	2019-11-11T14:09+09:00	2019-11-11T14:09+09:00
jvndb-2019-000068	Rakuma App vulnerable to authentication information disclosure	2019-11-07T14:50+09:00	2019-11-07T14:50+09:00
jvndb-2019-000067	Library Information Management System LIMEDIO vulnerable to open redirect	2019-10-28T15:37+09:00	2019-10-28T15:37+09:00
jvndb-2019-000066	PowerCMS vulnerable to open redirect	2019-10-23T16:00+09:00	2019-10-23T16:00+09:00
jvndb-2019-000059	apng-drawable vulnerable to integer overflow	2019-09-12T13:55+09:00	2019-10-18T15:23+09:00
jvndb-2019-000060	Multiple integer overflow vulnerabilities in LINE(Android)	2019-09-19T17:59+09:00	2019-10-18T15:17+09:00
jvndb-2019-010375	Multiple Vulnerabilities in Hitachi Global Link Manager	2019-10-18T14:21+09:00	2019-10-18T14:21+09:00
jvndb-2019-010374	Vulnerability in Cosminexus HTTP Server and Hitachi Web Server	2019-10-18T14:18+09:00	2019-10-18T14:18+09:00
jvndb-2019-000064	Multiple vulnerabilities in WordPress Plugin "wpDataTables Lite"	2019-10-11T15:08+09:00	2019-10-16T12:40+09:00
jvndb-2019-000065	NetCommons3 vulnerable to cross-site scripting	2019-10-15T12:39+09:00	2019-10-15T12:39+09:00
jvndb-2019-000053	Smart TV Box fails to restrict access permissions	2019-08-23T15:57+09:00	2019-10-08T17:35+09:00
jvndb-2019-007404	WonderCMS vulnerable to directory traversal	2019-08-09T12:23+09:00	2019-10-08T17:23+09:00
jvndb-2019-000043	Multiple vulnerabilities in Hikari Denwa router/Home GateWay	2019-06-27T15:36+09:00	2019-10-08T17:22+09:00
jvndb-2019-000047	Multiple vulnerabilities in Cybozu Garoon	2019-07-16T16:08+09:00	2019-10-08T17:19+09:00
jvndb-2019-000054	Cybozu Garoon vulnerable to SQL injection	2019-08-26T13:48+09:00	2019-10-08T16:48+09:00
jvndb-2019-000048	WordPress Plugin "WordPress Ultra Simple Paypal Shopping Cart" vulnerable to cross-site request forgery	2019-07-16T16:16+09:00	2019-10-08T16:38+09:00
jvndb-2019-000049	WordPress Plugin "Category Specific RSS feed Subscription" vulnerable to cross-site request forgery	2019-07-18T13:56+09:00	2019-10-08T16:28+09:00
jvndb-2019-000062	Multiple OS command injection vulnerabilities in DBA-1510P	2019-10-07T15:17+09:00	2019-10-07T15:17+09:00
jvndb-2019-000063	Multiple vulnerabilities in EC-CUBE module "REMISE Payment module (2.11, 2.12 and 2.13)"	2019-10-07T15:09+09:00	2019-10-07T15:09+09:00
jvndb-2019-000050	Central Dogma vulnerable to cross-site scripting	2019-07-31T15:29+09:00	2019-10-04T16:37+09:00
jvndb-2019-000036	WordPress Plugin "Contest Gallery" vulnerable to cross-site request forgery	2019-06-12T14:21+09:00	2019-10-04T16:19+09:00
jvndb-2019-000038	WordPress Plugin "Personalized WooCommerce Cart Page" vulnerable to cross-site request forgery	2019-06-19T14:13+09:00	2019-10-04T16:13+09:00
jvndb-2019-000039	WordPress Plugin "Related YouTube Videos" vulnerable to cross-site request forgery	2019-06-17T14:55+09:00	2019-10-04T16:02+09:00
jvndb-2019-000029	Android App "Tootdon for Mastodon" fails to verify SSL server certificates	2019-05-24T15:13+09:00	2019-10-04T15:50+09:00
jvndb-2019-000044	The management console of iDoors Reader vulnerable to authentication bypass	2019-07-01T14:31+09:00	2019-10-04T15:45+09:00
jvndb-2019-000032	Joruri CMS 2017 vulnerable to cross-site scripting	2019-06-07T15:09+09:00	2019-10-02T17:53+09:00
jvndb-2019-000035	Multiple vulnerabilities in WordPress Plugin "Online Lesson Booking"	2019-06-10T15:33+09:00	2019-10-02T17:50+09:00
jvndb-2019-000040	Multiple vulnerabilities in VAIO Update	2019-06-21T14:22+09:00	2019-10-01T11:12+09:00

ID	Description	Updated

ID	Description

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
certfr-2025-avi-0469	Vulnérabilité dans les produits Synology	2025-06-02T00:00:00.000000	2025-06-02T00:00:00.000000
certfr-2025-avi-0467	Multiples vulnérabilités dans IBM Db2	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0466	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0465	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0464	Multiples vulnérabilités dans le noyau Linux de Debian	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0463	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0462	Multiples vulnérabilités dans Microsoft Edge	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0461	Vulnérabilité dans Apache Tomcat	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0460	Vulnérabilité dans Spring Cloud Gateway Server	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0459	Multiples vulnérabilités dans ISC Kea DHCP	2025-05-30T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0401	Multiples vulnérabilités dans Juniper Networks Secure Analytics	2025-05-14T00:00:00.000000	2025-05-30T00:00:00.000000
certfr-2025-avi-0458	Multiples vulnérabilités dans Curl	2025-05-28T00:00:00.000000	2025-05-28T00:00:00.000000
certfr-2025-avi-0457	Vulnérabilité dans Traefik	2025-05-28T00:00:00.000000	2025-05-28T00:00:00.000000
certfr-2025-avi-0456	Multiples vulnérabilités dans Citrix et Xen	2025-05-28T00:00:00.000000	2025-05-28T00:00:00.000000
certfr-2025-avi-0455	Multiples vulnérabilités dans Google Chrome	2025-05-28T00:00:00.000000	2025-05-28T00:00:00.000000
certfr-2025-avi-0454	Multiples vulnérabilités dans les produits Mozilla	2025-05-28T00:00:00.000000	2025-05-28T00:00:00.000000
certfr-2025-avi-0452	Multiples vulnérabilités dans les produits IBM	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0451	Vulnérabilité dans Microsoft Edge	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0450	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0449	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0448	Multiples vulnérabilités dans Tenable Nessus Network Monitor	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0447	Multiples vulnérabilités dans Grafana	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0446	Multiples vulnérabilités dans Asterisk	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0445	Multiples vulnérabilités dans Mozilla Thunderbird	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0444	Vulnérabilité dans OpenSSL	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0443	Vulnérabilité dans VMware Avi Load Balancer	2025-05-23T00:00:00.000000	2025-05-23T00:00:00.000000
certfr-2025-avi-0442	Vulnérabilité dans Mozilla Firefox pour iOS	2025-05-22T00:00:00.000000	2025-05-22T00:00:00.000000
certfr-2025-avi-0440	Vulnérabilité dans Grafana	2025-05-22T00:00:00.000000	2025-05-22T00:00:00.000000
certfr-2025-avi-0439	Multiples vulnérabilités dans Google Chrome	2025-05-22T00:00:00.000000	2025-05-22T00:00:00.000000
certfr-2025-avi-0438	Multiples vulnérabilités dans les produits Cisco	2025-05-22T00:00:00.000000	2025-05-22T00:00:00.000000

ID	Description	Published	Updated