Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-30954 | LinkAce has a Cross-User Tag/List Attachment IDOR in p… |
Kovah |
LinkAce |
2026-03-10T20:40:31.011Z | 2026-03-11T14:30:40.687Z | |
| cve-2026-30953 | LinkAce affected by SSRF via link creation: NoPrivateI… |
Kovah |
LinkAce |
2026-03-10T20:38:48.381Z | 2026-03-11T14:37:18.597Z | |
| cve-2025-66413 | Git for Windows leaks NTLM hash when cloning from an a… |
git-for-windows |
git |
2026-03-10T20:34:32.769Z | 2026-03-11T14:33:36.115Z | |
| cve-2026-30952 | liquidjs has a path traversal fallback vulnerability |
harttle |
liquidjs |
2026-03-10T20:25:20.176Z | 2026-03-11T14:39:22.286Z | |
| cve-2026-30951 | Sequelize v6 Vulnerable to SQL Injection via JSON Colu… |
sequelize |
sequelize |
2026-03-10T20:22:46.150Z | 2026-03-11T14:40:34.034Z | |
| cve-2026-30949 | Parse Server is missing audience validation in Keycloa… |
parse-community |
parse-server |
2026-03-10T20:20:12.187Z | 2026-03-10T20:40:49.355Z | |
| cve-2026-30948 | Parse Server has stored cross-site scripting (XSS) via… |
parse-community |
parse-server |
2026-03-10T20:18:23.962Z | 2026-03-10T20:41:46.654Z | |
| cve-2026-30947 | Parse Server ha a bypass of class-level permissions in… |
parse-community |
parse-server |
2026-03-10T20:16:34.731Z | 2026-03-11T14:44:51.461Z | |
| cve-2025-13213 | 5.4 (v3.1) | Multiple vulnerabilities in IBM Aspera Orchestrator |
IBM |
Aspera Orchestrator |
2026-03-10T20:15:10.397Z | 2026-03-11T15:38:43.673Z |
| cve-2026-30946 | Parse Server affected by denial-of-service via unbound… |
parse-community |
parse-server |
2026-03-10T20:14:48.311Z | 2026-03-11T15:29:32.830Z | |
| cve-2026-30837 | Elysia has a string URL format redos |
elysiajs |
elysia |
2026-03-10T20:12:14.627Z | 2026-03-11T15:33:53.271Z | |
| cve-2026-29793 | NoSQL Injection via WebSocket id Parameter in MongoDB … |
@feathersjs |
mongodb |
2026-03-10T20:08:52.109Z | 2026-03-11T14:09:19.913Z | |
| cve-2025-13219 | 5.9 (v3.1) | Multiple vulnerabilities in IBM Aspera Orchestrator |
IBM |
Aspera Orchestrator |
2026-03-10T20:08:20.129Z | 2026-03-11T14:09:47.903Z |
| cve-2026-29792 | Feathersjs has an OAuth Callback Account Takeover |
feathersjs |
feathers |
2026-03-10T20:06:34.801Z | 2026-03-11T14:10:22.938Z | |
| cve-2026-29177 | Craft Commerce has Stored XSS in Craft Commerce Order … |
craftcms |
commerce |
2026-03-10T20:01:06.968Z | 2026-03-10T20:12:39.344Z | |
| cve-2026-29176 | Craft Commerce has Stored XSS in Inventory Location Name |
craftcms |
commerce |
2026-03-10T19:59:48.366Z | 2026-03-10T20:12:39.491Z | |
| cve-2025-36226 | 5.4 (v3.1) | Multiple vulnerabilities in IBM Aspera Faspex |
IBM |
Aspera Faspex 5 |
2026-03-10T19:59:35.843Z | 2026-03-10T20:12:39.646Z |
| cve-2026-29175 | Multiple Stored XSS in Commerce Inventory Page Leading… |
craftcms |
commerce |
2026-03-10T19:57:36.799Z | 2026-03-11T14:11:09.100Z | |
| cve-2025-36227 | 5.4 (v3.1) | Multiple vulnerabilities in IBM Aspera Faspex |
IBM |
Aspera Faspex 5 |
2026-03-10T19:57:16.491Z | 2026-03-10T20:12:39.788Z |
| cve-2026-29174 | Craft Commerce has a SQL Injection in Commerce Invento… |
craftcms |
commerce |
2026-03-10T19:55:54.645Z | 2026-03-10T20:12:39.918Z | |
| cve-2026-29173 | Craft Commerce has Stored XSS while updating Order Sta… |
craftcms |
commerce |
2026-03-10T19:54:25.064Z | 2026-03-10T20:12:40.044Z | |
| cve-2026-2713 | 7.4 (v3.1) | IBM Trusteer Rapport installer affected by uncontrolle… |
IBM |
Trusteer Rapport installer |
2026-03-10T19:53:44.012Z | 2026-03-10T20:12:40.191Z |
| cve-2026-29172 | Craft Commerce has a SQL Injection in Commerce Purchas… |
craftcms |
commerce |
2026-03-10T19:52:32.735Z | 2026-03-11T14:12:53.450Z | |
| cve-2026-29113 | Craft has a potential information disclosure vulnerabi… |
craftcms |
cms |
2026-03-10T19:44:44.530Z | 2026-03-10T20:06:27.216Z | |
| cve-2025-48611 | 10 (v3.1) | In DeviceId of DeviceId.java, there is a possible… |
Google |
Android |
2026-03-10T19:33:06.605Z | 2026-03-16T13:48:55.174Z |
| cve-2026-28495 | GetSimple CMS has CSRF to Remote Code Execution via Ar… |
GetSimpleCMS-CE |
GetSimpleCMS-CE |
2026-03-10T19:25:00.732Z | 2026-03-10T19:51:57.515Z | |
| cve-2026-26330 | Envoy global rate limit may crash when the response ph… |
envoyproxy |
envoy |
2026-03-10T19:19:52.696Z | 2026-03-10T20:17:14.401Z | |
| cve-2026-26311 | Envoy HTTP: filter chain execution on reset streams ca… |
envoyproxy |
envoy |
2026-03-10T19:14:41.645Z | 2026-03-10T19:34:36.118Z | |
| cve-2026-26310 | Crash for scoped ip address in Envoy during DNS |
envoyproxy |
envoy |
2026-03-10T19:08:22.330Z | 2026-03-10T20:12:40.343Z | |
| cve-2026-26309 | Envoy has an off-by-one write in JsonEscaper::escapeString() |
envoyproxy |
envoy |
2026-03-10T19:04:21.384Z | 2026-03-10T20:12:40.483Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2011-avi-029 | Vulnérabilité dans HP OpenView Storage Data Protector | 2011-01-24T00:00:00.000000 | 2011-01-24T00:00:00.000000 |
| certa-2011-avi-028 | Vulnérabilité dans IBM Tivoli | 2011-01-21T00:00:00.000000 | 2011-01-21T00:00:00.000000 |
| certa-2011-avi-027 | Vulnérabilité dans IBM WebSphere | 2011-01-21T00:00:00.000000 | 2011-01-21T00:00:00.000000 |
| certa-2011-avi-026 | Vulnérabilités dans Cisco IOS | 2011-01-20T00:00:00.000000 | 2011-01-20T00:00:00.000000 |
| certa-2011-avi-025 | Vulnérabilités dans Cisco ASA | 2011-01-20T00:00:00.000000 | 2011-01-20T00:00:00.000000 |
| certa-2011-avi-024 | Vulnérabilité dans Citrix Provisionning Services | 2011-01-20T00:00:00.000000 | 2011-01-20T00:00:00.000000 |
| certa-2011-avi-023 | Vulnérabilité dans Asterisk | 2011-01-20T00:00:00.000000 | 2011-01-20T00:00:00.000000 |
| certa-2011-avi-022 | Multiples vulnérabilités dans les produits Oracle | 2011-01-19T00:00:00.000000 | 2011-01-19T00:00:00.000000 |
| certa-2011-avi-021 | Vulnérabilités dans IBM WebSphere Application Server | 2011-01-18T00:00:00.000000 | 2011-01-18T00:00:00.000000 |
| certa-2011-avi-020 | Vulnérabilité dans IBM Websphere MQ | 2011-01-18T00:00:00.000000 | 2011-01-18T00:00:00.000000 |
| certa-2011-avi-019 | Vulnérabilité dans HP LoadRunner | 2011-01-18T00:00:00.000000 | 2011-01-18T00:00:00.000000 |
| certa-2011-avi-018 | Vulnérabilité dans SPIP | 2011-01-14T00:00:00.000000 | 2011-01-14T00:00:00.000000 |
| certa-2011-avi-017 | Vulnérabilités dans SAP | 2011-01-14T00:00:00.000000 | 2011-01-14T00:00:00.000000 |
| certa-2011-avi-016 | Multiples vulnérabilités dans Google Chrome | 2011-01-14T00:00:00.000000 | 2011-01-14T00:00:00.000000 |
| certa-2011-avi-015 | Vulnérabilités dans HP OpenView Network Node Manager | 2011-01-14T00:00:00.000000 | 2011-01-14T00:00:00.000000 |
| certa-2011-avi-014 | Vulnérabilité dans BlackBerry Enterprise Server | 2011-01-14T00:00:00.000000 | 2011-01-14T00:00:00.000000 |
| certa-2011-avi-013 | Vulnérabilité dans sudo | 2011-01-14T00:00:00.000000 | 2012-03-07T00:00:00.000000 |
| certa-2011-avi-012 | Vulnérabilité dans Symantec Web Gateway | 2011-01-13T00:00:00.000000 | 2011-01-13T00:00:00.000000 |
| certa-2011-avi-011 | Vulnérabilité dans Struts | 2011-01-12T00:00:00.000000 | 2011-03-17T00:00:00.000000 |
| certa-2011-avi-010 | Vulnérabilités dans Microsoft Data Access Components | 2011-01-12T00:00:00.000000 | 2011-01-12T00:00:00.000000 |
| certa-2011-avi-009 | Vulnérabilité dans Windows Vista | 2011-01-12T00:00:00.000000 | 2011-01-12T00:00:00.000000 |
| certa-2011-avi-008 | Vulnérabilité dans Novell Identity Manager | 2011-01-11T00:00:00.000000 | 2011-01-11T00:00:00.000000 |
| certa-2011-avi-007 | Vulnérabilité dans Mono | 2011-01-10T00:00:00.000000 | 2011-01-10T00:00:00.000000 |
| certa-2011-avi-006 | Vulnérabilité dans Mac OS X | 2011-01-07T00:00:00.000000 | 2011-01-07T00:00:00.000000 |
| certa-2011-avi-004 | Vulnérabilités dans les paquetages tiers pour VMware | 2011-01-07T00:00:00.000000 | 2011-01-07T00:00:00.000000 |
| certa-2011-avi-003 | Vulnérabilité dans PHP | 2011-01-07T00:00:00.000000 | 2011-01-07T00:00:00.000000 |
| certa-2011-avi-002 | Vulnérabilité dans HP Photo Creative | 2011-01-05T00:00:00.000000 | 2011-01-05T00:00:00.000000 |
| certa-2011-avi-001 | Vulnérabilité dans Wireshark | 2011-01-05T00:00:00.000000 | 2011-01-05T00:00:00.000000 |
| certa-2010-avi-639 | Vulnérabilité dans VLC Media Player | 2010-12-31T00:00:00.000000 | 2010-12-31T00:00:00.000000 |
| certa-2010-avi-638 | Multiples vulnérabilités dans WordPress | 2010-12-31T00:00:00.000000 | 2010-12-31T00:00:00.000000 |