Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-69615 | N/A | Incorrect Access Control via missing 2FA rate-lim… |
n/a |
n/a |
2026-03-10T00:00:00.000Z | 2026-03-10T18:05:00.967Z |
| cve-2025-69614 | N/A | Incorrect Access Control via activation token reu… |
n/a |
n/a |
2026-03-10T00:00:00.000Z | 2026-03-10T18:40:51.662Z |
| cve-2025-56422 | N/A | A deserialization vulnerability in LimeSurvey bef… |
n/a |
n/a |
2026-03-10T00:00:00.000Z | 2026-03-10T18:49:13.104Z |
| cve-2025-56421 | N/A | SQL Injection vulnerability in LimeSurvey before … |
n/a |
n/a |
2026-03-10T00:00:00.000Z | 2026-03-10T18:44:37.111Z |
| cve-2026-30927 | Admidio: Event participation IDOR - non-leaders can re… |
Admidio |
admidio |
2026-03-09T23:03:55.824Z | 2026-03-10T13:59:12.645Z | |
| cve-2026-30925 | Parse Server affected by Regular Expression Denial of … |
parse-community |
parse-server |
2026-03-09T23:01:32.408Z | 2026-03-10T14:11:27.984Z | |
| cve-2026-30921 | OneUptime Synthetic Monitor RCE via exposed Playwright… |
OneUptime |
oneuptime |
2026-03-09T22:58:58.618Z | 2026-03-10T14:13:54.890Z | |
| cve-2026-30920 | OneUptime has broken access control in GitHub App inst… |
OneUptime |
oneuptime |
2026-03-09T22:57:05.745Z | 2026-03-10T14:14:51.667Z | |
| cve-2026-30919 | facileManager Affected by Stored Cross-Site Scripting (XSS) |
facileManager |
facileManager |
2026-03-09T22:54:49.645Z | 2026-03-10T14:17:35.239Z | |
| cve-2026-30918 | facileManager Affected by Reflected Cross-Site Scripti… |
facileManager |
facileManager |
2026-03-09T22:53:25.764Z | 2026-03-10T14:20:28.739Z | |
| cve-2026-30917 | Stored XSS on Bucket namespace pages |
weirdgloop |
mediawiki-extensions-Bucket |
2026-03-09T22:50:20.879Z | 2026-03-10T13:52:52.786Z | |
| cve-2026-30916 | N/A | {'rejectedReasons': [{'lang': 'en', 'value': "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: Further investigation determined that the software behavior described did not falls within the project's threat model. See https://github.com/github/advisory-database/pull/7206 for more information."}], 'providerMetadata': {'orgId': 'a0819718-46f1-4df5-94e2-005712e83aaa', 'shortName': 'GitHub_M', 'dateUpdated': '2026-03-20T19:50:13.932Z'}} | N/A | N/A | 2026-03-09T22:48:14.873Z | 2026-03-20T19:50:13.932Z |
| cve-2026-30913 | flarum/nickname: Display name injection in notificatio… |
flarum |
nicknames |
2026-03-09T22:42:40.014Z | 2026-03-10T14:17:30.046Z | |
| cve-2026-30887 | OneUptime Affected by Unsandboxed Code Execution in Pr… |
OneUptime |
oneuptime |
2026-03-09T22:40:04.425Z | 2026-03-10T14:00:44.197Z | |
| cve-2026-30885 | WWBN AVideo - Unauthenticated IDOR - Playlist Informat… |
WWBN |
AVideo |
2026-03-09T22:35:59.663Z | 2026-03-10T14:12:14.963Z | |
| cve-2026-30870 | Some sync filters in PowerSync Service ignored using `… |
powersync-ja |
powersync-service |
2026-03-09T22:31:40.035Z | 2026-03-10T14:14:17.271Z | |
| cve-2026-28267 | 5.5 (v3.0) 6.8 (v4.0) | Multiple i-フィルター products are configured with imp… |
Digital Arts Inc. |
i-フィルター 10 (Windows version only) |
2026-03-09T22:28:24.535Z | 2026-03-10T14:16:29.163Z |
| cve-2026-30869 | SiYuan has a Path Traversal in /export Endpoint Allows… |
siyuan-note |
siyuan |
2026-03-09T22:28:06.949Z | 2026-03-10T14:18:46.445Z | |
| cve-2026-30862 | Critical Stored XSS & Privilege Escalation in Appsmith |
appsmithorg |
appsmith |
2026-03-09T22:26:11.163Z | 2026-03-10T14:19:20.885Z | |
| cve-2026-29773 | kubewarden-controller cross-namespace data exfiltratio… |
kubewarden |
kubewarden-controller |
2026-03-09T22:23:57.793Z | 2026-03-10T14:31:47.680Z | |
| cve-2026-28513 | Pocket ID: OIDC authorization code validation uses AND… |
pocket-id |
pocket-id |
2026-03-09T22:19:30.000Z | 2026-03-10T14:32:17.637Z | |
| cve-2026-28512 | Pocket ID: OAuth redirect_uri validation bypass via us… |
pocket-id |
pocket-id |
2026-03-09T22:17:58.425Z | 2026-03-10T14:32:52.265Z | |
| cve-2026-28281 | InstantCMS has Multiple CSRF Vulnerabilities |
instantsoft |
icms2 |
2026-03-09T22:13:24.662Z | 2026-03-10T14:33:49.843Z | |
| cve-2025-11158 | 9.1 (v3.1) | Hitachi Vantara Pentaho Data Integration & Analytics -… |
Hitachi Vantara |
Pentaho Data Integration and Analytics |
2026-03-09T22:12:51.587Z | 2026-03-10T18:42:40.262Z |
| cve-2026-30937 | ImageMagick has a heap buffer overflow in WriteXWDImag… |
ImageMagick |
ImageMagick |
2026-03-09T21:50:15.495Z | 2026-03-10T14:34:52.599Z | |
| cve-2026-30936 | ImageMagick has a heap Buffer Overflow in WaveletDenoi… |
ImageMagick |
ImageMagick |
2026-03-09T21:49:36.015Z | 2026-03-10T14:48:27.131Z | |
| cve-2026-30935 | ImageMagick has a heap Buffer Over-Read in BilateralBl… |
ImageMagick |
ImageMagick |
2026-03-09T21:48:47.570Z | 2026-03-10T14:50:58.727Z | |
| cve-2026-30931 | ImageMagick has a heap-based buffer overflow in UHDR encoder |
ImageMagick |
ImageMagick |
2026-03-09T21:47:48.915Z | 2026-03-10T14:53:10.526Z | |
| cve-2026-30929 | ImageMagick has a stack buffer overflow in MagnifyImage |
ImageMagick |
ImageMagick |
2026-03-09T21:46:31.861Z | 2026-03-10T14:52:41.954Z | |
| cve-2026-30883 | ImageMagick has a Heap Overflow when writing extremely… |
ImageMagick |
ImageMagick |
2026-03-09T21:45:55.110Z | 2026-03-10T14:54:05.736Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2010-avi-396 | Vulnérabilité dans Novell iPrint Client | 2010-08-20T00:00:00.000000 | 2010-08-20T00:00:00.000000 |
| certa-2010-avi-395 | Multiples vulnérabilités dans Google Chrome | 2010-08-20T00:00:00.000000 | 2010-08-20T00:00:00.000000 |
| certa-2010-avi-394 | Vulnérabilité dans Adobe Acrobat et Reader | 2010-08-20T00:00:00.000000 | 2010-08-20T00:00:00.000000 |
| certa-2010-avi-393 | Vulnérabilité dans des produits Blue Coat | 2010-08-19T00:00:00.000000 | 2010-08-19T00:00:00.000000 |
| certa-2010-avi-392 | Vulnérabilité dans le noyau Linux | 2010-08-19T00:00:00.000000 | 2010-08-19T00:00:00.000000 |
| certa-2010-avi-391 | Vulnérabilité dans le module pam_xauth | 2010-08-19T00:00:00.000000 | 2010-08-19T00:00:00.000000 |
| certa-2010-avi-390 | Multiples vulnérabilités dans IBM Tivoli Storage Manager FastBack | 2010-08-19T00:00:00.000000 | 2010-08-19T00:00:00.000000 |
| certa-2010-avi-389 | Vulnérabilité dans QuickTime | 2010-08-17T00:00:00.000000 | 2010-08-17T00:00:00.000000 |
| certa-2010-avi-388 | Vulnérabilité dans Citrix XenApp Online Plug-in | 2010-08-17T00:00:00.000000 | 2010-08-17T00:00:00.000000 |
| certa-2010-avi-387 | Vulnérabilités dans Apache Geronimo | 2010-08-17T00:00:00.000000 | 2010-08-17T00:00:00.000000 |
| certa-2010-avi-386 | Multiples vulnérabilités dans Drupal | 2010-08-17T00:00:00.000000 | 2010-08-17T00:00:00.000000 |
| certa-2010-avi-385 | Vulnérabilités dans PHP | 2010-08-13T00:00:00.000000 | 2010-08-13T00:00:00.000000 |
| certa-2010-avi-384 | Multiples vulnérabilités dans Opera | 2010-08-13T00:00:00.000000 | 2010-08-17T00:00:00.000000 |
| certa-2010-avi-383 | Vulnérabilité dans Cisco IOS | 2010-08-13T00:00:00.000000 | 2010-08-13T00:00:00.000000 |
| certa-2010-avi-382 | Vulnérabilité dans Cisco Wireless Control | 2010-08-13T00:00:00.000000 | 2010-08-13T00:00:00.000000 |
| certa-2010-avi-381 | Vulnérabilités dans Cisco ACE | 2010-08-13T00:00:00.000000 | 2010-08-13T00:00:00.000000 |
| certa-2010-avi-380 | Multiples vulnérabilités dans Apple iOS | 2010-08-12T00:00:00.000000 | 2010-08-12T00:00:00.000000 |
| certa-2010-avi-379 | Vulnérabilités dans Adobe Flash Media Server | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-378 | Vulnérabilité dans ColdFusion | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-377 | Vulnérabilités dans Adobe AIR et Flash Player | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-376 | Vulnérabilités dans Microsoft .NET Common Language Runtime et Microsoft Silverlight | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-375 | Vulnérabilités dans la fonctionnalité de suivi de services sous Microsoft Windows | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-374 | Vulnérabilités dans la pile TCP/IP de Microsoft Windows | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-373 | Vulnérabilité dans Microsoft Excel | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-372 | Multiples vulnérabilités dans Microsoft Office Word | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-371 | Vulnérabilité dans Microsoft Cinepak Codec | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-370 | Multiples vulnérabilités dans le seveur SMB de Microsoft Windows | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-369 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-368 | Vulnérabilité du Codec MicrosoftMPEG Layer-3 | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |
| certa-2010-avi-367 | Vulnérabilité dans Microsoft XML Core Services | 2010-08-11T00:00:00.000000 | 2010-08-11T00:00:00.000000 |