Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-3621 | 7.5 (v3.1) | IBM WebSphere Application Server Liberty is affected b… |
IBM |
WebSphere Application Server - Liberty |
2026-04-22T23:07:31.595Z | 2026-04-24T03:55:15.371Z |
| cve-2026-40517 | 8.4 (v4.0) 7.8 (v3.1) | radare2 < 6.1.4 Command Injection via PDB Parser Symbo… |
radareorg |
radare2 |
2026-04-22T21:44:12.543Z | 2026-04-23T16:24:25.301Z |
| cve-2026-41175 | Statamic: Unsafe method invocation via query value res… |
statamic |
cms |
2026-04-22T21:25:49.585Z | 2026-04-23T13:56:09.912Z | |
| cve-2026-41177 | Squidex has Blind SSRF via file:// Protocol in Restore… |
Squidex |
squidex |
2026-04-22T21:24:10.051Z | 2026-04-23T16:24:31.604Z | |
| cve-2026-41172 | Squidex vulnerable to Server-Side Request Forgery (SSR… |
Squidex |
squidex |
2026-04-22T21:22:55.727Z | 2026-04-23T12:52:16.717Z | |
| cve-2026-41171 | SSRF via Jint Scripting Engine HTTP Functions Due to M… |
Squidex |
squidex |
2026-04-22T21:16:14.013Z | 2026-04-23T12:54:01.682Z | |
| cve-2026-41170 | Squidex has SSRF via Backup Restore Endpoint — Admin-C… |
Squidex |
squidex |
2026-04-22T21:13:18.847Z | 2026-04-23T14:24:06.260Z | |
| cve-2026-41455 | 6.3 (v4.0) 8.5 (v3.1) | WeKan < 8.35 SSRF via Webhook URL |
wekan |
wekan |
2026-04-22T21:09:30.241Z | 2026-05-26T11:52:14.798Z |
| cve-2026-41454 | 8.7 (v4.0) 8.3 (v3.1) | WeKan < 8.35 Missing Authorization via Integration REST API |
wekan |
wekan |
2026-04-22T21:08:38.616Z | 2026-04-23T12:54:36.663Z |
| cve-2026-41314 | pypdf: Manipulated FlateDecode image dimensions can ex… |
py-pdf |
pypdf |
2026-04-22T21:08:14.700Z | 2026-04-23T14:21:47.589Z | |
| cve-2026-41313 | pypdf: Possible long runtimes for wrong size values in… |
py-pdf |
pypdf |
2026-04-22T21:04:59.877Z | 2026-04-23T16:24:39.932Z | |
| cve-2026-41312 | pypdf: Manipulated FlateDecode predictor parameters ca… |
py-pdf |
pypdf |
2026-04-22T21:02:53.156Z | 2026-04-23T13:45:30.296Z | |
| cve-2026-41168 | pypdf has possible long runtimes for wrong size values… |
py-pdf |
pypdf |
2026-04-22T20:49:10.401Z | 2026-04-23T16:24:48.712Z | |
| cve-2026-41167 | Jellystat has SQL Injection that leads to to Remote Co… |
CyferShepard |
Jellystat |
2026-04-22T20:39:31.044Z | 2026-04-23T13:46:23.680Z | |
| cve-2026-40882 | OpenRemote has XXE in Velbus Asset Import |
openremote |
openremote |
2026-04-22T20:33:23.304Z | 2026-04-23T13:47:07.964Z | |
| cve-2026-41166 | OpenRemote has Improper Access Control via updateUserR… |
openremote |
openremote |
2026-04-22T20:31:29.234Z | 2026-04-28T03:55:21.242Z | |
| cve-2026-41134 | Kiota: Code Generation Literal Injection |
microsoft |
kiota |
2026-04-22T20:20:57.541Z | 2026-04-27T13:35:02.423Z | |
| cve-2026-40937 | RustFS missing admin authorization on notification tar… |
rustfs |
rustfs |
2026-04-22T20:15:57.266Z | 2026-04-23T16:24:57.337Z | |
| cve-2026-33733 | EspoCRM has Admin TemplateManager path traversal that … |
espocrm |
espocrm |
2026-04-22T20:05:23.809Z | 2026-04-23T16:25:04.022Z | |
| cve-2026-33656 | EspoCRM vulnerable to authenticated RCE via Formula wi… |
espocrm |
espocrm |
2026-04-22T20:01:24.195Z | 2026-04-23T13:47:56.303Z | |
| cve-2026-34068 | nimiq-transaction: UpdateValidator transactions allows… |
nimiq |
nimiq-transaction |
2026-04-22T19:55:08.219Z | 2026-04-23T12:56:27.980Z | |
| cve-2026-3837 | 4.6 (v4.0) | Frappe Framework 16.10.0 - Stored DOM XSS in Multiple … |
Frappe |
Frappe |
2026-04-22T19:52:56.248Z | 2026-04-27T17:37:35.899Z |
| cve-2026-34067 | nimiq-transaction vulnerable to panic via `HistoryTree… |
nimiq |
nimiq-transaction |
2026-04-22T19:52:43.916Z | 2026-04-23T14:17:59.735Z | |
| cve-2026-34066 | nimiq-blockchain: Peer-triggerable panic during history sync |
nimiq |
nimiq-blockchain |
2026-04-22T19:47:49.249Z | 2026-04-23T12:57:06.467Z | |
| cve-2026-34065 | nimiq-primitives: Node crash due to missing interlink … |
nimiq |
nimiq-primitives |
2026-04-22T19:45:01.171Z | 2026-04-23T14:17:01.654Z | |
| cve-2026-34064 | nimiq-account: Vesting insufficient funds error can panic |
nimiq |
nimiq-account |
2026-04-22T19:43:04.453Z | 2026-04-23T16:25:19.186Z | |
| cve-2026-34063 | network-libp2p: Peer can crash the node by opening dis… |
nimiq |
network-libp2p |
2026-04-22T19:40:26.837Z | 2026-04-23T13:54:06.421Z | |
| cve-2026-3673 | 4.6 (v4.0) | Frappe Framework 16.10.0 - Stored DOM XSS in Tag Pill … |
Frappe |
Frappe |
2026-04-22T19:32:36.622Z | 2026-04-22T19:58:00.187Z |
| cve-2026-6019 | 2.1 (v4.0) | BaseCookie.js_output() does not neutralize embedded ch… |
Python Software Foundation |
CPython |
2026-04-22T19:28:08.720Z | 2026-06-10T18:58:07.798Z |
| cve-2026-34062 | Nimiq has Allocation of Resources Without Limits or Th… |
nimiq |
network-libp2p |
2026-04-22T19:23:36.838Z | 2026-04-23T12:57:42.075Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2010-avi-479 | Vulnérabilités dans Xpdf | 2010-10-08T00:00:00.000000 | 2010-10-20T00:00:00.000000 |
| certa-2010-avi-478 | Vulnérabilité dans RSA Authentication Client | 2010-10-08T00:00:00.000000 | 2010-10-08T00:00:00.000000 |
| certa-2010-avi-477 | Multiples vulnérabilités dans phpCAS | 2010-10-08T00:00:00.000000 | 2010-10-08T00:00:00.000000 |
| certa-2010-avi-476 | Vulnérabilité dans MIT Kerberos | 2010-10-07T00:00:00.000000 | 2010-10-07T00:00:00.000000 |
| certa-2010-avi-475 | Vulnérabilité dans Foxit Reader et Foxit Phantom | 2010-10-07T00:00:00.000000 | 2010-10-07T00:00:00.000000 |
| certa-2010-avi-474 | Multiples vulnérabilités dans TYPO3 | 2010-10-07T00:00:00.000000 | 2010-10-27T00:00:00.000000 |
| certa-2010-avi-473 | Vulnérabilités dans MantisBT | 2010-10-06T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| certa-2010-avi-472 | Vulnérabilité dans Dovecot | 2010-10-06T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| certa-2010-avi-471 | Vulnérabilité dans PostgreSQL | 2010-10-06T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| certa-2010-avi-470 | Vulnérabilité dans Adobe Reader et Adobe Acrobat | 2010-10-06T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| certa-2010-avi-469 | Vulnérabilités dans MySQL | 2010-10-05T00:00:00.000000 | 2010-10-05T00:00:00.000000 |
| certa-2010-avi-468 | Vulnérabilité dans Novell iManager | 2010-10-04T00:00:00.000000 | 2010-10-04T00:00:00.000000 |
| certa-2010-avi-467 | Vulnérabilité dans Blue Coat ProxySG | 2010-10-04T00:00:00.000000 | 2010-10-04T00:00:00.000000 |
| certa-2010-avi-466 | Vulnérabilités dans les produits Horde | 2010-10-04T00:00:00.000000 | 2010-10-04T00:00:00.000000 |
| certa-2010-avi-464 | Vulnérabilité dans les commutateurs 3Com H3C 3100 et 3600 | 2010-10-01T00:00:00.000000 | 2010-10-01T00:00:00.000000 |
| certa-2010-avi-463 | Vulnérabilité dans IBM WebSphere Application Server Community Edition | 2010-10-01T00:00:00.000000 | 2010-10-01T00:00:00.000000 |
| certa-2010-avi-462 | Vulnérabilité dans HP-UX Directory Server | 2010-10-01T00:00:00.000000 | 2010-10-01T00:00:00.000000 |
| certa-2010-avi-461 | Multiples vulnérabilités dans VMware ESX Server | 2010-10-01T00:00:00.000000 | 2010-10-01T00:00:00.000000 |
| certa-2010-avi-460 | Vulnérabilité dans le noyau Linux | 2010-09-30T00:00:00.000000 | 2010-09-30T00:00:00.000000 |
| certa-2010-avi-459 | Multiples vulnérabilités dans BIND | 2010-09-30T00:00:00.000000 | 2010-09-30T00:00:00.000000 |
| certa-2010-avi-458 | Vulnérabilité dans ASP.NET | 2010-09-29T00:00:00.000000 | 2010-09-29T00:00:00.000000 |
| certa-2010-avi-457 | Multiples vulnérabilités dans les produits VMware | 2010-09-24T00:00:00.000000 | 2010-09-24T00:00:00.000000 |
| certa-2010-avi-456 | Multiples vulnérabilités dans Cisco IOS | 2010-09-24T00:00:00.000000 | 2010-09-24T00:00:00.000000 |
| certa-2010-avi-455 | Vulnérabilité dans Cisco Unified Communications Manager | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-454 | Vulnérabilités dans Alcatel-Lucent OmniTouch Contact Center Standard Edition | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-453 | Vulnérabilité des produits Alcatel-Lucent OmniVista 4760 | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-452 | Vulnérabilté dans RSA Authentication Agent | 2010-09-23T00:00:00.000000 | 2010-09-23T00:00:00.000000 |
| certa-2010-avi-451 | Multiples vulnérabilités dans Plesk Sitebuilder | 2010-09-22T00:00:00.000000 | 2010-09-22T00:00:00.000000 |
| certa-2010-avi-450 | Vulnérabilité dans 7-zip | 2010-09-22T00:00:00.000000 | 2010-09-22T00:00:00.000000 |
| certa-2010-avi-449 | Vulnérabilité dans bzip2 | 2010-09-22T00:00:00.000000 | 2010-11-29T00:00:00.000000 |