Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-6300 | N/A | Use after free in CSS in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-15T19:04:48.606Z | 2026-04-16T03:55:56.815Z |
| cve-2026-6359 | N/A | Use after free in Video in Google Chrome on Windo… |
Google |
Chrome |
2026-04-15T19:04:48.203Z | 2026-04-16T03:55:55.574Z |
| cve-2026-6358 | N/A | Use after free in XR in Google Chrome on Android … |
Google |
Chrome |
2026-04-15T19:04:47.677Z | 2026-04-16T03:55:54.349Z |
| cve-2026-6299 | N/A | Use after free in Prerender in Google Chrome prio… |
Google |
Chrome |
2026-04-15T19:04:47.116Z | 2026-04-16T03:55:53.177Z |
| cve-2026-6298 | N/A | Heap buffer overflow in Skia in Google Chrome pri… |
Google |
Chrome |
2026-04-15T19:04:46.537Z | 2026-04-15T20:25:53.459Z |
| cve-2026-6297 | N/A | Use after free in Proxy in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:46.102Z | 2026-04-16T03:55:52.024Z |
| cve-2026-6296 | N/A | Heap buffer overflow in ANGLE in Google Chrome pr… |
Google |
Chrome |
2026-04-15T19:04:45.229Z | 2026-04-16T03:56:14.151Z |
| cve-2026-40919 | 6.1 (v3.1) | Gimp: gimp: denial of service via specially crafted se… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:16.272Z | 2026-04-15T20:01:40.521Z |
| cve-2026-40918 | 5.5 (v3.1) | Gimp: gimp: denial of service via crafted pvr image file |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:14.823Z | 2026-04-20T17:10:52.907Z |
| cve-2026-40917 | 5 (v3.1) | Gimp: gimp: application crashes or information disclos… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:09.003Z | 2026-04-20T17:10:53.279Z |
| cve-2026-40916 | 5 (v3.1) | Gimp: gimp: denial of service due to stack buffer over… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:58:57.615Z | 2026-04-20T17:10:48.850Z |
| cve-2026-40915 | 5.5 (v3.1) | Gimp: gimp: heap buffer overflow due to integer overfl… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:58:52.059Z | 2026-04-20T17:10:46.262Z |
| cve-2026-21727 | Grafana Correlations: Cross-Tenant Data Disclosure and… |
Grafana |
Grafana Correlations |
2026-04-15T18:57:25.185Z | 2026-04-20T18:59:38.753Z | |
| cve-2026-5189 | 9.2 (v4.0) | Nexus Repository 3 - Hardcoded Credential in Internal … |
Sonatype |
Nexus Repository |
2026-04-15T18:43:32.166Z | 2026-04-16T10:01:24.305Z |
| cve-2026-33667 | OpenProject: 2FA OTP Verification Missing Rate Limiting |
opf |
openproject |
2026-04-15T18:43:14.130Z | 2026-04-15T20:00:14.503Z | |
| cve-2026-40256 | Weblate: Prefix-Based Repository Boundary Check Bypass… |
WeblateOrg |
weblate |
2026-04-15T18:36:44.975Z | 2026-04-16T14:11:15.386Z | |
| cve-2026-34632 | 8.2 (v3.1) | Photoshop Installer | CWE-427: Uncontrolled Search Pat… |
Adobe |
Adobe Photoshop Installer |
2026-04-15T18:35:52.192Z | 2026-04-22T16:23:58.307Z |
| cve-2026-6245 | 5.5 (v3.1) | Sssd: out-of-bounds read in the sssd |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-04-15T18:35:19.401Z | 2026-04-15T20:01:50.488Z |
| cve-2026-39845 | Weblate: SSRF via the webhook add-on using unprotected… |
WeblateOrg |
weblate |
2026-04-15T18:26:51.706Z | 2026-04-15T20:01:56.793Z | |
| cve-2026-34393 | Weblate: Privilege escalation in the user API endpoint |
WeblateOrg |
weblate |
2026-04-15T18:24:30.813Z | 2026-04-15T18:38:53.920Z | |
| cve-2026-34244 | Weblate: SSRF via Project-Level Machinery Configuration |
WeblateOrg |
weblate |
2026-04-15T18:22:42.551Z | 2026-04-15T18:50:10.569Z | |
| cve-2026-6383 | 5.4 (v3.1) | Kubevirt: kubevirt: unauthorized subresource access du… |
Red Hat |
Red Hat OpenShift Virtualization 4 |
2026-04-15T18:22:30.589Z | 2026-04-15T18:40:31.052Z |
| cve-2026-34242 | Weblate: Arbitrary File Read via Symlink |
WeblateOrg |
weblate |
2026-04-15T18:19:59.552Z | 2026-04-15T20:02:06.899Z | |
| cve-2026-33440 | Weblate: Authenticated SSRF via redirect bypass of ALL… |
WeblateOrg |
weblate |
2026-04-15T18:15:12.560Z | 2026-04-15T18:49:25.077Z | |
| cve-2026-33435 | Weblate: Remote code execution during backup restoration |
WeblateOrg |
weblate |
2026-04-15T18:13:07.568Z | 2026-04-15T18:40:27.204Z | |
| cve-2026-4857 | 8.4 (v3.1) | SailPoint IdentityIQ Debug UI Incorrect Authorization |
SailPoint Technologies |
IdentityIQ |
2026-04-15T18:08:45.737Z | 2026-04-16T03:55:39.481Z |
| cve-2026-33220 | Weblate: JavaScript localization CDN add-on allows arb… |
WeblateOrg |
weblate |
2026-04-15T18:03:40.728Z | 2026-04-16T14:10:15.340Z | |
| cve-2026-33214 | Weblate has improper access control for the translatio… |
WeblateOrg |
weblate |
2026-04-15T17:51:46.812Z | 2026-04-15T20:02:14.057Z | |
| cve-2026-33212 | Weblate: Improper access control for pending tasks in API |
WeblateOrg |
weblate |
2026-04-15T17:48:17.842Z | 2026-04-15T18:09:01.991Z | |
| cve-2026-6290 | 8 (v3.1) | Velociraptor Query() Plugin Misapplies Permissions To Orgs |
Rapid7 |
Velociraptor |
2026-04-15T17:29:04.306Z | 2026-04-16T03:55:38.112Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2018-000135 | WordPress plugin "Google XML Sitemaps" vulnerable to cross-site scripting | 2018-12-25T16:19+09:00 | 2019-08-27T15:12+09:00 |
| jvndb-2018-000136 | Installer of Mapping Tool may insecurely load Dynamic Link Libraries | 2018-12-25T16:18+09:00 | 2019-08-27T16:36+09:00 |
| jvndb-2018-000133 | cordova-plugin-ionic-webview vulnerable to path traversal | 2018-12-21T14:17+09:00 | 2019-08-28T10:04+09:00 |
| jvndb-2018-000134 | PgpoolAdmin fails to restrict access permissions | 2018-12-21T14:10+09:00 | 2019-08-27T17:41+09:00 |
| jvndb-2018-000132 | Multiple vulnerabilities in Toshiba Lighting & Technology Corporation Home gateway | 2018-12-19T15:20+09:00 | 2019-08-28T10:45+09:00 |
| jvndb-2018-000131 | Multiple vulnerabilities in Aterm WF1200CR and Aterm WG1200CR | 2018-12-14T14:53+09:00 | 2019-08-27T11:33+09:00 |
| jvndb-2018-000126 | Multiple vulnerabilities in Cybozu Remote Service | 2018-12-10T14:26+09:00 | 2019-08-27T11:48+09:00 |
| jvndb-2018-000130 | Cybozu Garoon access restriction bypass vulnerability | 2018-12-10T14:14+09:00 | 2019-08-27T16:54+09:00 |
| jvndb-2018-000129 | Multiple vulnerabilities in i-FILTER | 2018-12-07T14:30+09:00 | 2019-08-27T11:45+09:00 |
| jvndb-2018-000128 | Multiple vulnerabilities in multiple SEIKO EPSON printers and scanners | 2018-12-06T16:19+09:00 | 2019-09-27T09:55+09:00 |
| jvndb-2018-010028 | Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor | 2018-12-04T16:53+09:00 | 2019-01-24T18:35+09:00 |
| jvndb-2018-010027 | Problem with directory permissions in JP1/Operations Analytics | 2018-12-04T16:53+09:00 | 2019-01-24T18:36+09:00 |
| jvndb-2018-000123 | Panasonic applications register unquoted service paths | 2018-11-29T14:45+09:00 | 2019-09-27T10:31+09:00 |
| jvndb-2018-000125 | The installer of MARKET SPEED may insecurely load Dynamic Link Libraries | 2018-11-28T17:27+09:00 | 2019-08-28T10:01+09:00 |
| jvndb-2018-000127 | EC-CUBE vulnerable to open redirect | 2018-11-28T17:24+09:00 | 2019-08-28T09:42+09:00 |
| jvndb-2018-000124 | Multiple vulnerabilities in RICOH Interactive Whiteboard | 2018-11-27T15:26+09:00 | 2019-08-27T17:01+09:00 |
| jvndb-2018-009387 | Mizuho Bank Mizuho Direct App for Android fails to verify SSL server certificates | 2018-11-19T15:44+09:00 | 2019-08-27T16:48+09:00 |
| jvndb-2018-009328 | Multiple Vulnerabilities in JP1/VERITAS | 2018-11-15T17:16+09:00 | 2018-11-20T18:16+09:00 |
| jvndb-2018-000121 | Cybozu Dezie vulnerable to directory traversal | 2018-11-14T15:42+09:00 | 2019-08-27T12:25+09:00 |
| jvndb-2018-000120 | Multiple directory traversal vulnerabilities in Cybozu Office | 2018-11-14T15:38+09:00 | 2019-08-27T12:28+09:00 |
| jvndb-2018-000119 | Cybozu Mailwise vulnerable to directory traversal | 2018-11-14T15:34+09:00 | 2019-08-27T13:37+09:00 |
| jvndb-2018-000118 | The installer of Windows10 Fall Creators Update Modify module for Security Measures tool may insecurely load Dynamic Link Libraries | 2018-11-09T16:13+09:00 | 2019-08-27T18:03+09:00 |
| jvndb-2018-000117 | Multiple vulnerabilities in WordPress plugin "LearnPress" | 2018-11-09T16:13+09:00 | 2019-08-27T11:35+09:00 |
| jvndb-2018-000115 | WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting | 2018-11-02T14:56+09:00 | 2019-08-27T15:15+09:00 |
| jvndb-2018-000116 | Mail app for iOS vulnerable to denial-of-service (DoS) | 2018-11-02T14:42+09:00 | 2018-11-02T14:42+09:00 |
| jvndb-2018-000114 | Confluence Server vulnerable to script injection | 2018-10-29T13:36+09:00 | 2018-10-29T13:36+09:00 |
| jvndb-2018-000113 | Multiple vulnerabilities in OpenDolphin | 2018-10-26T16:16+09:00 | 2019-07-26T14:35+09:00 |
| jvndb-2018-000111 | BlueStacks App Player fails to restrict access permissions | 2018-10-24T16:13+09:00 | 2019-08-27T10:35+09:00 |
| jvndb-2018-000112 | SecureCore Standard Edition vulnerable to authentication bypass | 2018-10-24T16:07+09:00 | 2019-08-06T17:34+09:00 |
| jvndb-2018-008573 | Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor | 2018-10-23T15:15+09:00 | 2018-11-20T18:15+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0399 | Multiples vulnérabilités dans les produits Fortinet | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0398 | Vulnérabilité dans les produits Schneider Electric | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0397 | Multiples vulnérabilités dans les produits Siemens | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0396 | Multiples vulnérabilités dans les produits SAP | 2025-05-13T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0395 | Vulnérabilité dans les produits Citrix | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0394 | Multiples vulnérabilités dans les produits Intel | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0393 | Multiples vulnérabilités dans les produits Apple | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0392 | Multiples vulnérabilités dans Mattermost Server | 2025-05-13T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0391 | Vulnérabilité dans Xen | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0390 | Vulnérabilité dans les produits VMware | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0389 | Vulnérabilité dans les produits VMware | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| certfr-2025-avi-0388 | Multiples vulnérabilités dans les produits Mitel | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| certfr-2025-avi-0387 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0386 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0385 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0384 | Multiples vulnérabilités dans les produits IBM | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0383 | Vulnérabilité dans Microsoft Edge | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0382 | Multiples vulnérabilités dans les produits F5 | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0381 | Multiples vulnérabilités dans GitLab | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0380 | Vulnérabilité dans PostgreSQL | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0379 | Multiples vulnérabilités dans les produits SonicWall | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0378 | Multiples vulnérabilités dans les produits Cisco | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0377 | Multiples vulnérabilités dans les produits Elastic | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0376 | Vulnérabilité dans Google Chrome | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0375 | Vulnérabilité dans Liferay Portal et Liferay DXP | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0374 | Multiples vulnérabilités dans Tenable Security Center | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0373 | Multiples vulnérabilités dans MariaDB | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0372 | Multiples vulnérabilités dans Google Pixel | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0371 | Multiples vulnérabilités dans Google Android | 2025-05-06T00:00:00.000000 | 2025-05-06T00:00:00.000000 |
| certfr-2025-avi-0370 | Multiples vulnérabilités dans les produits IBM | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |