Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-32965 | 7.5 (v3.1) 8.7 (v4.0) | Initialization of a resource with an insecure def… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:17:33.917Z | 2026-04-20T14:23:36.842Z |
| cve-2026-33558 | Apache Kafka, Apache Kafka Clients: Information Exposu… |
Apache Software Foundation |
Apache Kafka |
2026-04-20T13:20:38.059Z | 2026-04-20T14:20:41.640Z | |
| cve-2026-40527 | 8.5 (v4.0) 7.8 (v3.1) | radare2 Command Injection via DWARF Parameter Names |
radareorg |
radare2 |
2026-04-17T20:25:20.143Z | 2026-04-20T14:20:04.639Z |
| cve-2026-1838 | Hostel <= 1.1.6 - Reflected Cross-Site Scripting via '… |
prasunsen |
Hostel |
2026-04-18T01:26:04.643Z | 2026-04-20T14:19:29.627Z | |
| cve-2026-2986 | Contextual Related Posts <= 4.2.1 - Authenticated (Con… |
ajay |
Contextual Related Posts |
2026-04-18T11:16:10.980Z | 2026-04-20T14:19:06.323Z | |
| cve-2026-6563 | H3C Magic B1 aspForm SetAPWifiorLedInfoById buffer overflow |
H3C |
Magic B1 |
2026-04-19T08:30:14.248Z | 2026-04-20T14:18:45.761Z | |
| cve-2026-6571 | kodcloud KodExplorer systemRole.class.php roleGroupAct… |
kodcloud |
KodExplorer |
2026-04-19T12:00:17.810Z | 2026-04-20T14:18:17.474Z | |
| cve-2025-66335 | Apache Doris MCP Server: MCP SQL inject |
Apache Software Foundation |
Apache Doris MCP Server |
2026-04-20T13:27:27.764Z | 2026-04-20T14:17:11.395Z | |
| cve-2026-6649 | Qibo CMS headers server-side request forgery |
Qibo |
CMS |
2026-04-20T13:30:41.191Z | 2026-04-20T14:14:18.603Z | |
| cve-2025-15056 | 5.1 (v4.0) | Quill 2.0.3 - Lack of data validation in HTML export a… |
Slab |
Quill |
2026-01-13T20:39:29.627Z | 2026-04-20T14:10:18.123Z |
| cve-2026-32964 | 6.5 (v3.1) 6.9 (v4.0) | SD-330AC and AMC Manager provided by silex techno… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:17:52.839Z | 2026-04-20T14:08:52.559Z |
| cve-2026-21709 | N/A | A vulnerability allowing a local attacker with ad… |
Veeam |
Backup and Replication |
2026-04-17T15:32:10.755Z | 2026-04-20T14:06:52.636Z |
| cve-2026-6577 | liangliangyy DjangoBlog logtracks Endpoint views.py mi… |
liangliangyy |
DjangoBlog |
2026-04-19T19:30:15.098Z | 2026-04-20T14:06:48.414Z | |
| cve-2026-23776 | 7.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T08:56:41.213Z | 2026-04-20T14:06:32.671Z |
| cve-2024-23441 | 5.5 (v3.1) | Vba32 Antivirus v3.36.0 - Denial of Service (DoS) |
VirusBlokAda |
Vba32 Antivirus |
2024-01-29T16:06:17.742Z | 2026-04-20T14:06:25.016Z |
| cve-2026-6582 | TransformerOptimus SuperAGI Vector Database Management… |
TransformerOptimus |
SuperAGI |
2026-04-19T22:45:11.780Z | 2026-04-20T14:06:22.007Z | |
| cve-2026-6369 | 5.7 (v4.0) | Exposed Session Token in canonical-livepatch client snap |
Canonical |
canonical-livepatch |
2026-04-20T13:38:13.691Z | 2026-04-20T14:06:18.537Z |
| cve-2025-46605 | 6.2 (v3.1) | Dell PowerProtect Data Domain with Data Domain Op… |
Dell |
PowerProtect Data Domain |
2026-04-17T11:27:24.378Z | 2026-04-20T14:06:10.099Z |
| cve-2026-32963 | 6.1 (v3.0) 5.1 (v4.0) | SD-330AC and AMC Manager provided by silex techno… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:18:07.431Z | 2026-04-20T14:04:22.838Z |
| cve-2024-1297 | 7.2 (v3.1) | Loomio 2.22.0 - Code injection |
Loomio |
Loomio |
2024-02-19T23:41:47.207Z | 2026-04-20T14:00:52.781Z |
| cve-2026-32961 | 5.3 (v3.1) 6.9 (v4.0) | SD-330AC and AMC Manager provided by silex techno… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:18:37.055Z | 2026-04-20T13:57:57.283Z |
| cve-2025-13502 | 7.5 (v3.1) | Webkit: webkitgtk / wpe webkit: out-of-bounds read and… |
The WebKitGTK Team |
webkitgtk |
2025-11-25T08:02:26.022Z | 2026-04-20T13:57:49.229Z |
| cve-2026-32960 | 6.5 (v3.1) 7.1 (v4.0) | SD-330AC and AMC Manager provided by silex techno… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:18:47.538Z | 2026-04-20T13:57:13.495Z |
| cve-2026-32959 | 5.9 (v3.1) 8.2 (v4.0) | SD-330AC and AMC Manager provided by silex techno… |
silex technology, Inc. |
SD-330AC |
2026-04-20T03:18:56.184Z | 2026-04-20T13:56:27.714Z |
| cve-2024-0849 | 5 (v3.1) | Leanote 2.7.0 - Local File Read |
Leanote |
Leanote |
2024-02-07T02:50:42.355Z | 2026-04-20T13:54:19.110Z |
| cve-2026-6604 | modelscope agentscope Cloud Metadata Endpoint _openai_… |
modelscope |
agentscope |
2026-04-20T04:15:11.588Z | 2026-04-20T13:53:04.341Z | |
| cve-2026-6609 | liangliangyy DjangoBlog views.py form_valid improper a… |
liangliangyy |
DjangoBlog |
2026-04-20T05:30:16.620Z | 2026-04-20T13:51:42.600Z | |
| cve-2026-2262 | Easy Appointments <= 3.12.21 - Unauthenticated Sensiti… |
easyappointments |
Easy Appointments |
2026-04-17T23:26:48.863Z | 2026-04-20T13:51:28.513Z | |
| cve-2026-6614 | TransformerOptimus SuperAGI project.py get_projects_or… |
TransformerOptimus |
SuperAGI |
2026-04-20T06:45:11.801Z | 2026-04-20T13:51:06.467Z | |
| cve-2026-6644 | 9.4 (v4.0) | A command injection vulnerability was found in the PPT… |
ASUSTOR Inc. |
ADM |
2026-04-20T06:54:42.989Z | 2026-04-20T13:50:31.828Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2019-000007 | OpenAM (Open Source Edition) vulnerable to open redirect | 2019-02-06T15:45+09:00 | 2019-08-28T11:00+09:00 |
| jvndb-2018-000132 | Multiple vulnerabilities in Toshiba Lighting & Technology Corporation Home gateway | 2018-12-19T15:20+09:00 | 2019-08-28T10:45+09:00 |
| jvndb-2018-000133 | cordova-plugin-ionic-webview vulnerable to path traversal | 2018-12-21T14:17+09:00 | 2019-08-28T10:04+09:00 |
| jvndb-2018-000125 | The installer of MARKET SPEED may insecurely load Dynamic Link Libraries | 2018-11-28T17:27+09:00 | 2019-08-28T10:01+09:00 |
| jvndb-2019-000001 | WordPress plugin "spam-byebye" vulnerable to cross-site scripting | 2019-01-10T15:45+09:00 | 2019-08-28T09:54+09:00 |
| jvndb-2018-000092 | Multiple vulnerabilities in INplc | 2018-09-07T16:49+09:00 | 2019-08-28T09:51+09:00 |
| jvndb-2018-000127 | EC-CUBE vulnerable to open redirect | 2018-11-28T17:24+09:00 | 2019-08-28T09:42+09:00 |
| jvndb-2018-000118 | The installer of Windows10 Fall Creators Update Modify module for Security Measures tool may insecurely load Dynamic Link Libraries | 2018-11-09T16:13+09:00 | 2019-08-27T18:03+09:00 |
| jvndb-2018-000093 | Multiple script injection vulnerabilities in multiple Yamaha network devices | 2018-08-29T18:01+09:00 | 2019-08-27T17:53+09:00 |
| jvndb-2018-000122 | Multiple vulnerabilities in Panasonic BN-SDWBP3 | 2019-06-28T18:28+09:00 | 2019-08-27T17:46+09:00 |
| jvndb-2018-000134 | PgpoolAdmin fails to restrict access permissions | 2018-12-21T14:10+09:00 | 2019-08-27T17:41+09:00 |
| jvndb-2018-000100 | +Message App fails to verify SSL server certificates | 2018-09-27T16:52+09:00 | 2019-08-27T17:22+09:00 |
| jvndb-2018-000124 | Multiple vulnerabilities in RICOH Interactive Whiteboard | 2018-11-27T15:26+09:00 | 2019-08-27T17:01+09:00 |
| jvndb-2018-000076 | Multiple vulnerabilities in Aterm W300P | 2018-07-12T15:04+09:00 | 2019-08-27T16:56+09:00 |
| jvndb-2018-000130 | Cybozu Garoon access restriction bypass vulnerability | 2018-12-10T14:14+09:00 | 2019-08-27T16:54+09:00 |
| jvndb-2018-009387 | Mizuho Bank Mizuho Direct App for Android fails to verify SSL server certificates | 2018-11-19T15:44+09:00 | 2019-08-27T16:48+09:00 |
| jvndb-2018-000136 | Installer of Mapping Tool may insecurely load Dynamic Link Libraries | 2018-12-25T16:18+09:00 | 2019-08-27T16:36+09:00 |
| jvndb-2018-000115 | WordPress plugin "Event Calendar WD" vulnerable to cross-site scripting | 2018-11-02T14:56+09:00 | 2019-08-27T15:15+09:00 |
| jvndb-2018-000135 | WordPress plugin "Google XML Sitemaps" vulnerable to cross-site scripting | 2018-12-25T16:19+09:00 | 2019-08-27T15:12+09:00 |
| jvndb-2018-000137 | GROWI vulnerable to cross-site scripting | 2018-12-26T16:36+09:00 | 2019-08-27T15:07+09:00 |
| jvndb-2018-000077 | Multiple vulnerabilities in Aterm HC100RC | 2018-07-12T15:04+09:00 | 2019-08-27T13:52+09:00 |
| jvndb-2018-000075 | Multiple OS command injection vulnerabilities in Aterm WG1200HP | 2018-07-12T15:04+09:00 | 2019-08-27T13:44+09:00 |
| jvndb-2018-000119 | Cybozu Mailwise vulnerable to directory traversal | 2018-11-14T15:34+09:00 | 2019-08-27T13:37+09:00 |
| jvndb-2018-000120 | Multiple directory traversal vulnerabilities in Cybozu Office | 2018-11-14T15:38+09:00 | 2019-08-27T12:28+09:00 |
| jvndb-2018-000121 | Cybozu Dezie vulnerable to directory traversal | 2018-11-14T15:42+09:00 | 2019-08-27T12:25+09:00 |
| jvndb-2018-000126 | Multiple vulnerabilities in Cybozu Remote Service | 2018-12-10T14:26+09:00 | 2019-08-27T11:48+09:00 |
| jvndb-2018-000129 | Multiple vulnerabilities in i-FILTER | 2018-12-07T14:30+09:00 | 2019-08-27T11:45+09:00 |
| jvndb-2018-000117 | Multiple vulnerabilities in WordPress plugin "LearnPress" | 2018-11-09T16:13+09:00 | 2019-08-27T11:35+09:00 |
| jvndb-2018-000131 | Multiple vulnerabilities in Aterm WF1200CR and Aterm WG1200CR | 2018-12-14T14:53+09:00 | 2019-08-27T11:33+09:00 |
| jvndb-2018-000097 | Multiple FXC network devices vulnerable to cross-site scripting | 2018-09-13T13:57+09:00 | 2019-08-27T11:30+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0408 | Multiples vulnérabilités dans les produits Microsoft | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0407 | Multiples vulnérabilités dans Microsoft Azure | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0406 | Vulnérabilité dans Microsoft .Net | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0405 | Multiples vulnérabilités dans Microsoft Windows | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0404 | Multiples vulnérabilités dans Microsoft Office | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0403 | Multiples vulnérabilités dans les produits Ivanti | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0402 | Multiples vulnérabilités dans les produits Intel | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0400 | Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0399 | Multiples vulnérabilités dans les produits Fortinet | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0398 | Vulnérabilité dans les produits Schneider Electric | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0397 | Multiples vulnérabilités dans les produits Siemens | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0395 | Vulnérabilité dans les produits Citrix | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0394 | Multiples vulnérabilités dans les produits Intel | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0393 | Multiples vulnérabilités dans les produits Apple | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0391 | Vulnérabilité dans Xen | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0390 | Vulnérabilité dans les produits VMware | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0389 | Vulnérabilité dans les produits VMware | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| certfr-2025-avi-0388 | Multiples vulnérabilités dans les produits Mitel | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| certfr-2025-avi-0387 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0386 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0385 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0384 | Multiples vulnérabilités dans les produits IBM | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0383 | Vulnérabilité dans Microsoft Edge | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0382 | Multiples vulnérabilités dans les produits F5 | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0381 | Multiples vulnérabilités dans GitLab | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0380 | Vulnérabilité dans PostgreSQL | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0379 | Multiples vulnérabilités dans les produits SonicWall | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0378 | Multiples vulnérabilités dans les produits Cisco | 2025-05-09T00:00:00.000000 | 2025-05-09T00:00:00.000000 |
| certfr-2025-avi-0377 | Multiples vulnérabilités dans les produits Elastic | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |
| certfr-2025-avi-0376 | Vulnérabilité dans Google Chrome | 2025-05-07T00:00:00.000000 | 2025-05-07T00:00:00.000000 |