Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-32631 | Git for Windows: `git clone` from manipulated reposito… |
git-for-windows |
git |
2026-04-15T17:26:44.154Z | 2026-04-15T18:44:04.155Z | |
| cve-2026-5758 | N/A | Mafintosh's protocol-buffers-schema is vulnerable to p… |
Mafintosh |
Protocol-buffers-schema parser |
2026-04-15T17:20:13.551Z | 2026-04-15T18:55:45.526Z |
| cve-2025-15610 | 9.3 (v4.0) | Deserialization of untrusted data vulnerability i… |
OpenText, Inc |
RightFax |
2026-04-15T16:31:53.959Z | 2026-04-15T17:32:31.254Z |
| cve-2025-63029 | 7.6 (v3.1) | WordPress WCFM Marketplace plugin <= 3.7.1 - SQL Injec… |
WC Lovers |
WCFM Marketplace |
2026-04-15T16:21:23.512Z | 2026-04-15T17:16:01.919Z |
| cve-2026-6372 | 7.5 (v3.1) | WordPress Accept Cryptocurrencies with Plisio plugin <… |
Plisio |
Accept Cryptocurrencies with Plisio |
2026-04-15T16:16:46.970Z | 2026-04-16T14:06:37.842Z |
| cve-2026-20136 | Cisco Identity Services Engine Authenticated Privilege… |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:11:29.398Z | 2026-04-16T03:55:30.918Z | |
| cve-2026-20059 | Cisco Unity Connection Reflected Cross-Site Scripting … |
Cisco |
Cisco Unity Connection |
2026-04-15T16:11:22.828Z | 2026-04-15T16:56:33.949Z | |
| cve-2026-20061 | Cisco Unity Connection SQL Injection Vulnerability |
Cisco |
Cisco Unity Connection |
2026-04-15T16:11:20.865Z | 2026-04-15T16:56:34.089Z | |
| cve-2026-20060 | Cisco Unity Connection Open Redirect Vulnerability |
Cisco |
Cisco Unity Connection |
2026-04-15T16:11:20.842Z | 2026-04-15T16:56:34.222Z | |
| cve-2026-20170 | A vulnerability in the Desktop Agent functionalit… |
Cisco |
Cisco Webex Contact Center |
2026-04-15T16:10:03.920Z | 2026-04-15T16:56:34.563Z | |
| cve-2026-20184 | Cisco Webex Meetings Certificate Validation Vulnerability |
Cisco |
Cisco Webex Meetings |
2026-04-15T16:03:59.646Z | 2026-04-16T19:07:14.461Z | |
| cve-2026-20180 | Cisco Identity Services Engine Multiple Remote Code Ex… |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:03:51.335Z | 2026-04-16T03:55:33.630Z | |
| cve-2026-20152 | Cisco Secure Web Appliance Authentication Service Traf… |
Cisco |
Cisco Secure Web Appliance |
2026-04-15T16:03:43.828Z | 2026-04-16T19:05:18.524Z | |
| cve-2026-20161 | Cisco ThousandEyes Enterprise Agent Arbitrary File Ove… |
Cisco |
Cisco ThousandEyes Enterprise Agent |
2026-04-15T16:03:43.769Z | 2026-04-15T16:56:35.191Z | |
| cve-2026-20186 | Cisco Identity Services Engine Multiple Authenticated … |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:03:35.310Z | 2026-04-16T03:55:36.590Z | |
| cve-2026-20148 | Cisco Identity Services Engine Path Traversal Vulnerability |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:03:31.727Z | 2026-04-15T16:56:35.471Z | |
| cve-2026-20147 | Cisco Identity Services Engine Remote Code Execution V… |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:03:25.648Z | 2026-04-16T03:55:35.113Z | |
| cve-2026-20081 | Cisco Unity Connection Arbitrary File Download Vulnerability |
Cisco |
Cisco Unity Connection |
2026-04-15T16:03:23.282Z | 2026-04-15T17:06:37.914Z | |
| cve-2026-20078 | Cisco Unity Connection Arbitrary File Download Vulnerability |
Cisco |
Cisco Unity Connection |
2026-04-15T16:03:16.698Z | 2026-04-15T17:06:38.080Z | |
| cve-2026-20132 | Cisco Identity Services Engine Multiple Cross-Site Scr… |
Cisco |
Cisco Identity Services Engine Software |
2026-04-15T16:03:14.842Z | 2026-04-15T17:06:38.222Z | |
| cve-2026-6370 | 5.9 (v3.1) | WordPress Mini Ajax Cart for WooCommerce plugin <= 1.3… |
HashThemes |
Mini Ajax Cart for WooCommerce |
2026-04-15T16:02:14.957Z | 2026-04-16T14:09:47.438Z |
| cve-2025-15636 | 6.5 (v3.1) | WordPress YouTube Showcase plugin <= 3.5.1 - Cross Sit… |
Emarket-design |
YouTube Showcase |
2026-04-15T15:55:51.930Z | 2026-04-15T17:23:39.918Z |
| cve-2025-15635 | 4.3 (v3.1) | WordPress Smart Online Order for Clover plugin <= 1.6.… |
Zaytech |
Smart Online Order for Clover |
2026-04-15T15:49:53.280Z | 2026-04-16T14:15:13.253Z |
| cve-2025-53444 | 4.3 (v3.1) | WordPress Userpro plugin < 5.1.11 - Cross Site Request… |
DeluxeThemes |
Userpro |
2026-04-15T15:43:21.294Z | 2026-04-15T17:26:16.160Z |
| cve-2026-5387 | 9.3 (v4.0) | AVEVA Pipeline Simulation Missing Authorization |
AVEVA |
Pipeline Simulation 2025 |
2026-04-15T15:24:15.623Z | 2026-04-15T17:38:50.678Z |
| cve-2026-20205 | 7.2 (v3.1) | Sensitive Information Disclosure in ''_internal'' inde… |
Splunk |
Splunk MCP Server |
2026-04-15T15:17:58.202Z | 2026-04-15T17:39:19.517Z |
| cve-2026-20203 | 4.3 (v3.1) | Improper Access Control in Data Model Acceleration in … |
Splunk |
Splunk Enterprise |
2026-04-15T15:17:56.261Z | 2026-04-15T17:40:36.484Z |
| cve-2026-20204 | 7.1 (v3.1) | Improper Handling and Insufficient Isolation of Specif… |
Splunk |
Splunk Enterprise |
2026-04-15T15:17:54.019Z | 2026-04-16T03:55:29.794Z |
| cve-2026-20202 | 6.6 (v3.1) | Improper Input Validation during User Account Creation… |
Splunk |
Splunk Enterprise |
2026-04-15T15:17:43.871Z | 2026-04-16T03:55:28.582Z |
| cve-2025-12141 | 1.3 (v4.0) | Grafana Alerting Editors can edit destination of webho… |
Grafana |
Grafana Alerting |
2026-04-15T14:59:41.317Z | 2026-04-15T18:45:53.672Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2018-008547 | Clickjacking Vulnerability in Hitachi Device Manager | 2018-10-23T13:53+09:00 | 2018-11-20T18:14+09:00 |
| jvndb-2018-000110 | Web Isolation vulnerable to cross-site scripting | 2018-10-19T14:45+09:00 | 2019-07-26T14:06+09:00 |
| jvndb-2018-000109 | Multiple vulnerabilities in YukiWiki | 2018-10-19T14:31+09:00 | 2019-08-27T10:32+09:00 |
| jvndb-2018-000104 | Multiple vulnerabilities in FileZen | 2018-10-15T15:26+09:00 | 2019-07-26T17:00+09:00 |
| jvndb-2018-000107 | OpenAM (Open Source Edition) vulnerable to session management | 2018-10-12T14:44+09:00 | 2019-09-26T18:10+09:00 |
| jvndb-2018-000105 | Metabase vulnerable to cross-site scripting | 2018-10-11T15:54+09:00 | 2019-07-26T17:49+09:00 |
| jvndb-2018-000106 | User-friendly SVN vulnerable to cross-site scripting | 2018-10-09T16:27+09:00 | 2019-07-11T18:00+09:00 |
| jvndb-2018-000103 | Music Center for PC improperly verifies software update files | 2018-10-09T16:22+09:00 | 2019-07-26T15:57+09:00 |
| jvndb-2018-000102 | Multiple vulnerabilities in Denbun | 2018-10-04T16:11+09:00 | 2019-07-11T16:02+09:00 |
| jvndb-2018-000101 | The installer of Baidu Browser may insecurely load Dynamic Link Libraries | 2018-10-03T15:02+09:00 | 2019-08-27T10:39+09:00 |
| jvndb-2018-000100 | +Message App fails to verify SSL server certificates | 2018-09-27T16:52+09:00 | 2019-08-27T17:22+09:00 |
| jvndb-2018-000097 | Multiple FXC network devices vulnerable to cross-site scripting | 2018-09-13T13:57+09:00 | 2019-08-27T11:30+09:00 |
| jvndb-2018-000099 | Cybozu Garoon vulnerable to directory traversal | 2018-09-10T14:01+09:00 | 2019-07-26T15:28+09:00 |
| jvndb-2018-000092 | Multiple vulnerabilities in INplc | 2018-09-07T16:49+09:00 | 2019-08-28T09:51+09:00 |
| jvndb-2018-000095 | AttacheCase vulnerable to arbitrary script execution | 2018-08-31T15:59+09:00 | 2019-07-26T12:19+09:00 |
| jvndb-2018-000096 | QNAP Photo Station vulnerable to cross-site scripting | 2018-08-31T15:48+09:00 | 2019-07-25T16:09+09:00 |
| jvndb-2018-000094 | Movable Type vulnerable to cross-site scripting | 2018-08-30T17:34+09:00 | 2019-07-25T14:25+09:00 |
| jvndb-2018-000093 | Multiple script injection vulnerabilities in multiple Yamaha network devices | 2018-08-29T18:01+09:00 | 2019-08-27T17:53+09:00 |
| jvndb-2018-006460 | Path Traversal Vulnerability in Hitachi Automation Director | 2018-08-22T17:11+09:00 | 2018-08-22T17:11+09:00 |
| jvndb-2018-006459 | Path Traversal Vulnerability in JP1/Automatic Operation | 2018-08-22T17:11+09:00 | 2018-08-22T17:11+09:00 |
| jvndb-2018-000087 | The installer of Digital Paper App may insecurely load Dynamic Link Libraries | 2018-08-21T15:59+09:00 | 2019-07-25T16:17+09:00 |
| jvndb-2018-000091 | NoMachine App for Android vulnerable to environment variables alteration | 2018-08-17T13:49+09:00 | 2019-07-25T17:17+09:00 |
| jvndb-2018-006236 | Information Disclosure Vulnerability in Hitachi Command Suite | 2018-08-14T10:04+09:00 | 2019-07-24T17:02+09:00 |
| jvndb-2018-000086 | Multiple vulnerabilities in EC-CUBE Payment Module and GMO-PG Payment Module (PG Multi-Payment Service) for EC-CUBE | 2018-08-09T16:43+09:00 | 2018-08-09T16:43+09:00 |
| jvndb-2018-000089 | Multiple vulnerabilities in multiple I-O DATA network camera products | 2018-08-07T14:33+09:00 | 2019-07-25T16:00+09:00 |
| jvndb-2018-000090 | Multiple directory traversal vulnerabilities in AttacheCase | 2018-08-06T14:10+09:00 | 2019-07-25T14:32+09:00 |
| jvndb-2018-000085 | Multiple cross-site scripting vulnerabilities in GROWI | 2018-08-03T15:04+09:00 | 2019-07-05T17:13+09:00 |
| jvndb-2018-000084 | LINE MUSIC for Android fails to verify SSL server certificates | 2018-07-26T14:58+09:00 | 2019-07-25T17:28+09:00 |
| jvndb-2018-000083 | The installers of multiple Canon IT Solutions Inc. software programs may insecurely load Dynamic Link Libraries | 2018-07-24T14:43+09:00 | 2019-07-26T12:05+09:00 |
| jvndb-2018-000073 | Installer of ChatWork Desktop App for Windows may insecurely load Dynamic Link Libraries | 2018-07-23T14:28+09:00 | 2019-07-25T16:50+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0369 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0368 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0367 | Vulnérabilité dans le noyau Linux de Red Hat | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0366 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0365 | Vulnérabilité dans les produits Microsoft | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0364 | Multiples vulnérabilités dans Microsoft Azure | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0363 | Multiples vulnérabilités dans Microsoft Edge | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0362 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0361 | Multiples vulnérabilités dans les produits Mozilla | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0360 | Multiples vulnérabilités dans les produits Tenable | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0359 | Multiples vulnérabilités dans les produits Elastic | 2025-05-02T00:00:00.000000 | 2025-05-02T00:00:00.000000 |
| certfr-2025-avi-0358 | Multiples vulnérabilités dans les produits Mozilla | 2025-04-30T00:00:00.000000 | 2025-04-30T00:00:00.000000 |
| certfr-2025-avi-0357 | Vulnérabilité dans les produits Symantec | 2025-04-30T00:00:00.000000 | 2025-04-30T00:00:00.000000 |
| certfr-2025-avi-0356 | Multiples vulnérabilités dans Splunk User Behavior Analytics (UBA) | 2025-04-30T00:00:00.000000 | 2025-04-30T00:00:00.000000 |
| certfr-2025-avi-0355 | Multiples vulnérabilités dans Mattermost Server | 2025-04-30T00:00:00.000000 | 2025-08-19T00:00:00.000000 |
| certfr-2025-avi-0354 | Multiples vulnérabilités dans Google Chrome | 2025-04-30T00:00:00.000000 | 2025-04-30T00:00:00.000000 |
| certfr-2025-avi-0353 | Multiples vulnérabilités dans les produits VMware | 2025-04-29T00:00:00.000000 | 2025-04-29T00:00:00.000000 |
| certfr-2025-avi-0352 | Multiples vulnérabilités dans Apache Tomcat | 2025-04-29T00:00:00.000000 | 2025-04-29T00:00:00.000000 |
| certfr-2025-avi-0351 | Vulnérabilité dans LibreOffice | 2025-04-28T00:00:00.000000 | 2025-04-28T00:00:00.000000 |
| certfr-2025-avi-0350 | Vulnérabilité dans SAP NetWeaver | 2025-04-25T00:00:00.000000 | 2025-05-19T00:00:00.000000 |
| certfr-2025-avi-0349 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-04-25T00:00:00.000000 | 2025-04-25T00:00:00.000000 |
| certfr-2025-avi-0348 | Vulnérabilité dans Spring Boot | 2025-04-25T00:00:00.000000 | 2025-04-25T00:00:00.000000 |
| certfr-2025-avi-0347 | Vulnérabilité dans Sophos Taegis Endpoint Agent | 2025-04-25T00:00:00.000000 | 2025-04-25T00:00:00.000000 |
| certfr-2025-avi-0346 | Multiples vulnérabilités dans GitLab | 2025-04-24T00:00:00.000000 | 2025-04-24T00:00:00.000000 |
| certfr-2025-avi-0345 | Vulnérabilité dans Sonicwall SonicOS | 2025-04-24T00:00:00.000000 | 2025-04-24T00:00:00.000000 |
| certfr-2025-avi-0344 | Multiples vulnérabilités dans Grafana | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| certfr-2025-avi-0343 | Vulnérabilité dans Spring Security | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| certfr-2025-avi-0342 | Multiples vulnérabilités dans Google Chrome | 2025-04-23T00:00:00.000000 | 2025-04-23T00:00:00.000000 |
| certfr-2025-avi-0341 | Multiples vulnérabilités dans Traefik | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |
| certfr-2025-avi-0340 | Multiples vulnérabilités dans Moodle | 2025-04-22T00:00:00.000000 | 2025-04-22T00:00:00.000000 |