Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-33808 9.1 (v4.0) @fastify/express vulnerable to middleware authenticati… fastify
 @fastify/express
 2026-04-15T09:29:46.091Z 2026-04-15T13:10:24.054Z
cve-2026-3505 8.7 (v4.0) Unbounded PGP AEAD chunk size leads to pre-auth resour… Legion of the Bouncy Castle Inc.
 BC-JAVA
 2026-04-15T09:06:37.939Z 2026-04-21T16:04:10.293Z
cve-2026-5588 6.3 (v4.0) PKIX draft CompositeVerifier accepts empty signature s… Legion of the Bouncy Castle Inc.
 BC-JAVA
 2026-04-15T09:06:15.617Z 2026-04-21T15:43:55.191Z
cve-2026-5598 8.9 (v4.0) Non-constant time comparisons risk private key leakage… Legion of the Bouncy Castle Inc.
 BC-JAVA
 2026-04-15T09:05:56.277Z 2026-04-22T11:14:16.581Z
cve-2026-0636 5.5 (v4.0) LDAP Injection Vulnerability in LDAPStoreHelper.java Legion of the Bouncy Castle Inc.
 BC-JAVA
 2026-04-15T08:59:12.677Z 2026-04-15T13:12:22.433Z
cve-2025-14813 9.3 (v4.0) GOSTCTR implementation unable to process more than 255… Legion of the Bouncy Castle Inc.
 BC-JAVA
 2026-04-15T08:56:34.057Z 2026-04-15T13:19:49.520Z
cve-2025-52641 2.9 (v3.1) Internal Filesystem Exploration vulnerability HCL
 AION
 2026-04-15T08:47:33.167Z 2026-04-15T13:18:47.899Z
cve-2026-3643 Accessibly <= 3.0.3 - Missing Authorization to Unauthe… onthemapmarketing
 Accessibly – WordPress Website Accessibility
 2026-04-15T08:28:17.565Z 2026-04-15T16:13:04.206Z
cve-2026-4011 Power Charts <= 0.1.0 - Authenticated (Contributor+) S… dgwyer
 Power Charts – Responsive Beautiful Charts & Graphs
 2026-04-15T08:28:17.209Z 2026-04-15T16:13:09.653Z
cve-2026-3998 WM JqMath <= 1.3 - Authenticated (Contributor+) Stored… webmindpt
 WM JqMath
 2026-04-15T08:28:16.854Z 2026-04-15T18:08:29.456Z
cve-2026-1782 MetForm Pro <= 3.9.7 - Unauthenticated Payment Amount … Wpmet
 MetForm Pro
 2026-04-15T08:28:16.406Z 2026-04-15T18:07:59.020Z
cve-2026-3649 Katalogportal-pdf-sync Widget <= 1.0.0 - Missing Autho… colbeinformatik
 Katalogportal-pdf-sync Widget
 2026-04-15T08:28:15.977Z 2026-04-15T15:42:28.267Z
cve-2026-4091 OPEN-BRAIN <= 0.5.0 - Cross-Site Request Forgery faridsaniee
 OPEN-BRAIN
 2026-04-15T08:28:15.602Z 2026-04-15T15:48:59.579Z
cve-2026-3461 Visa Acceptance Solutions <= 2.1.0 - Unauthenticated A… visaacceptancesolutions
 Visa Acceptance Solutions
 2026-04-15T08:28:15.223Z 2026-04-15T15:50:14.969Z
cve-2026-3642 e-shot <= 1.0.2 - Missing Authorization to Authenticat… forfront
 e-shot
 2026-04-15T08:28:14.866Z 2026-04-16T13:39:34.490Z
cve-2026-4005 Coachific Shortcode <= 1.0 - Authenticated (Contributo… coachific
 Coachific Shortcode
 2026-04-15T08:28:14.507Z 2026-04-16T13:39:08.598Z
cve-2026-4002 Petje.af <= 2.1.8 - Cross-Site Request Forgery to Acco… petjeaf
 Petje.af
 2026-04-15T08:28:14.102Z 2026-04-15T15:50:38.937Z
cve-2026-3659 WP Circliful <= 1.2 - Authenticated (Contributor+) Sto… bappidgreat
 WP Circliful
 2026-04-15T08:28:13.507Z 2026-04-15T13:19:14.183Z
cve-2025-40899 7.1 (v4.0) 8.9 (v3.1) Stored Cross-Site Scripting (XSS) in Assets and Nodes … Nozomi Networks
 Guardian
 2026-04-15T08:18:36.427Z 2026-04-15T13:20:23.839Z
cve-2025-40897 7.2 (v4.0) 8.1 (v3.1) Incorrect authorization for Threat Intelligence in Gua… Nozomi Networks
 Guardian
 2026-04-15T08:18:05.174Z 2026-04-15T13:20:48.924Z
cve-2026-5694 Quick Interest Slider <= 3.1.5 - Unauthenticated Store… aerin
 Quick Interest Slider
 2026-04-15T07:45:30.201Z 2026-04-15T15:51:43.593Z
cve-2026-5617 Login as User <= 1.0.3 - Authenticated (Subscriber+) P… royalnavneet
 Login as User – Switch User & WooCommerce Login as Customer
 2026-04-15T07:45:29.695Z 2026-04-15T16:13:15.117Z
cve-2026-5717 VI: Include Post By <= 0.4.200706 - Authenticated (Con… knighthawk
 VI: Include Post By
 2026-04-15T07:45:29.078Z 2026-04-15T13:21:29.069Z
cve-2026-5088 N/A Apache::API::Password versions through v0.5.2 for Perl… JDEGUEST
 Apache::API::Password
 2026-04-15T07:03:13.742Z 2026-04-16T12:05:32.095Z
cve-2026-6293 Inquiry form to posts or pages <= 1.0 - Cross-Site Req… udamadu
 Inquiry form to posts or pages
 2026-04-15T06:46:18.890Z 2026-04-16T13:38:48.144Z
cve-2026-40719 7.5 (v3.1) Deadwood in MaraDNS 3.5.0036 allows attackers to … MaraDNS
 MaraDNS
 2026-04-15T06:23:09.912Z 2026-04-15T13:22:14.897Z
cve-2026-5160 Versions of the package github.com/yuin/goldmark/… n/a
 github.com/yuin/goldmark/renderer/html
 2026-04-15T05:00:01.655Z 2026-04-15T18:07:10.025Z
cve-2026-26291 5.4 (v3.0) 4.8 (v4.0) Stored cross-site scripting vulnerability exists … GROWI, Inc.
 GROWI
 2026-04-15T04:19:31.678Z 2026-04-15T16:13:20.770Z
cve-2026-5397 7.8 (v3.1) Vulnerability Related to an Uncontrolled Search Path E… OMRON SOCIAL SOLUTIONS CO., Ltd.
 PowerAttendant Standard Edition
 2026-04-15T04:11:29.716Z 2026-04-15T16:13:26.313Z
cve-2026-1555 WebStack <= 1.2024 - Unauthenticated Arbitrary File Upload Owen
 WebStack
 2026-04-15T03:37:20.474Z 2026-04-15T15:53:23.768Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2018-000053 Multiple vulnerabilities in Cybozu Office 2018-05-22T14:30+09:00 2018-08-30T16:03+09:00
jvndb-2018-000052 Nessus vulnerable to cross-site scripting 2018-05-21T13:39+09:00 2018-08-30T13:47+09:00
jvndb-2018-000049 Multiple Microsoft Windows applications and installers may insecurely load Dynamic Link Libraries 2018-05-17T15:18+09:00 2019-07-05T16:40+09:00
jvndb-2018-000051 The installer of Visual C++ Redistributable may insecurely load Dynamic Link Libraries 2018-05-17T14:57+09:00 2019-07-05T16:41+09:00
jvndb-2018-000050 Self-Extracting Archive files created by IExpress may insecurely load Dynamic Link Libraries 2018-05-17T14:57+09:00 2018-08-21T16:40+09:00
jvndb-2018-000048 KINEPASS App fails to verify SSL server certificates 2018-05-11T14:34+09:00 2018-08-30T15:01+09:00
jvndb-2018-000047 IIJ SmartKey App for Android vulnerable to authentication bypass 2018-05-11T14:34+09:00 2019-12-27T18:11+09:00
jvndb-2018-003030 Access Control Vulnerability in Hitachi Infrastructure Analytics Advisor 2018-05-10T15:30+09:00 2018-07-31T12:12+09:00
jvndb-2018-000045 Multiple vulnerabilities in WordPress plugin "Ultimate Member" 2018-05-10T13:44+09:00 2018-08-30T18:11+09:00
jvndb-2018-000044 RT-AC68U vulnerable to cross-site scripting 2018-05-09T15:38+09:00 2018-08-30T12:20+09:00
jvndb-2018-000043 RT-AC1200HP vulnerable to cross-site scripting 2018-05-09T15:37+09:00 2018-08-30T12:15+09:00
jvndb-2018-000042 RT-AC87U vulnerable to cross-site scripting 2018-05-09T15:37+09:00 2018-08-30T12:32+09:00
jvndb-2018-000041 The installers of multiple CELSYS,Inc. software may insecurely load Dynamic Link Libraries 2018-04-27T15:19+09:00 2018-08-30T14:12+09:00
jvndb-2018-000040 WordPress plugin "Open Graph for Facebook, Google+ and Twitter Card Tags" vulnerable to cross-site scripting 2018-04-27T15:01+09:00 2018-08-30T13:54+09:00
jvndb-2018-000039 WordPress plugin "PixelYourSite" vulnerable to cross-site scripting 2018-04-27T14:24+09:00 2018-08-30T11:55+09:00
jvndb-2018-000038 WordPress plugin "WP Google Map Plugin" vulnerable to cross-site scripting 2018-04-27T14:15+09:00 2018-08-30T12:00+09:00
jvndb-2018-000037 WordPress plugin "Events Manager" vulnerable to cross-site scripting 2018-04-27T14:00+09:00 2018-08-30T11:48+09:00
jvndb-2018-000036 Joruri Gw vulnerable to arbitrary file upload 2018-04-26T15:19+09:00 2018-08-30T14:02+09:00
jvndb-2018-000035 EC-CUBE vulnerable to session fixation 2018-04-17T13:39+09:00 2018-08-22T17:42+09:00
jvndb-2018-000030 Installer of SoundEngine Free may insecurely load Dynamic Link Libraries 2018-04-13T13:52+09:00 2018-06-14T14:16+09:00
jvndb-2018-000034 Tenable Appliance vulnerable to cross-site scripting 2018-04-12T14:33+09:00 2018-06-14T14:20+09:00
jvndb-2018-000033 The installer of PhishWall Client Internet Explorer edition may insecurely load Dynamic Link Libraries 2018-04-12T14:27+09:00 2018-04-12T14:27+09:00
jvndb-2018-000032 Hatena Bookmark App for iOS contains an address bar spoofing vulnerability 2018-04-10T13:39+09:00 2018-04-10T13:39+09:00
jvndb-2018-000031 Multiple vulnerabilities in Cybozu Garoon 2018-04-09T14:27+09:00 2018-06-14T14:33+09:00
jvndb-2018-002257 DoS Vulnerability in JP1/ServerConductor/Deployment Manager and Hitachi Compute Systems Manager 2018-04-05T10:22+09:00 2018-04-10T10:55+09:00
jvndb-2018-000029 Safari vulnerable to script injection 2018-03-30T13:39+09:00 2018-06-14T14:02+09:00
jvndb-2018-000028 LXR vulnerable to OS command injection 2018-03-29T14:00+09:00 2018-06-14T14:08+09:00
jvndb-2018-000027 Multiple vulnerabilities in WZR-1750DHP2 2018-03-29T13:52+09:00 2018-06-14T14:12+09:00
jvndb-2018-000026 iRemoconWiFi App for Android fails to verify SSL server certificates 2018-03-27T13:40+09:00 2018-06-14T14:29+09:00
jvndb-2018-000025 The installer of PhishWall Client Firefox and Chrome edition for Windows may insecurely load Dynamic Link Libraries 2018-03-15T13:38+09:00 2018-06-14T13:43+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2025-avi-0309 Multiples vulnérabilités dans les produits IBM 2025-04-11T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0308 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-04-11T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0307 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-04-11T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0306 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2025-04-11T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0305 Multiples vulnérabilités dans Google Pixel 2025-04-11T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0304 Multiples vulnérabilités dans les produits Juniper Networks 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0303 Multiples vulnérabilités dans les produits Splunk 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0302 Multiples vulnérabilités dans Sonicwall NetExtender 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0301 Multiples vulnérabilités dans les produits Palo Alto Networks 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0300 Multiples vulnérabilités dans GitLab 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0299 Multiples vulnérabilités dans les produits Bitdefender 2025-04-10T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0298 Multiples vulnérabilités dans les produits Elastic 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0297 Vulnérabilité dans Spring Cloud Config 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0296 Multiples vulnérabilités dans Joomla! 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0295 Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM) 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0294 Multiples vulnérabilités dans les produits HPE Aruba Networking 2025-04-09T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-avi-0293 Multiples vulnérabilités dans les produits Fortinet 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0292 Multiples vulnérabilités dans les produits Adobe 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0291 Multiples vulnérabilités dans les produits Microsoft 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0290 Multiples vulnérabilités dans Microsoft Azure 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0289 Vulnérabilité dans Microsoft .Net 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0288 Multiples vulnérabilités dans Microsoft Windows 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0287 Multiples vulnérabilités dans Microsoft Office 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0286 Vulnérabilité dans Google Chrome 2025-04-09T00:00:00.000000 2025-04-09T00:00:00.000000
certfr-2025-avi-0285 Multiples vulnérabilités dans les produits SAP 2025-04-08T00:00:00.000000 2025-04-25T00:00:00.000000
certfr-2025-avi-0284 Multiples vulnérabilités dans les produits Siemens 2025-04-08T00:00:00.000000 2025-04-08T00:00:00.000000
certfr-2025-avi-0283 Multiples vulnérabilités dans VMware Tanzu Greenplum 2025-04-08T00:00:00.000000 2025-04-10T00:00:00.000000
certfr-2025-avi-0282 Multiples vulnérabilités dans Schneider Electric ConneXium Network Manager 2025-04-08T00:00:00.000000 2025-04-08T00:00:00.000000
certfr-2025-avi-0281 Multiples vulnérabilités dans Google Android 2025-04-08T00:00:00.000000 2025-04-08T00:00:00.000000
certfr-2025-avi-0280 Vulnérabilité dans les produits ESET 2025-04-07T00:00:00.000000 2025-04-07T00:00:00.000000
ID Description Published Updated