Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-40758 | 8.1 (v3.1) | WordPress Léonie theme <= 1.2.1 - PHP Object Injection… |
Elated-Themes |
Léonie |
2026-06-16T20:57:39.375Z | 2026-06-16T20:57:39.375Z |
| cve-2026-40755 | 8.1 (v3.1) | WordPress TechLink theme <= 1.3 - PHP Object Injection… |
Mikado-Themes |
TechLink |
2026-06-16T20:57:38.728Z | 2026-06-16T20:57:38.728Z |
| cve-2026-40754 | 8.1 (v3.1) | WordPress Roisin theme <= 1.4 - PHP Object Injection v… |
Elated-Themes |
Roisin |
2026-06-16T20:57:38.080Z | 2026-06-16T20:57:38.080Z |
| cve-2026-40751 | 8.1 (v3.1) | WordPress Ashtanga theme <= 1.2 - PHP Object Injection… |
Mikado-Themes |
Ashtanga |
2026-06-16T20:57:37.421Z | 2026-06-16T20:57:37.421Z |
| cve-2026-40739 | 8.1 (v3.1) | WordPress LuxeDrive theme <= 1.4 - PHP Object Injectio… |
Mikado-Themes |
LuxeDrive |
2026-06-16T20:57:36.767Z | 2026-06-16T20:57:36.767Z |
| cve-2026-40736 | 8.1 (v3.1) | WordPress Laurits theme <= 1.5.1 - PHP Object Injectio… |
Edge-Themes |
Laurits |
2026-06-16T20:57:36.124Z | 2026-06-16T20:57:36.124Z |
| cve-2026-39580 | 8.1 (v3.1) | WordPress Micdrop theme <= 1.3.1 - PHP Object Injectio… |
Select-Themes |
Micdrop |
2026-06-16T20:57:35.479Z | 2026-06-16T20:57:35.479Z |
| cve-2026-39578 | 8.1 (v3.1) | WordPress Valiance theme <= 1.2 - PHP Object Injection… |
Elated-Themes |
Valiance |
2026-06-16T20:57:34.827Z | 2026-06-16T20:57:34.827Z |
| cve-2026-39577 | 8.1 (v3.1) | WordPress Playroom theme <= 1.4.1 - PHP Object Injecti… |
Elated-Themes |
Playroom |
2026-06-16T20:57:34.166Z | 2026-06-16T20:57:34.166Z |
| cve-2026-39568 | 8.1 (v3.1) | WordPress Mr. SEO theme <= 2.0 - Local File Inclusion … |
Elated-Themes |
Mr. SEO |
2026-06-16T20:57:33.514Z | 2026-06-16T20:57:33.514Z |
| cve-2026-39567 | 8.1 (v3.1) | WordPress Santé theme <= 1.5.1 - PHP Object Injection … |
Select-Themes |
Santé |
2026-06-16T20:57:32.852Z | 2026-06-16T20:57:32.852Z |
| cve-2026-39557 | 8.1 (v3.1) | WordPress NeoBeat theme <= 1.7 - PHP Object Injection … |
Elated-Themes |
NeoBeat |
2026-06-16T20:57:32.203Z | 2026-06-16T20:57:32.203Z |
| cve-2026-39554 | 8.1 (v3.1) | WordPress Fidalgo theme <= 1.2.2 - PHP Object Injectio… |
Elated-Themes |
Fidalgo |
2026-06-16T20:57:31.553Z | 2026-06-16T20:57:31.553Z |
| cve-2026-39549 | 8.1 (v3.1) | WordPress Aperitif theme <= 1.5 - Local File Inclusion… |
Elated-Themes |
Aperitif |
2026-06-16T20:57:30.903Z | 2026-06-16T20:57:30.903Z |
| cve-2026-39548 | 7.1 (v3.1) | WordPress MagOne theme <= 9.0 - Reflected Cross Site S… |
Sneeit |
MagOne |
2026-06-16T20:57:30.254Z | 2026-06-16T20:57:30.254Z |
| cve-2026-39547 | 8.1 (v3.1) | WordPress Getaway theme < 1.8 - Local File Inclusion v… |
Select-Themes |
Getaway |
2026-06-16T20:57:29.562Z | 2026-06-16T20:57:29.562Z |
| cve-2026-39539 | 8.1 (v3.1) | WordPress Alloggio - Hotel Booking theme <= 2.1.2 - PH… |
Edge-Themes |
Alloggio - Hotel Booking |
2026-06-16T20:57:28.909Z | 2026-06-16T20:57:28.909Z |
| cve-2026-39529 | 9.8 (v3.1) | WordPress Elementra theme <= 1.0.9 - PHP Object Inject… |
ThemeREX Group |
Elementra |
2026-06-16T20:57:28.249Z | 2026-06-16T20:57:28.249Z |
| cve-2026-39522 | 8.1 (v3.1) | WordPress Solene theme <= 3.4 - Local File Inclusion v… |
Elated-Themes |
Solene |
2026-06-16T20:57:27.595Z | 2026-06-16T20:57:27.595Z |
| cve-2026-39446 | 8.1 (v3.1) | WordPress Kapee theme < 1.7.0 - PHP Object Injection v… |
PressLayouts |
Kapee |
2026-06-16T20:57:26.934Z | 2026-06-16T20:57:26.934Z |
| cve-2026-39443 | 8.1 (v3.1) | WordPress EmallShop theme <= 2.4.21 - PHP Object Injec… |
PressLayouts |
EmallShop |
2026-06-16T20:57:26.260Z | 2026-06-16T20:57:26.260Z |
| cve-2026-39438 | 9.3 (v3.1) | WordPress ListingPro plugin <= 2.9.10 - SQL Injection … |
Emraan Cheema |
ListingPro |
2026-06-16T20:57:25.611Z | 2026-06-16T20:57:25.611Z |
| cve-2026-39433 | 6.5 (v3.1) | WordPress WPAMS plugin < 49.5.3 - Arbitrary Content De… |
mojoomla |
WPAMS |
2026-06-16T20:57:24.962Z | 2026-06-16T20:57:24.962Z |
| cve-2026-34895 | 8.1 (v3.1) | WordPress Softlab Core plugin < 1.2.11 - Local File In… |
WebGeniusLab |
Softlab Core |
2026-06-16T20:57:24.317Z | 2026-06-16T20:57:24.317Z |
| cve-2026-34894 | 8.1 (v3.1) | WordPress Integrio Core plugin < 1.2.8 - Local File In… |
WebGeniusLab |
Integrio Core |
2026-06-16T20:57:23.666Z | 2026-06-16T20:57:23.666Z |
| cve-2026-34893 | 8.1 (v3.1) | WordPress Thegov Core plugin < 2.0.23 - Local File Inc… |
WebGeniusLab |
Thegov Core |
2026-06-16T20:57:23.010Z | 2026-06-16T20:57:23.010Z |
| cve-2026-27429 | 9.8 (v3.1) | WordPress Nifty theme <= 1.4.1 - PHP Object Injection … |
BoldThemes |
Nifty |
2026-06-16T20:57:22.363Z | 2026-06-16T20:57:22.363Z |
| cve-2026-27395 | 9.8 (v3.1) | WordPress Support Board plugin < 3.8.9 - Privilege Esc… |
Schiocco |
Support Board |
2026-06-16T20:57:21.720Z | 2026-06-16T20:57:21.720Z |
| cve-2026-12256 | 8.8 (v3.1) | WordPress Avada theme <= 3.15.3 - PHP Object Injection… |
ThemeFusion |
Avada |
2026-06-16T20:57:21.069Z | 2026-06-16T20:57:21.069Z |
| cve-2025-69178 | 8.1 (v3.1) | WordPress Truemag theme <= 4.3.14.2 - Local File Inclu… |
CactusThemes |
Truemag |
2026-06-16T20:57:20.412Z | 2026-06-16T20:57:20.412Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2026-000029 | Multiple vulnerabilities in the installer of FinalCode Client | 2026-02-26T14:24+09:00 | 2026-02-26T14:24+09:00 |
| jvndb-2026-004811 | Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager | 2026-02-26T11:02+09:00 | 2026-02-26T11:02+09:00 |
| jvndb-2026-004810 | Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager | 2026-02-26T11:02+09:00 | 2026-02-26T11:02+09:00 |
| jvndb-2026-000026 | Lanscope Endpoint Manager (On-Premises) vulnerable to path traversal | 2026-02-25T15:14+09:00 | 2026-02-25T15:14+09:00 |
| jvndb-2026-004359 | Security information for Hitachi Disk Array Systems | 2026-02-20T18:35+09:00 | 2026-02-20T18:35+09:00 |
| jvndb-2026-000027 | WordPress Plugin "Survey Maker" vulnerable to cross-site scripting | 2026-02-20T12:32+09:00 | 2026-02-20T12:32+09:00 |
| jvndb-2026-000028 | Installer for Job log aggregation/analysis software RICOH Job Log Aggregation Tool may insecurely load Dynamic Link Libraries | 2026-02-20T12:31+09:00 | 2026-02-20T12:31+09:00 |
| jvndb-2026-003912 | Vulnerability in Cosminexus HTTP Server and Hitachi Web Server | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003911 | Vulnerability in Cosminexus HTTP Server | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003910 | Multiple Vulnerabilities in Cosminexus HTTP Server | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003909 | Multiple Vulnerabilities in Hitachi Command Suite products | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003908 | Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003907 | Multiple Vulnerabilities in JP1 | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003906 | Multiple Vulnerabilities in Cosminexus | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-003905 | Multiple Vulnerabilities in Cosminexus HTTP Server and Hitachi Web Server | 2026-02-17T20:46+09:00 | 2026-02-17T20:46+09:00 |
| jvndb-2026-000025 | Joomla! CMS vulnerable to cross-site scripting | 2026-02-17T12:46+09:00 | 2026-02-17T12:46+09:00 |
| jvndb-2026-000023 | FileZen vulnerable to OS command injection | 2026-02-13T16:51+09:00 | 2026-02-13T17:08+09:00 |
| jvndb-2026-000024 | Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries | 2026-02-12T13:32+09:00 | 2026-02-12T13:32+09:00 |
| jvndb-2026-000022 | Oki Electric Industry products and OEM products register Windows services with unquoted file paths | 2026-02-09T15:21+09:00 | 2026-02-09T15:21+09:00 |
| jvndb-2026-000021 | web2py vulnerable to open redirect | 2026-02-05T15:01+09:00 | 2026-02-05T15:01+09:00 |
| jvndb-2026-000020 | Multiple vulnerabilities in Movable Type | 2026-02-04T16:15+09:00 | 2026-02-04T16:15+09:00 |
| jvndb-2026-000019 | Multiple vulnerabilities in ELECOM wireless LAN products | 2026-02-03T14:57+09:00 | 2026-05-14T12:24+09:00 |
| jvndb-2026-000017 | Improper file access permission settings in Mitsubishi Small-Capacity UPS Shutdown Software FREQSHIP-mini for Windows | 2026-02-03T14:57+09:00 | 2026-02-05T14:41+09:00 |
| jvndb-2026-000016 | Installer for Roland Cloud Manager may insecurely load Dynamic Link Libraries | 2026-02-03T14:57+09:00 | 2026-02-04T12:39+09:00 |
| jvndb-2026-000015 | Sonatype Nexus Repository vulnerable to server-side request forgery | 2026-02-02T15:18+09:00 | 2026-02-02T15:18+09:00 |
| jvndb-2026-000014 | OS command injection in raspap-webgui | 2026-02-02T15:18+09:00 | 2026-02-02T15:18+09:00 |
| jvndb-2026-000013 | Multiple Microsoft Office products vulnerable to untrusted search path | 2026-02-02T15:18+09:00 | 2026-02-02T15:18+09:00 |
| jvndb-2026-000012 | Multiple vulnerabilities in Cybozu Garoon | 2026-02-02T15:18+09:00 | 2026-02-02T15:18+09:00 |
| jvndb-2026-000018 | Undocumented "TelnetEnable" functionality of End of Service NETGEAR products | 2026-01-30T14:23+09:00 | 2026-01-30T14:23+09:00 |
| jvndb-2026-002119 | Multiple vulnerabilities in BROTHER MFPs (multifunction printers) | 2026-01-30T11:26+09:00 | 2026-01-30T11:26+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0670 | Vulnérabilité dans Laravel | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0669 | Vulnérabilité dans Keycloak | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0668 | Vulnérabilité dans Kaspersky Anti Targeted Attack Platform | 2026-06-01T00:00:00.000000 | 2026-06-01T00:00:00.000000 |
| certfr-2026-avi-0667 | Multiples vulnérabilités dans les produits IBM | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0666 | Multiples vulnérabilités dans le noyau Linux de Debian | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0665 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0664 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0663 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0662 | Multiples vulnérabilités dans Oracle Database Server | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0661 | Multiples vulnérabilités dans Elastic Kibana | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0660 | Multiples vulnérabilités dans les produits Mattermost | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0659 | Multiples vulnérabilités dans Centreon Web | 2026-05-29T00:00:00.000000 | 2026-05-29T00:00:00.000000 |
| certfr-2026-avi-0658 | Multiples vulnérabilités dans GitLab | 2026-05-28T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0657 | Multiples vulnérabilités dans les produits Veeam | 2026-05-28T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0656 | Vulnérabilité dans les produits NetApp | 2026-05-28T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0655 | Multiples vulnérabilités dans Google Chrome | 2026-05-28T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0654 | Vulnérabilité dans Apereo CAS | 2026-05-28T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0653 | Multiples vulnérabilités dans Symfony | 2026-05-27T00:00:00.000000 | 2026-05-27T00:00:00.000000 |
| certfr-2026-avi-0652 | Multiples vulnérabilités dans Veeam Backup & Replication | 2026-05-27T00:00:00.000000 | 2026-05-27T00:00:00.000000 |
| certfr-2026-avi-0651 | Multiples vulnérabilités dans Samba | 2026-05-27T00:00:00.000000 | 2026-05-27T00:00:00.000000 |
| certfr-2026-avi-0650 | Multiples vulnérabilités dans les produits Check Point | 2026-05-27T00:00:00.000000 | 2026-05-27T00:00:00.000000 |
| certfr-2026-avi-0649 | Multiples vulnérabilités dans Joomla! | 2026-05-27T00:00:00.000000 | 2026-05-28T00:00:00.000000 |
| certfr-2026-avi-0648 | Multiples vulnérabilités dans Kaspersky Anti Targeted Attack Platform | 2026-05-27T00:00:00.000000 | 2026-05-27T00:00:00.000000 |
| certfr-2026-avi-0647 | Vulnérabilité dans CPython | 2026-05-26T00:00:00.000000 | 2026-05-26T00:00:00.000000 |
| certfr-2026-avi-0646 | Vulnérabilité dans Spring AI | 2026-05-26T00:00:00.000000 | 2026-05-26T00:00:00.000000 |
| certfr-2026-avi-0645 | Vulnérabilité dans Firefox pour iOS | 2026-05-26T00:00:00.000000 | 2026-05-26T00:00:00.000000 |
| certfr-2026-avi-0644 | Multiples vulnérabilités dans Roundcube | 2026-05-26T00:00:00.000000 | 2026-05-26T00:00:00.000000 |
| certfr-2026-avi-0643 | Vulnérabilité dans Nginx | 2026-05-26T00:00:00.000000 | 2026-05-26T00:00:00.000000 |
| certfr-2026-avi-0642 | Multiples vulnérabilités dans les produits Trend Micro | 2026-05-22T00:00:00.000000 | 2026-05-22T00:00:00.000000 |
| certfr-2026-avi-0641 | Multiples vulnérabilités dans les produits IBM | 2026-05-22T00:00:00.000000 | 2026-05-22T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-ale-020 | [MàJ] Vulnérabilité dans Microsoft Netlogon | 2020-09-15T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-019 | Recrudescence d'activité Emotet en France | 2020-09-07T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2020-ale-018 | Vulnérabilité dans Cisco ASA et FTD | 2020-07-28T00:00:00.000000 | 2020-11-05T00:00:00.000000 |
| certfr-2020-ale-017 | Multiples vulnérabilités dans SAP Netweaver AS JAVA | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| certfr-2020-ale-016 | Vulnérabilité dans Microsoft Domain Name System (DNS) Server | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| certfr-2020-ale-015 | Vulnérabilité dans F5 BIG-IP | 2020-07-05T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| certfr-2020-ale-014 | Vulnérabilité dans Palo Alto Networks PAN-OS | 2020-07-03T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-013 | Multiples vulnérabilités dans Microsoft Windows | 2020-07-01T00:00:00.000000 | 2020-07-05T00:00:00.000000 |
| certfr-2020-ale-012 | Multiples vulnérabilités dans SaltStack | 2020-05-04T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-011 | Multiples vulnérabilités dans les produits Microsoft qui utilisent la bibliothèque Autodesk FBX | 2020-04-22T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-ale-010 | Multiples vulnérabilités dans Mozilla Firefox | 2020-04-06T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| certfr-2020-ale-009 | Multiples vulnérabilités dans Microsoft Windows | 2020-03-24T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-ale-008 | Vulnérabilité dans l'implémentation du protocole SMB par Microsoft | 2020-03-11T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-007 | Vulnérabilité dans Microsoft Exchange Server | 2020-02-27T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| certfr-2020-ale-006 | Vulnérabilité dans Microsoft Internet Explorer | 2020-01-20T00:00:00.000000 | 2020-02-19T00:00:00.000000 |
| certfr-2020-ale-005 | Multiples vulnérabilités dans le serveur de passerelle RDP de Windows | 2020-01-14T00:00:00.000000 | 2020-02-19T00:00:00.000000 |
| certfr-2020-ale-004 | Vulnérabilité dans Microsoft Windows | 2020-01-14T00:00:00.000000 | 2020-01-17T00:00:00.000000 |
| certfr-2020-ale-003 | Vulnérabilité dans les produits Mozilla | 2020-01-09T00:00:00.000000 | 2020-01-20T00:00:00.000000 |
| certfr-2020-ale-002 | Vulnérabilité dans les produits Citrix ADC et Citrix Gateway | 2020-01-09T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-001 | Multiples vulnérabilités dans les produits de Pulse Secure | 2020-01-09T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| certfr-2019-ale-015 | Multiples vulnérabilités dans Google Chrome | 2019-11-04T00:00:00.000000 | 2020-01-08T00:00:00.000000 |
| certfr-2019-ale-014 | Vulnérabilité dans PHP | 2019-10-29T00:00:00.000000 | 2020-01-08T00:00:00.000000 |
| certfr-2019-ale-013 | Vulnérabilité dans Microsoft Internet Explorer | 2019-09-24T00:00:00.000000 | 2019-10-25T00:00:00.000000 |
| certfr-2019-ale-012 | Multiples vulnérabilités dans Microsoft Remote Desktop Services | 2019-08-14T00:00:00.000000 | 2019-10-25T00:00:00.000000 |
| certfr-2019-ale-011 | Vulnérabilité dans Oracle WebLogic | 2019-06-20T00:00:00.000000 | 2019-07-23T00:00:00.000000 |
| certfr-2019-ale-010 | Vulnérabilité dans Mozilla Firefox | 2019-06-20T00:00:00.000000 | 2019-07-23T00:00:00.000000 |
| certfr-2019-ale-009 | Vulnérabilité dans Exim | 2019-06-11T00:00:00.000000 | 2019-07-23T00:00:00.000000 |
| certfr-2019-ale-008 | Vulnérabilité dans Microsoft SharePoint Server | 2019-05-29T00:00:00.000000 | 2019-07-23T00:00:00.000000 |
| certfr-2019-ale-006 | Vulnérabilité dans Microsoft Remote Desktop Services | 2019-05-22T00:00:00.000000 | 2019-10-25T00:00:00.000000 |
| certfr-2019-ale-007 | Vulnérabilité dans le serveur DHCP de Windows | 2019-05-15T00:00:00.000000 | 2019-06-20T00:00:00.000000 |