Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-2778 N/A Sandbox escape due to incorrect boundary conditions in… Mozilla
 Firefox
 2026-02-24T13:33:13.564Z 2026-04-16T14:32:14.511Z
cve-2026-2776 N/A Sandbox escape due to incorrect boundary conditions in… Mozilla
 Firefox
 2026-02-24T13:33:12.247Z 2026-04-16T14:31:49.143Z
cve-2026-2775 N/A Mitigation bypass in the DOM: HTML Parser component Mozilla
 Firefox
 2026-02-24T13:33:11.553Z 2026-04-16T14:31:30.683Z
cve-2026-2773 N/A Incorrect boundary conditions in the Web Audio component Mozilla
 Firefox
 2026-02-24T13:33:10.177Z 2026-04-16T14:31:07.312Z
cve-2026-2771 N/A Undefined behavior in the DOM: Core & HTML component Mozilla
 Firefox
 2026-02-24T13:33:08.538Z 2026-04-16T14:30:39.225Z
cve-2026-2766 N/A Use-after-free in the JavaScript Engine: JIT component Mozilla
 Firefox
 2026-02-24T13:33:04.946Z 2026-04-16T14:28:29.474Z
cve-2026-2765 N/A Use-after-free in the JavaScript Engine component Mozilla
 Firefox
 2026-02-24T13:33:03.943Z 2026-04-16T14:27:42.110Z
cve-2026-2764 N/A JIT miscompilation, use-after-free in the JavaScript E… Mozilla
 Firefox
 2026-02-24T13:33:03.207Z 2026-04-16T14:27:18.103Z
cve-2026-6388 9.1 (v3.1) Argocd-image-updater: argocd image updater: cross-name… Red Hat
 Red Hat OpenShift GitOps
 2026-04-15T21:34:07.022Z 2026-04-16T14:26:23.879Z
cve-2026-3355 Customer Reviews for WooCommerce <= 5.101.0 - Reflecte… ivole
 Customer Reviews for WooCommerce
 2026-04-16T06:44:53.276Z 2026-04-16T14:25:11.362Z
cve-2026-6270 9.1 (v3.1) @fastify/middie vulnerable to middleware authenticatio… @fastify/middie
 @fastify/middie
 2026-04-16T13:44:46.322Z 2026-04-16T14:24:26.764Z
cve-2026-40193 Maddy Mail Server: LDAP Filter Injection via Unsanitiz… foxcpp
 maddy
 2026-04-15T23:15:25.011Z 2026-04-16T14:23:52.438Z
cve-2026-40179 Prometheus: Stored XSS via metric names and label valu… prometheus
 prometheus
 2026-04-15T22:26:46.909Z 2026-04-16T14:21:42.130Z
cve-2026-40786 N/A WordPress MyRewards plugin <= 5.7.3 - Broken Access Co… Long Watch Studio
 MyRewards
 2026-04-15T10:21:36.068Z 2026-04-16T14:20:54.766Z
cve-2026-4880 Barcode Scanner (+Mobile App) <= 1.11.0 - Unauthentica… ukrsolution
 Barcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of Sale)
 2026-04-15T23:25:49.596Z 2026-04-16T14:20:50.654Z
cve-2026-6410 5.3 (v3.1) @fastify/static vulnerable to path traversal in direct… @fastify/static
 @fastify/static
 2026-04-16T13:29:08.120Z 2026-04-16T14:19:36.780Z
cve-2026-40502 8.7 (v4.0) 8.8 (v3.1) OpenHarness Remote Administrative Command Injection vi… HKUDS
 OpenHarness
 2026-04-16T00:08:34.463Z 2026-04-16T14:19:24.128Z
cve-2026-4949 ProfilePress <= 4.16.12 - Missing Authorization to Aut… properfraction
 Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress
 2026-04-15T22:26:05.515Z 2026-04-16T14:19:21.197Z
cve-2025-64669 7.8 (v3.1) Windows Admin Center Elevation of Privilege Vulnerability Microsoft
 Windows Admin Center
 2025-12-11T18:06:13.821Z 2026-04-16T14:19:08.517Z
cve-2025-65046 3.1 (v3.1) Microsoft Edge (Chromium-based) Spoofing Vulnerability Microsoft
 Microsoft Edge for Android
 2025-12-18T22:01:43.462Z 2026-04-16T14:19:07.967Z
cve-2025-62221 7.8 (v3.1) Windows Cloud Files Mini Filter Driver Elevation of Pr… Microsoft
 Windows 10 Version 1809
 2025-12-09T17:56:10.169Z 2026-04-16T14:19:07.492Z
cve-2025-64677 8.2 (v3.1) Office Out-of-Box Experience Spoofing Vulnerability Microsoft
 Office Out-of-Box Experience
 2025-12-18T22:02:08.421Z 2026-04-16T14:19:06.932Z
cve-2025-64675 8.3 (v3.1) Azure Cosmos DB Spoofing Vulnerability Microsoft
 Azure Cosmos DB
 2025-12-18T23:15:31.241Z 2026-04-16T14:19:06.437Z
cve-2025-64676 7.2 (v3.1) Microsoft Purview eDiscovery Remote Code Execution Vul… Microsoft
 Microsoft Purview
 2025-12-18T22:02:07.323Z 2026-04-16T14:19:05.887Z
cve-2025-65037 10 (v3.1) Azure Container Apps Remote Code Execution Vulnerability Microsoft
 Azure Container Apps
 2025-12-18T22:02:06.737Z 2026-04-16T14:19:05.350Z
cve-2025-65041 10 (v3.1) Microsoft Partner Center Elevation of Privilege Vulner… Microsoft
 Microsoft Partner Center
 2025-12-18T22:02:06.021Z 2026-04-16T14:19:04.744Z
cve-2025-64663 9.9 (v3.1) Custom Question Answering Elevation of Privilege Vulne… Microsoft
 Azure Cognitive Service for Language
 2025-12-18T22:02:05.377Z 2026-04-16T14:19:04.162Z
cve-2025-54100 7.8 (v3.1) PowerShell Remote Code Execution Vulnerability Microsoft
 Windows 10 Version 1607
 2025-12-09T17:56:09.562Z 2026-04-16T14:19:03.292Z
cve-2025-64680 7.8 (v3.1) Windows DWM Core Library Elevation of Privilege Vulner… Microsoft
 Windows 10 Version 1507
 2025-12-09T17:56:08.904Z 2026-04-16T14:19:01.509Z
cve-2025-64679 7.8 (v3.1) Windows DWM Core Library Elevation of Privilege Vulner… Microsoft
 Windows 10 Version 1507
 2025-12-09T17:56:08.304Z 2026-04-16T14:19:00.931Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2017-000034 Access CX App fails to verify SSL server certificates 2017-03-01T16:31+09:00 2017-06-05T11:26+09:00
jvndb-2017-000041 Multiple I-O DATA network camera products vulnerable to buffer overflow 2017-03-02T14:36+09:00 2017-06-05T11:10+09:00
jvndb-2017-000044 CentreCOM AR260S V2 vulnerable to privilege escalation 2017-03-30T14:37+09:00 2017-06-05T10:51+09:00
jvndb-2017-000045 Cybozu KUNAI for Android information management vulnerability 2017-03-13T13:42+09:00 2017-06-02T18:04+09:00
jvndb-2017-000022 Multiple cross-site scripting vulnerabilities in Webmin 2017-02-09T14:06+09:00 2017-06-02T18:04+09:00
jvndb-2017-000056 CS-Cart Japanese Edition fails to restrict access permissions 2017-04-10T18:13+09:00 2017-06-01T17:39+09:00
jvndb-2017-000054 ASSETBASE vulnerable to cross-site scripting 2017-04-11T13:37+09:00 2017-06-01T17:16+09:00
jvndb-2017-000049 Installer of PhishWall Client Internet Explorer version may insecurely load Dynamic Link Libraries 2017-03-22T14:43+09:00 2017-06-01T17:16+09:00
jvndb-2017-000003 Olive Diary DX vulnerable to cross-site scripting 2017-01-06T14:02+09:00 2017-06-01T15:58+09:00
jvndb-2017-000002 WEB SCHEDULE vulnerable to cross-site scripting 2017-01-06T14:01+09:00 2017-06-01T15:58+09:00
jvndb-2017-000001 Olive Blog vulnerable to cross-site scripting 2017-01-06T13:56+09:00 2017-06-01T15:58+09:00
jvndb-2017-000062 WordPress plugin "WP Statistics" vulnerable to cross-site scripting 2017-04-10T13:47+09:00 2017-06-01T15:24+09:00
jvndb-2017-000059 WN-G300R3 vulnerable to OS command injection 2017-04-10T13:36+09:00 2017-06-01T15:24+09:00
jvndb-2017-000058 Tablacus Explorer vulnerable to script injection 2017-04-07T14:47+09:00 2017-06-01T15:24+09:00
jvndb-2017-000055 NETGEAR ProSAFE Plus Configuration Utility vulnerable to improper access control 2017-04-18T13:42+09:00 2017-06-01T15:24+09:00
jvndb-2017-000067 WordPress plugin "WP Statistics" vulnerable to cross-site scripting 2017-04-13T13:49+09:00 2017-06-01T15:23+09:00
jvndb-2017-000050 WordPress plugin "YOP Poll" vulnerable to cross-site scripting 2017-03-23T12:23+09:00 2017-06-01T15:08+09:00
jvndb-2017-000047 Security guide for website operators vulnerable to OS command injection 2017-03-16T13:32+09:00 2017-06-01T15:08+09:00
jvndb-2017-000043 OneThird CMS vulnerable to cross-site scripting 2017-03-08T09:57+09:00 2017-06-01T15:08+09:00
jvndb-2017-000032 Cybozu Garoon fails to restrict access permission in the mail function 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000031 Cybozu Garoon fails to restrict access permission in Workflow and the function "MultiReport" 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000030 Cybozu Garoon vulnerable to information disclosure 2017-02-20T15:40+09:00 2017-06-01T15:05+09:00
jvndb-2017-000029 Cybozu Garoon vulnerable to cross-site scripting 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000028 Cybozu Garoon fails to restrict access permission in the Phone Messages function 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000027 Cybozu Garoon vulnerable to SQL injection 2017-02-20T15:38+09:00 2017-06-01T15:05+09:00
jvndb-2017-000074 WordPress plugin "Booking Calendar" vulnerable to cross-site scripting 2017-04-20T15:11+09:00 2017-06-01T13:53+09:00
jvndb-2017-000073 WordPress plugin "Booking Calendar" vulnerable to directory traversal 2017-04-20T15:11+09:00 2017-06-01T13:53+09:00
jvndb-2017-000072 WNC01WH vulnerable to OS command injection 2017-04-21T13:44+09:00 2017-06-01T13:53+09:00
jvndb-2017-000070 WN-AC1167GR vulnerable to cross-site scripting 2017-04-14T13:55+09:00 2017-06-01T13:53+09:00
jvndb-2017-000068 WordPress plugin "WP Statistics" vulnerable to cross-site scripting 2017-04-13T13:49+09:00 2017-06-01T13:53+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-1064 Multiples vulnérabilités dans GLPI 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1063 Vulnérabilité dans cURL et libcurl 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1062 Multiples vulnérabilités dans les produits Siemens 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1061 Multiples vulnérabilités dans les produits Splunk 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1060 Multiples vulnérabilités dans Ruby on Rails 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1059 Multiples vulnérabilités dans les produits Intel 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1058 Multiples vulnérabilités dans les produits Ivanti 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1057 Multiples vulnérabilités dans les produits HPE Aruba Networking 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1056 Multiples vulnérabilités dans les produits Adobe 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1055 Multiples vulnérabilités dans Google Chrome 2024-12-11T00:00:00.000000 2024-12-11T00:00:00.000000
certfr-2024-avi-1054 Multiples vulnérabilités dans les produits SAP 2024-12-10T00:00:00.000000 2024-12-10T00:00:00.000000
certfr-2024-avi-1053 Multiples vulnérabilités dans les produits Schneider Electric 2024-12-10T00:00:00.000000 2024-12-10T00:00:00.000000
certfr-2024-avi-1052 Multiples vulnérabilités dans les produits Qnap 2024-12-09T00:00:00.000000 2024-12-09T00:00:00.000000
certfr-2024-avi-1051 Multiples vulnérabilités dans les produits IBM 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1050 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1049 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1048 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1047 Multiples vulnérabilités dans Microsoft Edge 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1046 Multiples vulnérabilités dans Tenable Security Center 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1045 Multiples vulnérabilités dans Google Pixel 2024-12-06T00:00:00.000000 2024-12-06T00:00:00.000000
certfr-2024-avi-1044 Multiples vulnérabilités dans MISP 2024-12-05T00:00:00.000000 2024-12-05T00:00:00.000000
certfr-2024-avi-1043 Vulnérabilité dans Cisco NX-OS 2024-12-05T00:00:00.000000 2024-12-05T00:00:00.000000
certfr-2024-avi-1042 Multiples vulnérabilités dans Sonicwall Secure Mobile Access 2024-12-05T00:00:00.000000 2024-12-05T00:00:00.000000
certfr-2024-avi-1041 Vulnérabilité dans SolarWinds Platform 2024-12-04T00:00:00.000000 2024-12-04T00:00:00.000000
certfr-2024-avi-1040 Vulnérabilité dans Moxa VPort 07-3 Series 2024-12-04T00:00:00.000000 2024-12-04T00:00:00.000000
certfr-2024-avi-1039 Multiples vulnérabilités dans les produits Veeam 2024-12-04T00:00:00.000000 2024-12-04T00:00:00.000000
certfr-2024-avi-1038 Vulnérabilité dans Google Chrome 2024-12-04T00:00:00.000000 2024-12-04T00:00:00.000000
certfr-2024-avi-1037 Multiples vulnérabilités dans HPE Aruba Networking ClearPass Policy Manager 2024-12-04T00:00:00.000000 2024-12-04T00:00:00.000000
certfr-2024-avi-1036 Multiples vulnérabilités dans Google Android 2024-12-03T00:00:00.000000 2024-12-03T00:00:00.000000
certfr-2024-avi-1035 Multiples vulnérabilités dans les produits Axis 2024-12-03T00:00:00.000000 2024-12-03T00:00:00.000000
ID Description Published Updated