Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2025-15635 4.3 (v3.1) WordPress Smart Online Order for Clover plugin <= 1.6.… Zaytech
 Smart Online Order for Clover
 2026-04-15T15:49:53.280Z 2026-04-16T14:15:13.253Z
cve-2026-35569 ApostropheCMS: Stored XSS in SEO Fields Leads to Authe… apostrophecms
 apostrophe
 2026-04-15T19:34:23.648Z 2026-04-16T14:14:58.325Z
cve-2026-3876 Prismatic <= 3.7.3 - Unauthenticated Stored Cross-Site… specialk
 Prismatic
 2026-04-16T06:44:53.787Z 2026-04-16T14:13:20.711Z
cve-2021-23840 Integer overflow in CipherUpdate OpenSSL
 OpenSSL
 2021-02-16T16:55:18.192Z 2026-04-16T14:12:36.721Z
cve-2026-4160 Fluent Forms – Customizable Contact Forms, Survey, Qui… techjewel
 Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder
 2026-04-16T13:27:09.207Z 2026-04-16T14:12:35.951Z
cve-2021-3712 Read buffer overruns processing ASN.1 strings OpenSSL
 OpenSSL
 2021-08-24T14:50:14.704Z 2026-04-16T14:11:16.454Z
cve-2026-40256 Weblate: Prefix-Based Repository Boundary Check Bypass… WeblateOrg
 weblate
 2026-04-15T18:36:44.975Z 2026-04-16T14:11:15.386Z
cve-2020-1968 Raccoon attack OpenSSL
 OpenSSL
 2020-09-09T13:50:12.423Z 2026-04-16T14:10:35.131Z
cve-2026-33220 Weblate: JavaScript localization CDN add-on allows arb… WeblateOrg
 weblate
 2026-04-15T18:03:40.728Z 2026-04-16T14:10:15.340Z
cve-2026-6370 5.9 (v3.1) WordPress Mini Ajax Cart for WooCommerce plugin <= 1.3… HashThemes
 Mini Ajax Cart for WooCommerce
 2026-04-15T16:02:14.957Z 2026-04-16T14:09:47.438Z
cve-2021-22922 N/A When curl is instructed to download content using… n/a
 https://github.com/curl/curl
 2021-08-05T00:00:00.000Z 2026-04-16T14:09:32.149Z
cve-2026-40104 XWiki's REST APIs can list all pages/spaces, leading t… xwiki
 org.xwiki.platform:xwiki-platform-oldcore
 2026-04-15T00:01:58.583Z 2026-04-16T14:08:58.592Z
cve-2018-16840 A heap use-after-free flaw was found in curl vers… The Curl Project
 curl
 2018-10-31T18:00:00.000Z 2026-04-16T14:08:57.315Z
cve-2019-5481 N/A Double-free vulnerability in the FTP-kerberos cod… n/a
 curl
 2019-09-16T18:05:38.000Z 2026-04-16T14:08:12.584Z
cve-2020-8285 N/A curl 7.21.0 to and including 7.73.0 is vulnerable… n/a
 https://github.com/curl/curl
 2020-12-14T19:39:04.000Z 2026-04-16T14:07:21.315Z
cve-2026-6372 7.5 (v3.1) WordPress Accept Cryptocurrencies with Plisio plugin <… Plisio
 Accept Cryptocurrencies with Plisio
 2026-04-15T16:16:46.970Z 2026-04-16T14:06:37.842Z
cve-2026-30993 N/A Slah CMS v1.5.0 and below was discovered to conta… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-16T14:06:34.679Z
cve-2022-22576 N/A An improper authentication vulnerability exists i… n/a
 https://github.com/curl/curl
 2022-05-26T00:00:00.000Z 2026-04-16T14:05:49.233Z
cve-2026-3489 DirectoryPress – Business Directory And Classified Ad … designinvento
 DirectoryPress – Business Directory And Classified Ad Listing
 2026-04-16T11:21:21.179Z 2026-04-16T14:05:03.740Z
cve-2026-3369 Better Find and Replace – AI-Powered Suggestions <= 1.… codesolz
 Better Find and Replace – AI-Powered Suggestions
 2026-04-16T11:21:21.822Z 2026-04-16T14:04:23.811Z
cve-2025-67841 N/A Nordic Semiconductor IronSide SE for nRF54H20 bef… n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-16T14:04:21.040Z
cve-2022-27781 N/A libcurl provides the `CURLOPT_CERTINFO` option to… n/a
 https://github.com/curl/curl
 2022-06-01T00:00:00.000Z 2026-04-16T14:03:56.482Z
cve-2026-30461 N/A Daylight Studio FuelCMS v1.5.2 was discovered to … n/a
 n/a
 2026-04-15T00:00:00.000Z 2026-04-16T14:02:08.595Z
cve-2021-22947 N/A When curl >= 7.20.0 and <= 7.78.0 connects to an … n/a
 https://github.com/curl/curl
 2021-09-29T00:00:00.000Z 2026-04-16T14:01:05.826Z
cve-2026-3155 OneSignal – Web Push Notifications <= 3.8.0 - Missing … onesignal
 OneSignal – Web Push Notifications
 2026-04-16T11:21:22.226Z 2026-04-16T14:00:56.681Z
cve-2026-39984 Sigstore Timestamp Authority has Improper Certificate … sigstore
 timestamp-authority
 2026-04-14T23:41:47.909Z 2026-04-16T14:00:55.081Z
cve-2020-8284 N/A A malicious server can use the FTP PASV response … n/a
 https://github.com/curl/curl
 2020-12-14T19:38:26.000Z 2026-04-16T13:59:17.253Z
cve-2026-39842 OpenRemote is Vulnerable to Expression Injection openremote
 openremote
 2026-04-14T23:21:22.242Z 2026-04-16T13:58:42.988Z
cve-2026-33414 PowerShell Command Injection in Podman HyperV Machine containers
 podman
 2026-04-14T22:42:19.822Z 2026-04-16T13:57:28.317Z
cve-2026-35031 Jellyfin: Potential RCE via subtitle upload path trave… jellyfin
 jellyfin
 2026-04-14T22:18:30.565Z 2026-04-16T13:56:06.801Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2016-000198 SetucoCMS vulnerable to SQL injection 2016-10-07T15:04+09:00 2017-05-17T14:44+09:00
jvndb-2016-000197 SetucoCMS vulnerable to cross-site scripting 2016-10-07T15:04+09:00 2017-05-17T14:44+09:00
jvndb-2016-000196 SetucoCMS vulnerable to cross-site request forgery 2016-10-07T15:04+09:00 2017-05-17T14:44+09:00
jvndb-2016-000202 Usermin cross-site scripting vulnerabilties 2016-10-07T13:50+09:00 2017-05-16T17:52+09:00
jvndb-2017-000033 PrimeDrive Desktop Application Installer may insecurely load Dynamic Link Libraries 2017-03-01T15:53+09:00 2017-05-15T11:27+09:00
jvndb-2016-000193 Cybozu Office vulnerable to Reflected File Download (RFD) 2016-10-03T15:47+09:00 2017-04-24T15:10+09:00
jvndb-2016-000192 Cybozu Office vulnerable to denial-of-service (DoS) 2016-10-03T15:46+09:00 2017-04-24T15:10+09:00
jvndb-2016-000189 "Project" function in Cybozu Office vulnerable vulnerable to operation restriction bypass 2016-10-03T15:43+09:00 2017-04-24T15:10+09:00
jvndb-2016-000188 Breadcrumb trail in Cybozu Office vulnerable vulnerable to browse restriction bypass 2016-10-03T15:43+09:00 2017-04-24T15:10+09:00
jvndb-2016-000186 "Schedule" function in Cybozu Office vulnerable to cross-site scripting 2016-10-03T15:43+09:00 2017-04-24T15:10+09:00
jvndb-2016-000191 Cybozu Office vulnerable to information disclosure 2016-10-03T15:43+09:00 2017-04-24T15:05+09:00
jvndb-2016-000190 Cybozu Office vulnerable to mail header injection 2016-10-03T15:43+09:00 2017-04-24T15:05+09:00
jvndb-2016-000187 "Project" function in Cybozu Office vulnerable vulnerable to access restriction bypass 2016-10-03T15:43+09:00 2017-04-24T15:05+09:00
jvndb-2016-000185 "Project" function in Cybozu Office vulnerable to cross-site scripting 2016-10-03T15:43+09:00 2017-04-24T15:05+09:00
jvndb-2016-000184 "Customapp" function in Cybozu Office vulnerable to cross-site scripting 2016-10-03T15:43+09:00 2017-04-24T15:05+09:00
jvndb-2017-000066 The API in Cybozu Office vulnerable to denial-of-service (DoS) 2017-04-11T16:05+09:00 2017-04-11T16:05+09:00
jvndb-2016-006450 Vulnerability in JP1/Cm2/Network Node Manager i 2017-03-30T15:01+09:00 2017-03-30T15:01+09:00
jvndb-2016-000158 Zend Framework vulnerable to SQL injection 2016-09-15T14:11+09:00 2017-03-16T14:15+09:00
jvndb-2017-000013 Nessus vulnerable to cross-site scripting 2017-01-24T13:38+09:00 2017-02-20T17:44+09:00
jvndb-2016-000096 Apache Struts 1 vulnerability that allows unintended remote operations against components on memory 2016-06-07T16:26+09:00 2017-02-20T15:42+09:00
jvndb-2017-000025 Apache Brooklyn vulnerable to cross-site scripting 2017-02-15T16:20+09:00 2017-02-15T16:20+09:00
jvndb-2017-000015 Norton Download Manager may insecurely load Dynamic Link Libraries 2017-02-10T14:58+09:00 2017-02-10T14:58+09:00
jvndb-2017-000012 Java (OGNL) code execution in Apache Struts 2 when devMode is enabled 2017-01-20T14:01+09:00 2017-01-20T14:01+09:00
jvndb-2014-000048 OpenSSL improper handling of Change Cipher Spec message 2014-06-06T13:48+09:00 2016-12-27T11:49+09:00
jvndb-2014-000017 Apache Commons FileUpload vulnerable to denial-of-service (DoS) 2014-02-10T17:21+09:00 2016-12-27T11:49+09:00
jvndb-2016-000097 Apache Struts 1 vulnerable to input validation bypass 2016-06-07T16:26+09:00 2016-12-05T16:59+09:00
jvndb-2016-002331 ManageEngine Password Manager Pro fails to restrict access permissions 2016-12-05T15:02+09:00 2016-12-05T15:02+09:00
jvndb-2016-002298 Keitai Kit for Movable Type vulnerable to OS command injection 2016-12-05T15:02+09:00 2016-12-05T15:02+09:00
jvndb-2016-005655 Vulnerabilitie in JP1/IT Desktop Management 2 - Manager and JP1/NETM/DM 2016-11-10T16:59+09:00 2016-11-10T16:59+09:00
jvndb-2016-000151 YoruFukurou (NightOwl) vulnerable to denial-of-service (DoS) 2016-08-24T14:14+09:00 2016-10-27T09:43+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-0984 Vulnérabilité dans les produits Symfony 2024-11-14T00:00:00.000000 2024-11-14T00:00:00.000000
certfr-2024-avi-0983 Vulnérabilité dans les produits Mozilla 2024-11-14T00:00:00.000000 2024-11-14T00:00:00.000000
certfr-2024-avi-0982 Vulnérabilité dans CPython 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0981 Multiples vulnérabilités dans GitLab 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0980 Multiples vulnérabilités dans les produits Intel 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0979 Multiples vulnérabilités dans les produits Fortinet 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0978 Multiples vulnérabilités dans les produits Microsoft 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0977 Multiples vulnérabilités dans Microsoft Azure 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0976 Multiples vulnérabilités dans Microsoft .Net 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0975 Multiples vulnérabilités dans Microsoft Windows 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0974 Multiples vulnérabilités dans Microsoft Office 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0973 Vulnérabilité dans les produits Citrix 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0972 Vulnérabilité dans les produits Adobe 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0971 Multiples vulnérabilités dans Grafana 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0970 Multiples vulnérabilités dans Google Chrome 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0968 Multiples vulnérabilités dans les produits Siemens 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0967 Multiples vulnérabilités dans les produits Ivanti 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0966 Multiples vulnérabilités dans Nagios XI 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0965 Multiples vulnérabilités dans les produits PrimX 2024-11-13T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0964 Multiples vulnérabilités dans les produits Citrix 2024-11-12T00:00:00.000000 2024-11-13T00:00:00.000000
certfr-2024-avi-0963 Multiples vulnérabilités dans Xen 2024-11-12T00:00:00.000000 2024-11-12T00:00:00.000000
certfr-2024-avi-0962 Multiples vulnérabilités dans les produits SAP 2024-11-12T00:00:00.000000 2024-11-12T00:00:00.000000
certfr-2024-avi-0961 Multiples vulnérabilités dans les produits Schneider Electric 2024-11-12T00:00:00.000000 2024-11-12T00:00:00.000000
certfr-2024-avi-0960 Multiples vulnérabilités dans les produits Synology 2024-11-12T00:00:00.000000 2024-11-12T00:00:00.000000
certfr-2024-avi-0959 Multiples vulnérabilités dans les produits NetApp 2024-11-12T00:00:00.000000 2024-11-12T00:00:00.000000
certfr-2024-avi-0958 Multiples vulnérabilités dans les produits IBM 2024-11-08T00:00:00.000000 2024-11-08T00:00:00.000000
certfr-2024-avi-0957 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-11-08T00:00:00.000000 2024-11-08T00:00:00.000000
certfr-2024-avi-0956 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-11-08T00:00:00.000000 2024-11-08T00:00:00.000000
certfr-2024-avi-0955 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-11-08T00:00:00.000000 2024-11-08T00:00:00.000000
certfr-2024-avi-0954 Multiples vulnérabilités dans Microsoft Edge 2024-11-08T00:00:00.000000 2024-11-08T00:00:00.000000
ID Description Published Updated