Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-6196 Tenda F456 exeCommand fromexeCommand stack-based overflow Tenda
 F456
 2026-04-13T17:45:13.583Z 2026-04-16T13:26:41.460Z
cve-2026-6195 Totolink A7100RU CGI cstecgi.cgi setPasswordCfg os com… Totolink
 A7100RU
 2026-04-13T17:30:13.953Z 2026-04-13T18:00:15.007Z
cve-2026-6100 9.1 (v4.0) Use-after-free in lzma.LZMADecompressor, bz2.BZ2Decomp… Python Software Foundation
 CPython
 2026-04-13T17:15:47.606Z 2026-04-14T14:30:25.622Z
cve-2026-6194 Totolink A3002MU HTTP Request formWlanSetup sub_410188… Totolink
 A3002MU
 2026-04-13T17:15:16.207Z 2026-04-13T18:56:01.530Z
cve-2026-28291 simple-git has Command Execution via Option-Parsing Bypass steveukx
 git-js
 2026-04-13T17:15:14.594Z 2026-04-14T16:30:34.266Z
cve-2025-3756 7.1 (v4.0) 6.5 (v3.1) Denial of Service Vulnerabilities in System 800xA, Sy… ABB
 AC800M (System 800xA)
 2026-04-13T17:11:08.412Z 2026-04-13T18:03:41.437Z
cve-2026-6193 PHPGurukul Daily Expense Tracking System register.php … PHPGurukul
 Daily Expense Tracking System
 2026-04-13T17:00:17.681Z 2026-04-14T16:29:17.934Z
cve-2026-23891 Decidim has a Cross-site scripting (XSS) vulnerability… decidim
 decidim
 2026-04-13T16:52:16.448Z 2026-04-14T16:29:24.311Z
cve-2026-6192 uclouvain openjpeg pi.c opj_pi_initialise_encode integ… uclouvain
 openjpeg
 2026-04-13T16:45:11.772Z 2026-04-14T13:56:25.079Z
cve-2026-39940 ChurchCRM has an Open Redirect via the ‘linkBack’ URL … ChurchCRM
 CRM
 2026-04-13T16:34:58.495Z 2026-04-16T13:26:41.668Z
cve-2026-6191 itsourcecode Construction Management System equipments… itsourcecode
 Construction Management System
 2026-04-13T16:30:24.440Z 2026-04-14T19:37:43.372Z
cve-2026-6190 itsourcecode Construction Management System employees.… itsourcecode
 Construction Management System
 2026-04-13T16:15:13.484Z 2026-04-13T16:53:41.142Z
cve-2026-6189 SourceCodester Pharmacy Sales and Inventory System aja… SourceCodester
 Pharmacy Sales and Inventory System
 2026-04-13T16:00:18.635Z 2026-04-13T18:54:51.874Z
cve-2025-31991 6.8 (v3.1) HCL DevOps Velocity is susceptible to brute-force attacks HCLSoftware
 Velocity
 2026-04-13T15:56:41.979Z 2026-04-13T17:11:10.727Z
cve-2026-34188 7.5 (v4.0) OS Command Injection in Event Response Execution Pandora FMS
 Pandora FMS
 2026-04-13T15:50:41.574Z 2026-04-13T17:25:33.664Z
cve-2026-34186 8.7 (v4.0) SQL Injection in Custom Fields leads to Database Compromise Pandora FMS
 Pandora FMS
 2026-04-13T15:49:55.780Z 2026-04-13T17:30:29.986Z
cve-2026-30813 8.7 (v4.0) SQL Injection in Module Search leads to Database Compromise Pandora FMS
 Pandora FMS
 2026-04-13T15:49:13.149Z 2026-04-13T17:42:09.162Z
cve-2026-30812 2.1 (v4.0) Stored Cross-Site Scripting in Event Comments via Filt… Pandora FMS
 Pandora FMS
 2026-04-13T15:48:29.238Z 2026-04-13T17:55:20.404Z
cve-2026-30811 8.4 (v4.0) Missing Authorization in Configuration Ajax Endpoint l… Pandora FMS
 Pandora FMS
 2026-04-13T15:47:40.198Z 2026-04-13T17:58:34.188Z
cve-2026-30809 8.7 (v4.0) OS Command Injection in WebServerModuleDebug via Black… Pandora FMS
 Pandora FMS
 2026-04-13T15:46:53.349Z 2026-04-13T18:05:50.375Z
cve-2026-30806 8.7 (v4.0) OS Command Injection in Network Report leads to Remote… Pandora FMS
 Pandora FMS
 2026-04-13T15:45:46.468Z 2026-04-13T18:08:02.082Z
cve-2026-6188 SourceCodester Pharmacy Sales and Inventory System aja… SourceCodester
 Pharmacy Sales and Inventory System
 2026-04-13T15:45:10.955Z 2026-04-14T16:29:30.432Z
cve-2026-30804 8.6 (v4.0) Unrestricted File Upload in Extension Uploader leads t… Pandora FMS
 Pandora FMS
 2026-04-13T15:44:46.120Z 2026-04-13T19:23:05.754Z
cve-2026-6231 5.3 (v4.0) 4.3 (v3.1) bson_validate may skip validation when processing cert… MongoDB Inc.
 C Driver
 2026-04-13T15:31:55.735Z 2026-04-13T19:23:42.752Z
cve-2026-6187 SourceCodester Pharmacy Sales and Inventory System aja… SourceCodester
 Pharmacy Sales and Inventory System
 2026-04-13T15:30:13.857Z 2026-04-14T13:54:33.214Z
cve-2026-6186 UTT HiPER 1200GW formNatStaticMap strcpy buffer overflow UTT
 HiPER 1200GW
 2026-04-13T15:15:11.716Z 2026-04-14T19:37:43.525Z
cve-2026-6184 code-projects Simple Content Management System welcome… code-projects
 Simple Content Management System
 2026-04-13T15:00:21.266Z 2026-04-13T17:00:56.914Z
cve-2026-1462 Safe Mode Bypass in keras-team/keras keras-team
 keras-team/keras
 2026-04-13T14:55:28.649Z 2026-04-13T18:53:12.291Z
cve-2026-6183 code-projects Simple Content Management System index.p… code-projects
 Simple Content Management System
 2026-04-13T14:45:11.916Z 2026-04-13T18:51:55.122Z
cve-2026-33858 Apache Airflow: Unsafe Deserialization via Legacy Seri… Apache Software Foundation
 Apache Airflow
 2026-04-13T14:36:30.956Z 2026-04-14T03:55:30.291Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2016-000064 WordPress plugin "Ninja Forms" vulnerable to PHP object injection 2016-05-13T14:27+09:00 2016-06-01T17:00+09:00
jvndb-2016-000063 FileMaker server issue where PHP source code may be viewable 2016-05-13T14:27+09:00 2016-06-02T09:43+09:00
jvndb-2016-000062 WN-G300R Series vulnerable to cross-site scripting 2016-05-12T14:34+09:00 2016-06-01T16:48+09:00
jvndb-2016-000061 WN-GDN/R3 Series does not limit authentication attempts 2016-05-12T14:34+09:00 2016-06-01T16:52+09:00
jvndb-2016-000059 Apache Cordova vulnerable to arbitrary plugin execution 2016-05-11T14:16+09:00 2016-06-01T16:30+09:00
jvndb-2016-000058 Apache Cordova fails to restrict access permissions 2016-05-11T14:16+09:00 2016-06-02T17:49+09:00
jvndb-2016-000053 EC-CUBE vulnerable to cross-site request forgery 2016-04-26T14:24+09:00 2016-05-31T17:40+09:00
jvndb-2016-000057 Multiple shiro8 Co., Ltd. freearea_ addition_plugins for EC-CUBE vulnerable to cross-site scripting 2016-04-26T14:18+09:00 2016-05-25T17:48+09:00
jvndb-2016-000052 EC-CUBE fails to restrict access permissions 2016-04-26T13:56+09:00 2016-05-31T17:41+09:00
jvndb-2016-000051 EC-CUBE fails to restrict access permissions 2016-04-26T13:56+09:00 2016-05-31T17:41+09:00
jvndb-2016-000056 kintone mobile for Android fails to verify SSL server certificates 2016-04-25T15:36+09:00 2017-05-23T14:28+09:00
jvndb-2016-000055 kintone mobile for Android information management vulnerability 2016-04-25T15:35+09:00 2016-06-01T16:21+09:00
jvndb-2016-000054 Electron may insecurely load Node modules 2016-04-22T13:49+09:00 2016-06-01T15:56+09:00
jvndb-2016-000050 Photopt App fails to verify SSL server certificates 2016-04-19T13:44+09:00 2017-05-23T14:28+09:00
jvndb-2016-000049 Tokyo Star bank App fails to verify SSL server certificates 2016-04-13T14:30+09:00 2017-05-23T14:28+09:00
jvndb-2016-000048 EC-CUBE plugin "Social-button Plugin Premium" and "Social-button Plugin" vulnerable to cross-site scripting 2016-04-08T12:31+09:00 2016-05-06T16:13+09:00
jvndb-2016-000045 baserCMS plugin "Casebook Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000044 baserCMS plugin "Casebook Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000043 baserCMS plugin "Menubook Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000042 baserCMS plugin "Menubook Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000041 baserCMS plugin "Recruit Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000040 baserCMS plugin "Recruit Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000039 AQUOS Photo Player HN-PP150 vulnerable to cross-site request forgery 2016-04-04T15:30+09:00 2016-04-07T12:05+09:00
jvndb-2016-000038 ActiveX control for EVA Animator vulnerable to buffer overflow 2016-04-04T15:30+09:00 2016-04-20T09:38+09:00
jvndb-2016-000037 WisePoint contains issue in preventing clickjacking attacks 2016-04-04T15:30+09:00 2016-04-07T12:05+09:00
jvndb-2016-000036 Aterm WG300HP vulnerable to cross-site request forgery 2016-03-30T14:49+09:00 2016-04-18T15:41+09:00
jvndb-2016-000035 Aterm WF800HP vulnerable to cross-site request forgery 2016-03-30T14:49+09:00 2016-04-18T15:42+09:00
jvndb-2016-000034 WordPress plugin "WP Favorite Posts" vulnerable to cross-site scripting 2016-03-24T12:28+09:00 2016-03-29T15:40+09:00
jvndb-2016-001559 Information Disclosure Vulnerability in Hitachi Compute Systems Manager 2016-03-07T17:00+09:00 2016-03-31T17:50+09:00
jvndb-2016-000032 Multiple Corega wireless LAN routers vulnerable to cross-site request forgery 2016-03-02T14:52+09:00 2016-03-16T13:46+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-0919 Multiples vulnérabilités dans les produits Cisco 2024-10-24T00:00:00.000000 2024-10-24T00:00:00.000000
certfr-2024-avi-0918 Multiples vulnérabilités dans GitLab 2024-10-24T00:00:00.000000 2024-10-24T00:00:00.000000
certfr-2024-avi-0917 Vulnérabilité dans Fortinet FortiManager 2024-10-23T00:00:00.000000 2024-10-24T00:00:00.000000
certfr-2024-avi-0916 Multiples vulnérabilités dans le greffon pour Office 365 de Splunk 2024-10-23T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-avi-0915 Multiples vulnérabilités dans les produits Centreon 2024-10-23T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-avi-0914 Vulnérabilité dans les produits Spring 2024-10-23T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-avi-0913 Multiples vulnérabilités dans Google Chrome 2024-10-23T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-avi-0912 Multiples vulnérabilités dans Liferay 2024-10-23T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-avi-0911 Vulnérabilité dans les produits Moxa 2024-10-22T00:00:00.000000 2024-10-22T00:00:00.000000
certfr-2024-avi-0910 Vulnérabilité dans MongoDB 2024-10-22T00:00:00.000000 2024-10-22T00:00:00.000000
certfr-2024-avi-0909 Multiples vulnérabilités dans les produits Synology 2024-10-21T00:00:00.000000 2024-10-22T00:00:00.000000
certfr-2024-avi-0908 Vulnérabilité dans Microsoft Edge 2024-10-21T00:00:00.000000 2024-10-21T00:00:00.000000
certfr-2024-avi-0907 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0906 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0905 Multiples vulnérabilités dans les produits Moxa 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0904 Multiples vulnérabilités dans Foxit PDF Editor 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0903 Multiples vulnérabilités dans les produits IBM 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0902 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0901 Multiples vulnérabilités dans Microsoft Edge 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0900 Multiples vulnérabilités dans Spring Framework 2024-10-18T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0899 Vulnérabilité dans Grafana 2024-10-18T00:00:00.000000 2024-10-21T00:00:00.000000
certfr-2024-avi-0898 Multiples vulnérabilités dans Google Pixel 2024-10-17T00:00:00.000000 2024-10-17T00:00:00.000000
certfr-2024-avi-0897 Multiples vulnérabilités dans les produits Cisco 2024-10-17T00:00:00.000000 2024-10-17T00:00:00.000000
certfr-2024-avi-0896 Vulnérabilité dans VMware HCX 2024-10-17T00:00:00.000000 2024-10-17T00:00:00.000000
certfr-2024-avi-0895 Vulnérabilité dans OpenSSL 2024-10-17T00:00:00.000000 2024-10-18T00:00:00.000000
certfr-2024-avi-0894 Vulnérabilité dans Drupal Core 2024-10-17T00:00:00.000000 2024-10-17T00:00:00.000000
certfr-2024-avi-0893 Multiples vulnérabilités dans les produits F5 2024-10-17T00:00:00.000000 2024-10-21T00:00:00.000000
certfr-2024-avi-0892 Multiples vulnérabilités dans les produits SolarWinds 2024-10-16T00:00:00.000000 2024-10-16T00:00:00.000000
certfr-2024-avi-0891 Vulnérabilité dans Synacor Zimbra Desktop 2024-10-16T00:00:00.000000 2024-10-16T00:00:00.000000
certfr-2024-avi-0890 Multiples vulnérabilités dans les produits Atlassian 2024-10-16T00:00:00.000000 2024-10-16T00:00:00.000000
ID Description Published Updated