Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-1880 5.4 (v4.0) An Incorrect Permission Assignment for Critical R… ASUS
 DriverHub
 2026-04-16T02:00:36.112Z 2026-04-16T12:31:34.003Z
cve-2026-3428 5.4 (v4.0) A Download of Code Without Integrity Check vulner… ASUS
 Member Center(华硕大厅)
 2026-04-16T02:02:41.534Z 2026-04-16T12:31:27.657Z
cve-2026-41030 6.2 (v3.1) In ONLYOFFICE DesktopEditors before 9.3.0, the up… Ascensio
 ONLYOFFICE DesktopEditors
 2026-04-16T05:51:21.338Z 2026-04-16T12:31:19.989Z
cve-2026-3861 LINE client for iOS versions prior to 26.3.0 cont… LINE Corporation
 LINE client for iOS
 2026-04-16T05:54:05.194Z 2026-04-16T12:31:11.953Z
cve-2026-41034 5 (v3.1) ONLYOFFICE DocumentServer before 9.3.0 has an unt… Ascensio
 ONLYOFFICE DocumentServer
 2026-04-16T06:06:44.570Z 2026-04-16T12:31:05.251Z
cve-2024-2374 7.5 (v3.1) XML External Entity Injection in Multiple WSO2 Product… WSO2
 WSO2 API Manager
 2026-04-16T08:12:58.247Z 2026-04-16T12:30:49.250Z
cve-2024-4867 5.4 (v3.1) Cross-Site Scripting via Developer Portal in WSO2 API … WSO2
 WSO2 API Manager
 2026-04-16T09:32:40.941Z 2026-04-16T12:30:42.568Z
cve-2024-8010 3.5 (v3.1) XML External Entity Injection via Publisher in WSO2 AP… WSO2
 WSO2 API Manager
 2026-04-16T09:39:20.130Z 2026-04-16T12:30:36.466Z
cve-2024-10242 6.1 (v3.1) Reflected Cross-Site Scripting via Authentication Endp… WSO2
 WSO2 API Manager
 2026-04-16T09:45:46.115Z 2026-04-16T12:30:30.619Z
cve-2025-6024 6.1 (v3.1) Cross-Site Scripting via Authentication Endpoint in Mu… WSO2
 WSO2 API Manager
 2026-04-16T09:48:45.244Z 2026-04-16T12:30:22.824Z
cve-2025-12624 6 (v3.1) Improper Token Invalidation in WSO2 Identity Server Al… WSO2
 WSO2 Identity Server
 2026-04-16T10:25:19.789Z 2026-04-16T12:30:14.886Z
cve-2026-31049 N/A An issue in Hostbill v.2025-11-24 and 2025-12-01 … n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:52.366Z
cve-2025-61260 N/A A vulnerability was identified in OpenAI Codex CL… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:45.207Z
cve-2026-30480 N/A A Local File Inclusion (LFI) vulnerability in the… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:38.149Z
cve-2025-69893 N/A A side-channel vulnerability exists in the implem… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:31.722Z
cve-2025-65133 N/A A SQL injection vulnerability exists in the Schoo… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:24.330Z
cve-2026-38533 N/A An improper authorization vulnerability in the /a… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:16.556Z
cve-2025-70023 N/A An issue pertaining to CWE-843: Access of Resourc… n/a
 n/a
 2026-04-14T00:00:00.000Z 2026-04-16T12:06:09.148Z
cve-2026-31908 Apache APISIX: forward auth plugin allows header injection Apache Software Foundation
 Apache APISIX
 2026-04-14T08:06:18.026Z 2026-04-16T12:06:00.176Z
cve-2026-5756 N/A Unauthenticated Configuration File Modification Vulner… Data Recognition Corporation
 Central Office Services - Content Hosting Component
 2026-04-14T17:51:53.628Z 2026-04-16T12:05:46.105Z
cve-2026-5088 N/A Apache::API::Password versions through v0.5.2 for Perl… JDEGUEST
 Apache::API::Password
 2026-04-15T07:03:13.742Z 2026-04-16T12:05:32.095Z
cve-2026-30778 Apache SkyWalking: The SkyWalking OAP /debugging/confi… Apache Software Foundation
 Apache SkyWalking
 2026-04-15T10:54:25.212Z 2026-04-16T12:05:25.254Z
cve-2026-33889 ApostropheCMS: Stored XSS via CSS Custom Property Inje… apostrophecms
 apostrophe
 2026-04-15T19:29:50.899Z 2026-04-16T12:05:17.734Z
cve-2026-40173 Dgraph: Unauthenticated pprof endpoint leaks admin aut… dgraph-io
 dgraph
 2026-04-15T20:40:47.186Z 2026-04-16T12:05:10.186Z
cve-2026-22676 8.5 (v4.0) 7.8 (v3.1) Barracuda RMM < 2025.2.2 Privilege Escalation via Inse… Barracuda Networks
 RMM
 2026-04-15T20:45:23.918Z 2026-04-16T12:05:01.880Z
cve-2026-39350 Istio AuthorizationPolicy Incorrect Regex Matching of … istio
 istio
 2026-04-15T22:42:24.216Z 2026-04-16T12:04:54.038Z
cve-2026-40245 Free5GC: UDR nudr-dr influenceData/subs-to-notify leak… free5gc
 free5gc
 2026-04-15T23:25:11.589Z 2026-04-16T12:04:46.694Z
cve-2026-3885 WP Shortcodes Plugin — Shortcodes Ultimate <= 7.4.9 - … gn_themes
 WP Shortcodes Plugin — Shortcodes Ultimate
 2026-04-16T02:25:17.471Z 2026-04-16T12:04:38.531Z
cve-2026-3595 Riaxe Product Customizer <= 2.1.2 - Unauthenticated Ar… imprintnext
 Riaxe Product Customizer
 2026-04-16T05:29:52.794Z 2026-04-16T12:04:31.317Z
cve-2026-3995 OPEN-BRAIN <= 0.5.0 - Authenticated (Administrator+) S… faridsaniee
 OPEN-BRAIN
 2026-04-16T06:44:51.340Z 2026-04-16T12:04:24.073Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2016-000045 baserCMS plugin "Casebook Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000044 baserCMS plugin "Casebook Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000043 baserCMS plugin "Menubook Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000042 baserCMS plugin "Menubook Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000041 baserCMS plugin "Recruit Plugin" vulnerable to cross-site request forgery 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000040 baserCMS plugin "Recruit Plugin" vulnerable to cross-site scripting 2016-04-06T15:29+09:00 2016-04-08T16:51+09:00
jvndb-2016-000039 AQUOS Photo Player HN-PP150 vulnerable to cross-site request forgery 2016-04-04T15:30+09:00 2016-04-07T12:05+09:00
jvndb-2016-000037 WisePoint contains issue in preventing clickjacking attacks 2016-04-04T15:30+09:00 2016-04-07T12:05+09:00
jvndb-2016-001559 Information Disclosure Vulnerability in Hitachi Compute Systems Manager 2016-03-07T17:00+09:00 2016-03-31T17:50+09:00
jvndb-2016-000034 WordPress plugin "WP Favorite Posts" vulnerable to cross-site scripting 2016-03-24T12:28+09:00 2016-03-29T15:40+09:00
jvndb-2016-000015 EXPRESSCLUSTER X vulnerable to directory traversal 2016-01-29T13:45+09:00 2016-03-16T14:24+09:00
jvndb-2016-000032 Multiple Corega wireless LAN routers vulnerable to cross-site request forgery 2016-03-02T14:52+09:00 2016-03-16T13:46+09:00
jvndb-2016-000006 Multiple Buffalo network devices vulnerable to cross-site scripting 2016-01-22T14:36+09:00 2016-03-10T17:53+09:00
jvndb-2016-000005 Multiple Buffalo network devices vulnerable to cross-site request forgery 2016-01-22T14:36+09:00 2016-03-10T17:53+09:00
jvndb-2016-000029 LINE for Windows and LINE for Mac OS vulnerable to denial-of-service (DoS) 2016-02-19T14:43+09:00 2016-03-10T17:39+09:00
jvndb-2016-000030 baserCMS vulnerable to OS command injection 2016-02-19T14:39+09:00 2016-03-07T15:51+09:00
jvndb-2016-000017 JOB-CUBE vulnerable to cross-site scripting 2016-01-29T14:06+09:00 2016-03-04T17:47+09:00
jvndb-2016-000027 EC-CUBE plugin "Help plug-in" vulnerable to SQL injection 2016-02-19T14:42+09:00 2016-03-03T17:51+09:00
jvndb-2014-005987 Multiple Vulnerabilities in JP1/Cm2/Network Node Manager i 2014-12-16T17:31+09:00 2016-02-26T17:52+09:00
jvndb-2014-005986 Multiple buffer overflows in Hitachi JP1/Cm2/Network Node Manager i 2014-12-16T17:30+09:00 2016-02-26T17:32+09:00
jvndb-2016-000031 Log-Chat vulnerable to cross-site scripting 2016-02-22T14:56+09:00 2016-02-25T15:10+09:00
jvndb-2016-000025 Cybozu Office vulnerable to open redirect 2016-02-15T16:20+09:00 2016-02-23T16:32+09:00
jvndb-2016-000024 Cybozu Office vulnerable to cross-site request forgery 2016-02-15T16:20+09:00 2016-02-23T16:32+09:00
jvndb-2016-000023 Cybozu Office access restriction bypass vulnerability 2016-02-15T15:45+09:00 2016-02-23T16:32+09:00
jvndb-2016-000022 Cybozu Office vulnerable to information disclosure 2016-02-15T15:44+09:00 2016-02-23T16:32+09:00
jvndb-2016-000021 Cybozu Office vulnerable to information disclosure 2016-02-15T15:44+09:00 2016-02-23T16:32+09:00
jvndb-2016-000020 Cybozu Office vulnerable to denial-of-service (DoS) 2016-02-15T15:43+09:00 2016-02-23T16:32+09:00
jvndb-2016-000028 Internet Explorer cross-domain policy bypass 2016-02-19T14:39+09:00 2016-02-23T11:23+09:00
jvndb-2016-000012 HOME SPOT CUBE vulnerable to OS command injection 2016-01-27T14:40+09:00 2016-02-16T17:26+09:00
jvndb-2016-000011 HOME SPOT CUBE vulnerable to clickjacking 2016-01-27T14:40+09:00 2016-02-16T17:26+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-0868 Multiples vulnérabilités dans Microsoft Edge 2024-10-11T00:00:00.000000 2024-10-11T00:00:00.000000
certfr-2024-avi-0867 Multiples vulnérabilités dans les produits SonicWall 2024-10-11T00:00:00.000000 2024-10-11T00:00:00.000000
certfr-2024-avi-0866 Multiples vulnérabilités dans les produits Juniper Networks 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0865 Vulnérabilité dans Mozilla Firefox 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0864 Vulnérabilité dans les produits Microsoft 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0863 Vulnérabilité dans Synology DSM 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0862 Multiples vulnérabilités dans GitLab 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0861 Multiples vulnérabilités dans Wireshark 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0860 Multiples vulnérabilités dans les produits VMware 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0859 Multiples vulnérabilités dans les produits Palo Alto Networks 2024-10-10T00:00:00.000000 2024-10-10T00:00:00.000000
certfr-2024-avi-0857 Multiples vulnérabilités dans les produits Microsoft 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0856 Multiples vulnérabilités dans Microsoft Azure 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0855 Multiples vulnérabilités dans Microsoft .Net 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0854 Multiples vulnérabilités dans Microsoft Windows 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0853 Multiples vulnérabilités dans Microsoft Office 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0852 Vulnérabilité dans Intel TDX Module 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0851 Multiples vulnérabilités dans les produits Ivanti 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0850 Vulnérabilité dans Synacor Zimbra Collaboration 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0849 Multiples vulnérabilités dans Google Chrome 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0848 Multiples vulnérabilités dans Adobe Commerce et Magento 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0847 Multiples vulnérabilités dans les produits Fortinet 2024-10-09T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0845 Multiples vulnérabilités dans les produits Schneider Electric 2024-10-08T00:00:00.000000 2024-10-09T00:00:00.000000
certfr-2024-avi-0846 Multiples vulnérabilités dans les produits Siemens 2024-10-08T00:00:00.000000 2024-10-08T00:00:00.000000
certfr-2024-avi-0844 Multiples vulnérabilités dans les produits SAP 2024-10-08T00:00:00.000000 2024-10-08T00:00:00.000000
certfr-2024-avi-0843 Multiples vulnérabilités dans Typo3 2024-10-08T00:00:00.000000 2024-10-08T00:00:00.000000
certfr-2024-avi-0842 Multiples vulnérabilités dans les produits Moxa 2024-10-07T00:00:00.000000 2024-10-07T00:00:00.000000
certfr-2024-avi-0841 Multiples vulnérabilités dans les produits IBM 2024-10-04T00:00:00.000000 2024-10-04T00:00:00.000000
certfr-2024-avi-0840 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-10-04T00:00:00.000000 2024-10-04T00:00:00.000000
certfr-2024-avi-0839 Multiples vulnérabilités dans le noyau Linux de Red Hat 2024-10-04T00:00:00.000000 2024-10-04T00:00:00.000000
certfr-2024-avi-0838 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-10-04T00:00:00.000000 2024-10-04T00:00:00.000000
ID Description Published Updated