Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-35598 | Vikunja has Missing Authorization on CalDAV Task Read |
go-vikunja |
vikunja |
2026-04-10T16:04:32.083Z | 2026-04-14T14:20:44.249Z | |
| cve-2026-35670 | 6 (v4.0) 5.9 (v3.1) | OpenClaw < 2026.3.22 - Webhook Reply Rebinding via Use… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:28.524Z | 2026-04-14T14:59:51.073Z |
| cve-2026-35669 | 8.7 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.3.25 - Privilege Escalation via Gatewa… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:27.834Z | 2026-04-14T14:27:24.570Z |
| cve-2026-35668 | 7.1 (v4.0) 7.7 (v3.1) | OpenClaw < 2026.3.24 - Sandbox Media Root Bypass via U… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:27.149Z | 2026-04-10T18:27:23.337Z |
| cve-2026-35667 | 6.9 (v4.0) 6.1 (v3.1) | OpenClaw < 2026.3.24 - Improper Process Termination vi… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:26.457Z | 2026-04-10T20:17:55.994Z |
| cve-2026-35666 | 7.7 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.3.22 - Allowlist Bypass via Unregister… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:25.748Z | 2026-04-13T17:39:14.162Z |
| cve-2026-35665 | 6.9 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.24 - Denial of Service via Feishu We… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:25.047Z | 2026-04-10T16:58:15.053Z |
| cve-2026-35664 | 6.9 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.25 - DM Pairing Bypass via Legacy Ca… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:24.375Z | 2026-04-14T14:57:59.515Z |
| cve-2026-35663 | 8.7 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.3.25 - Privilege Escalation via Backen… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:23.672Z | 2026-04-14T14:28:08.608Z |
| cve-2026-35662 | 5.3 (v4.0) 4.3 (v3.1) | OpenClaw < 2026.3.22 - Missing controlScope Enforcemen… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:22.937Z | 2026-04-10T18:24:24.250Z |
| cve-2026-35661 | 6.9 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.25 - Telegram DM-Scoped Inline Butto… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:22.250Z | 2026-04-10T20:18:04.127Z |
| cve-2026-35660 | 7.2 (v4.0) 8.1 (v3.1) | OpenClaw < 2026.3.23 - Insufficient Access Control in … |
OpenClaw |
OpenClaw |
2026-04-10T16:03:21.568Z | 2026-04-13T17:41:32.978Z |
| cve-2026-35659 | 5.1 (v4.0) 4.6 (v3.1) | OpenClaw < 2026.3.22 - Unresolved Service Metadata Rou… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:20.749Z | 2026-04-10T16:58:50.963Z |
| cve-2026-35658 | 6 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.2 - Filesystem Boundary Bypass in Im… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:20.067Z | 2026-04-14T14:56:40.942Z |
| cve-2026-35597 | Vikunja Affected by TOTP Brute-Force Due to Non-Functi… |
go-vikunja |
vikunja |
2026-04-10T16:03:19.636Z | 2026-04-13T15:37:11.358Z | |
| cve-2026-35657 | 7.1 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.25 - Authorization Bypass in HTTP Se… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:19.372Z | 2026-04-14T14:28:51.873Z |
| cve-2026-35656 | 6.3 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.22 - XFF Loopback Spoofing Bypass in… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:18.659Z | 2026-04-10T18:23:28.866Z |
| cve-2026-35655 | 6.9 (v4.0) 5.7 (v3.1) | OpenClaw < 2026.3.22 - Identity Spoofing via rawInput … |
OpenClaw |
OpenClaw |
2026-04-10T16:03:17.978Z | 2026-04-10T20:18:12.455Z |
| cve-2026-35654 | 6.9 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.25 - Authorization Bypass in Microso… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:17.081Z | 2026-04-13T17:44:33.146Z |
| cve-2026-35653 | 7.2 (v4.0) 8.1 (v3.1) | OpenClaw < 2026.3.24 - Incorrect Authorization in POST… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:16.391Z | 2026-04-10T16:59:30.616Z |
| cve-2026-35652 | 6.9 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.22 - Unauthorized Action Execution v… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:15.676Z | 2026-04-14T14:55:03.900Z |
| cve-2026-35651 | 5.3 (v4.0) 4.3 (v3.1) | OpenClaw 2026.2.13 < 2026.3.25 - ANSI Escape Sequence … |
OpenClaw |
OpenClaw |
2026-04-10T16:03:14.791Z | 2026-04-14T14:29:29.531Z |
| cve-2026-35650 | 7.7 (v4.0) 7.5 (v3.1) | OpenClaw < 2026.3.22 - Environment Variable Override B… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:13.984Z | 2026-04-10T18:22:40.750Z |
| cve-2026-35649 | 6.3 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.22 - Settings Reconciliation Bypass … |
OpenClaw |
OpenClaw |
2026-04-10T16:03:13.290Z | 2026-04-13T15:37:18.430Z |
| cve-2026-35648 | 2.3 (v4.0) 3.7 (v3.1) | OpenClaw < 2026.3.22 - Policy Bypass via Unvalidated Q… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:12.588Z | 2026-04-13T17:55:23.719Z |
| cve-2026-35647 | 6.9 (v4.0) 5.3 (v3.1) | OpenClaw < 2026.3.25 - Direct Message Policy Bypass vi… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:11.903Z | 2026-04-10T17:21:38.896Z |
| cve-2026-35643 | 8.6 (v4.0) 8.8 (v3.1) | OpenClaw < 2026.3.22 - Arbitrary Code Execution via Un… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:11.209Z | 2026-04-14T14:54:05.741Z |
| cve-2026-35641 | 8.4 (v4.0) 7.8 (v3.1) | OpenClaw < 2026.3.24 - Arbitrary Code Execution via .n… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:10.490Z | 2026-04-14T14:30:49.773Z |
| cve-2026-35621 | 7.1 (v4.0) 6.5 (v3.1) | OpenClaw < 2026.3.24 - Privilege Escalation via chat.s… |
OpenClaw |
OpenClaw |
2026-04-10T16:03:09.856Z | 2026-04-10T18:21:15.828Z |
| cve-2026-35620 | 5.3 (v4.0) 5.4 (v3.1) | OpenClaw < 2026.3.24 - Missing Authorization in /send … |
OpenClaw |
OpenClaw |
2026-04-10T16:03:09.127Z | 2026-04-13T15:37:24.593Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2014-000081 | File Explorer vulnerable to directory traversal | 2014-07-18T13:48+09:00 | 2014-07-23T11:02+09:00 |
| jvndb-2014-000080 | Meridian vulnerable to cross-site scripting | 2014-07-18T13:47+09:00 | 2014-07-23T11:02+09:00 |
| jvndb-2014-000079 | Multifunctional MailForm Free vulnerable to cross-site scripting | 2014-07-16T15:13+09:00 | 2014-07-23T11:02+09:00 |
| jvndb-2014-000078 | Cybozu Garoon vulnerable to cross-site scritping | 2014-07-15T14:47+09:00 | 2014-07-23T11:01+09:00 |
| jvndb-2014-000077 | Cybozu Garoon vulnerable to access restriction bypass | 2014-07-15T14:46+09:00 | 2014-07-23T11:01+09:00 |
| jvndb-2014-000076 | Cybozu Garoon vulnerable to cross-site scritping | 2014-07-15T14:46+09:00 | 2014-07-23T11:01+09:00 |
| jvndb-2014-000075 | Cybozu Garoon vulnerable to cross-site scritping | 2014-07-15T14:45+09:00 | 2014-07-23T11:01+09:00 |
| jvndb-2014-000074 | Cybozu Garoon 3 API access restriction bypass vulnerability | 2014-07-15T14:45+09:00 | 2014-07-23T11:00+09:00 |
| jvndb-2014-000073 | Cybozu Garoon CGI vulnerable to remote command execution | 2014-07-15T14:44+09:00 | 2014-07-23T11:00+09:00 |
| jvndb-2014-000072 | Seasar S2Struts vulnerable to ClassLoader manipulation | 2014-07-15T14:44+09:00 | 2014-07-15T14:44+09:00 |
| jvndb-2014-000071 | Becky! Internet Mail vulnerable to buffer overflow | 2014-07-08T14:53+09:00 | 2014-07-10T17:05+09:00 |
| jvndb-2014-000066 | SX-2000WG vulnerable to denial-of-service (DoS) | 2014-07-02T15:20+09:00 | 2014-07-07T18:34+09:00 |
| jvndb-2014-000065 | SX-2000WG vulnerable to denial-of-service (DoS) | 2014-07-02T15:16+09:00 | 2014-07-07T18:28+09:00 |
| jvndb-2014-000069 | RockDisk vulnerable to cross-site scripting | 2014-07-02T14:40+09:00 | 2017-05-17T17:07+09:00 |
| jvndb-2014-000064 | Web Kyukincho vulnerable to cross-site request forgery | 2014-06-25T15:01+09:00 | 2014-07-01T16:07+09:00 |
| jvndb-2014-000063 | Web Kyukincho vulnerable to cross-site scripting | 2014-06-25T14:53+09:00 | 2014-07-01T16:08+09:00 |
| jvndb-2014-000062 | Login rebuilder vulnerable to cross-site request forgery | 2014-06-24T14:22+09:00 | 2014-06-24T14:22+09:00 |
| jvndb-2014-000061 | Sophos Disk Encryption vulnerable to authentication bypass | 2014-06-24T14:21+09:00 | 2014-06-26T17:46+09:00 |
| jvndb-2014-000060 | Webmin vulnerable to cross-site scripting | 2014-06-20T13:58+09:00 | 2014-07-23T11:00+09:00 |
| jvndb-2014-000059 | Webmin vulnerable to cross-site scripting | 2014-06-20T13:58+09:00 | 2014-07-23T10:59+09:00 |
| jvndb-2014-000058 | Usermin vulnerable to cross-site scripting | 2014-06-20T13:56+09:00 | 2014-07-23T10:59+09:00 |
| jvndb-2014-000057 | Usermin vulnerable to OS command injection | 2014-06-20T13:56+09:00 | 2014-06-24T13:44+09:00 |
| jvndb-2014-000050 | JR East Japan App for Android. contains an issue where it fails to verify SSL server certificates | 2014-06-18T14:57+09:00 | 2014-06-23T11:06+09:00 |
| jvndb-2014-000056 | TERASOLUNA Server Framework for Java(Web) vulnerable to ClassLoader manipulation | 2014-06-17T15:01+09:00 | 2015-01-22T15:50+09:00 |
| jvndb-2014-000049 | 050 plus for Android information management vulnerability | 2014-06-17T14:50+09:00 | 2014-06-23T11:03+09:00 |
| jvndb-2014-000055 | SEIL Series routers vulnerable to denial-of-service (DoS) | 2014-06-13T12:44+09:00 | 2014-06-17T16:11+09:00 |
| jvndb-2014-000054 | Spring Framework vulnerable to directory traversal | 2014-06-13T12:40+09:00 | 2016-06-23T13:45+09:00 |
| jvndb-2014-002802 | Xml eXternal Entity Vulnerability in XML link function of Hitachi COBOL2002 | 2014-06-12T11:43+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-002800 | Multiple Vulnerabilities in Hitachi Tuning Manager and JP1/Performance Management - Manager Web Option | 2014-06-12T11:43+09:00 | 2015-03-03T16:59+09:00 |
| jvndb-2014-000051 | C-BOARD Moyuku vulnerable to cross-site scripting | 2014-06-11T14:22+09:00 | 2014-06-17T16:22+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0589 | Multiples vulnérabilités dans Xen | 2024-07-17T00:00:00.000000 | 2024-07-17T00:00:00.000000 |
| certfr-2024-avi-0588 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-07-17T00:00:00.000000 | 2024-07-17T00:00:00.000000 |
| certfr-2024-avi-0587 | Multiples vulnérabilités dans les produits VMware | 2024-07-17T00:00:00.000000 | 2024-07-17T00:00:00.000000 |
| certfr-2024-avi-0586 | Multiples vulnérabilités dans les produits Stormshield | 2024-07-16T00:00:00.000000 | 2024-08-21T00:00:00.000000 |
| certfr-2024-avi-0585 | Multiples vulnérabilités dans les produits VMware | 2024-07-16T00:00:00.000000 | 2024-07-16T00:00:00.000000 |
| certfr-2024-avi-0584 | Vulnérabilité dans les produits Cisco | 2024-07-15T00:00:00.000000 | 2024-07-15T00:00:00.000000 |
| certfr-2024-avi-0583 | Vulnérabilité dans les produits Kaspersky | 2024-07-15T00:00:00.000000 | 2024-07-15T00:00:00.000000 |
| certfr-2024-avi-0582 | Vulnérabilité dans les produits Axis | 2024-07-15T00:00:00.000000 | 2024-07-15T00:00:00.000000 |
| certfr-2024-avi-0581 | Vulnérabilité dans les produits ESET | 2024-07-15T00:00:00.000000 | 2024-07-15T00:00:00.000000 |
| certfr-2024-avi-0580 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0579 | Multiples vulnérabilités dans les produits IBM | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0578 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0577 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0576 | Vulnérabilité dans Exim | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0575 | Multiples vulnérabilités dans les produits Juniper Networks | 2024-07-12T00:00:00.000000 | 2024-10-15T00:00:00.000000 |
| certfr-2024-avi-0574 | Vulnérabilité dans Citrix uberAgent | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0573 | Vulnérabilité dans les produits Microsoft | 2024-07-12T00:00:00.000000 | 2024-07-12T00:00:00.000000 |
| certfr-2024-avi-0572 | Multiples vulnérabilités dans GitLab | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0571 | Vulnérabilité dans les produits VMware | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0570 | Vulnérabilité dans les produits Moxa | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0569 | Vulnérabilité dans les produits Cisco | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0568 | Vulnérabilité dans Wireshark | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0567 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0566 | Multiples vulnérabilités dans GLPI | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0565 | Vulnérabilité dans les produits Mitel | 2024-07-11T00:00:00.000000 | 2024-07-11T00:00:00.000000 |
| certfr-2024-avi-0564 | Multiples vulnérabilités dans les produits Tenable | 2024-07-10T00:00:00.000000 | 2024-07-10T00:00:00.000000 |
| certfr-2024-avi-0563 | Multiples vulnérabilités dans les produits Citrix | 2024-07-10T00:00:00.000000 | 2024-07-10T00:00:00.000000 |
| certfr-2024-avi-0562 | Multiples vulnérabilités dans Joomla! | 2024-07-10T00:00:00.000000 | 2024-07-10T00:00:00.000000 |
| certfr-2024-avi-0561 | Multiples vulnérabilités dans les produits Fortinet | 2024-07-10T00:00:00.000000 | 2024-07-10T00:00:00.000000 |
| certfr-2024-avi-0560 | Multiples vulnérabilités dans les produits Microsoft | 2024-07-10T00:00:00.000000 | 2024-07-10T00:00:00.000000 |