Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-6025 | Totolink A7100RU CGI cstecgi.cgi setSyslogCfg os comma… |
Totolink |
A7100RU |
2026-04-10T05:30:21.486Z | 2026-04-10T14:59:13.478Z | |
| cve-2026-6024 | Tenda i6 HTTP R7WebsSecurityHandlerfunction path traversal |
Tenda |
i6 |
2026-04-10T05:15:13.771Z | 2026-04-10T15:54:20.628Z | |
| cve-2026-5477 | 8.2 (v4.0) | Prefix-substitution forgery via integer overflow in wo… |
wolfSSL |
wolfSSL |
2026-04-10T05:06:22.884Z | 2026-04-10T14:04:00.411Z |
| cve-2026-6016 | Tenda AC9 POST Request WizardHandle decodePwd stack-ba… |
Tenda |
AC9 |
2026-04-10T05:00:23.163Z | 2026-04-10T13:40:04.879Z | |
| cve-2026-6015 | Tenda AC9 POST Request QuickIndex formQuickIndex stack… |
Tenda |
AC9 |
2026-04-10T04:45:15.605Z | 2026-04-14T14:34:24.148Z | |
| cve-2026-6014 | D-Link DIR-513 POST Request formAdvanceSetup buffer overflow |
D-Link |
DIR-513 |
2026-04-10T04:30:21.978Z | 2026-04-10T11:58:43.540Z | |
| cve-2026-4482 | 6.8 (v4.0) | Insight Agent Private Key Information Disclosure via I… |
Rapid7 |
Insight Agent |
2026-04-10T04:22:38.719Z | 2026-04-10T15:33:30.608Z |
| cve-2026-6013 | D-Link DIR-513 POST Request formSetRoute buffer overflow |
D-Link |
DIR-513 |
2026-04-10T04:15:13.189Z | 2026-04-10T15:35:06.404Z | |
| cve-2026-6012 | D-Link DIR-513 POST Request formSetPassword buffer overflow |
D-Link |
DIR-513 |
2026-04-10T04:00:16.952Z | 2026-04-10T15:54:28.106Z | |
| cve-2026-6011 | OpenClaw assertPublicHostname web-fetch.ts server-side… |
n/a |
OpenClaw |
2026-04-10T03:45:14.380Z | 2026-04-10T13:41:20.869Z | |
| cve-2026-2305 | AddFunc Head & Footer Code <= 2.3 - Authenticated (Con… |
addfunc |
AddFunc Head & Footer Code |
2026-04-10T03:35:35.305Z | 2026-04-10T17:03:14.663Z | |
| cve-2026-6010 | CodeAstro Online Classroom takeassessment2.php sql injection |
CodeAstro |
Online Classroom |
2026-04-10T03:30:14.967Z | 2026-04-14T03:18:56.594Z | |
| cve-2026-5188 | 2.3 (v4.0) | Integer underflow in X.509 SAN parsing in wolfSSL |
wolfSSL |
wolfSSL |
2026-04-10T03:24:21.126Z | 2026-04-10T13:41:51.326Z |
| cve-2026-6007 | itsourcecode Construction Management System del.php sq… |
itsourcecode |
Construction Management System |
2026-04-10T03:15:12.064Z | 2026-04-10T12:08:17.415Z | |
| cve-2026-5500 | 8.7 (v4.0) | Improper Validation of AES-GCM Authentication Tag Leng… |
wolfSSL |
wolfSSL |
2026-04-10T03:10:25.671Z | 2026-04-10T13:42:28.091Z |
| cve-2026-5501 | 8.6 (v4.0) | Improper Certificate Signature Verification in X.509 C… |
wolfSSL |
wolfSSL |
2026-04-10T03:07:39.604Z | 2026-04-22T13:59:28.514Z |
| cve-2026-5466 | 7.6 (v4.0) | wc_VerifyEccsiHash missing sanity check |
wolfSSL |
wolfSSL |
2026-04-10T03:00:42.976Z | 2026-04-22T03:55:48.877Z |
| cve-2026-6006 | code-projects Patient Record Management System edit_hp… |
code-projects |
Patient Record Management System |
2026-04-10T03:00:20.534Z | 2026-04-10T17:04:11.688Z | |
| cve-2026-6005 | code-projects Patient Record Management System hematol… |
code-projects |
Patient Record Management System |
2026-04-10T02:45:12.085Z | 2026-04-10T15:54:38.282Z | |
| cve-2026-5479 | 7.6 (v4.0) | wolfSSL EVP ChaCha20-Poly1305 AEAD authentication tag |
wolfSSL |
wolfSSL |
2026-04-10T02:38:39.918Z | 2026-04-22T03:55:50.004Z |
| cve-2026-6004 | code-projects Simple IT Discussion Forum delete-catego… |
code-projects |
Simple IT Discussion Forum |
2026-04-10T02:30:23.693Z | 2026-04-10T13:44:55.927Z | |
| cve-2026-6003 | code-projects Simple IT Discussion Forum user.php cros… |
code-projects |
Simple IT Discussion Forum |
2026-04-10T02:15:14.177Z | 2026-04-14T03:17:51.899Z | |
| cve-2026-6000 | code-projects Online Library Management System SQL Dat… |
code-projects |
Online Library Management System |
2026-04-10T02:00:18.782Z | 2026-04-10T12:09:00.502Z | |
| cve-2026-5999 | JeecgBoot SysAnnouncementController improper authorization |
n/a |
JeecgBoot |
2026-04-10T01:45:14.036Z | 2026-04-10T17:05:03.875Z | |
| cve-2026-5998 | zhayujie chatgpt-on-wechat CowAgent API Memory Content… |
zhayujie |
chatgpt-on-wechat CowAgent |
2026-04-10T01:30:17.358Z | 2026-04-10T15:54:44.452Z | |
| cve-2026-4305 | Royal WordPress Backup & Restore Plugin <= 1.0.16 - Re… |
wproyal |
Royal WordPress Backup, Restore & Migration Plugin – Backup WordPress Sites Safely |
2026-04-10T01:25:00.917Z | 2026-04-13T15:15:09.194Z | |
| cve-2026-4977 | UsersWP <= 1.2.58 - Authenticated (Subscriber+) Restri… |
stiofansisland |
UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP |
2026-04-10T01:25:00.523Z | 2026-04-10T13:45:35.270Z | |
| cve-2026-1924 | Aruba HiSpeed Cache <= 3.0.4 - Cross-Site Request Forg… |
arubadev |
Aruba HiSpeed Cache |
2026-04-10T01:24:59.928Z | 2026-04-10T12:18:06.324Z | |
| cve-2026-4351 | Perfmatters <= 2.5.9 - Authenticated (Subscriber+) Arb… |
perfmatters |
Perfmatters |
2026-04-10T01:24:59.539Z | 2026-04-10T15:54:52.222Z | |
| cve-2026-1263 | Webling <= 3.9.0 - Authenticated (Subscriber+) Stored … |
usystemsgmbh |
Webling |
2026-04-10T01:24:59.121Z | 2026-04-10T15:54:58.703Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2013-000116 | Cybozu Garoon vulnerable to mail header injection | 2013-12-03T13:49+09:00 | 2013-12-06T10:50+09:00 |
| jvndb-2013-000115 | Cybozu Garoon vulnerable to denial-of-service (DoS) | 2013-12-03T13:46+09:00 | 2013-12-06T10:48+09:00 |
| jvndb-2013-000114 | Cybozu Garoon vulnerable to SQL injection | 2013-12-03T13:45+09:00 | 2013-12-06T10:47+09:00 |
| jvndb-2013-000113 | Multiple cross-site scripting vulnerabilities in Cybozu Garoon | 2013-12-03T13:37+09:00 | 2013-12-06T10:42+09:00 |
| jvndb-2013-000112 | TOWN (modified version) vulnerable to directory traversal | 2013-11-29T14:23+09:00 | 2013-12-06T10:38+09:00 |
| jvndb-2013-005262 | Buffer Overflow Vulnerability in the log function of Interstage HTTP Server | 2013-11-28T16:38+09:00 | 2013-12-18T16:16+09:00 |
| jvndb-2013-000108 | KDrive Personal for Windows contains an issue where it fails to verify SSL server certificates | 2013-11-22T17:39+09:00 | 2013-11-26T16:02+09:00 |
| jvndb-2013-000110 | D-Link DES-3800 Series vulnerable to denial-of-service (DoS) | 2013-11-22T14:51+09:00 | 2013-11-26T16:15+09:00 |
| jvndb-2013-000109 | D-Link DES-3800 Series vulnerable to denial-of-service (DoS) | 2013-11-22T14:50+09:00 | 2013-11-26T16:09+09:00 |
| jvndb-2013-000106 | EC-CUBE information disclosure vulnerability | 2013-11-20T16:14+09:00 | 2013-11-22T14:18+09:00 |
| jvndb-2013-000107 | EC-CUBE vulnerable to cross-site scripting | 2013-11-20T15:56+09:00 | 2013-11-22T13:57+09:00 |
| jvndb-2013-000098 | EC-CUBE information disclosure vulnerability | 2013-11-20T15:48+09:00 | 2013-11-22T14:35+09:00 |
| jvndb-2013-000097 | EC-CUBE vulnerable to cross-site request forgery | 2013-11-20T15:40+09:00 | 2013-11-22T14:37+09:00 |
| jvndb-2013-000105 | EC-CUBE vulnerable to cross-site scripting | 2013-11-20T15:34+09:00 | 2013-11-22T14:40+09:00 |
| jvndb-2013-000104 | EC-CUBE vulnerable to information disclosure | 2013-11-20T15:19+09:00 | 2013-11-22T14:42+09:00 |
| jvndb-2011-003557 | ASP.NET vulnerable to open redirect | 2013-11-15T15:54+09:00 | 2013-11-15T15:54+09:00 |
| jvndb-2013-000103 | Ichitaro series vulnerable to arbitrary code execution | 2013-11-12T14:33+09:00 | 2013-11-15T10:22+09:00 |
| jvndb-2013-000102 | Page Scroller vulnerable to cross-site scripting | 2013-11-07T14:03+09:00 | 2013-11-07T14:03+09:00 |
| jvndb-2013-000101 | TOWN (modified version) vulnerable to cross-site scripting | 2013-11-07T13:59+09:00 | 2013-11-11T16:34+09:00 |
| jvndb-2013-000100 | Tiki Wiki CMS Groupware vulnerable to SQL injection | 2013-11-05T15:11+09:00 | 2013-11-07T17:57+09:00 |
| jvndb-2013-000099 | Tiki Wiki CMS Groupware vulnerable to cross-site scripting | 2013-11-05T15:05+09:00 | 2013-11-07T17:55+09:00 |
| jvndb-2013-004446 | Use-after-free vulnerability in multiple products that use International Components for Unicode (ICU) | 2013-10-30T16:32+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2013-001665 | Multiple products that use International Components for Unicode (ICU) vulnerable to denial-of-service (DoS) | 2013-10-30T16:08+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2013-000096 | RockDisk vulnerable to cross-site scripting | 2013-10-29T14:40+09:00 | 2014-07-02T14:36+09:00 |
| jvndb-2013-000095 | HDL-A and HDL2-A Series vulnerable in session management | 2013-10-18T14:30+09:00 | 2013-10-22T17:56+09:00 |
| jvndb-2013-000094 | Accela BizSearch vulnerable to cross-site scripting | 2013-10-04T12:36+09:00 | 2013-10-08T14:56+09:00 |
| jvndb-2013-004410 | Arbitrary Commands Execution Vulnerability in JP1/Base | 2013-10-03T19:26+09:00 | 2013-10-03T19:26+09:00 |
| jvndb-2013-004409 | Arbitrary Commands Execution Vulnerability in JP1/Automatic Job Management System 3 and JP1/Automatic Job Management System 2 | 2013-10-03T19:24+09:00 | 2013-10-03T19:24+09:00 |
| jvndb-2013-004319 | Multiple vulnerabilities in Java bundled with Hitachi JP1/Cm2/Network Node Manager i | 2013-09-27T14:51+09:00 | 2013-09-27T14:51+09:00 |
| jvndb-2013-004318 | Multiple vulnerabilities in Hitachi JP1/Cm2/Network Node Manager i | 2013-09-27T14:49+09:00 | 2013-09-27T14:49+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0498 | Multiples vulnérabilités dans les produits IBM | 2024-06-14T00:00:00.000000 | 2024-06-14T00:00:00.000000 |
| certfr-2024-avi-0497 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-06-14T00:00:00.000000 | 2024-06-14T00:00:00.000000 |
| certfr-2024-avi-0496 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-06-14T00:00:00.000000 | 2024-06-14T00:00:00.000000 |
| certfr-2024-avi-0495 | Multiples vulnérabilités dans Microsoft Edge | 2024-06-14T00:00:00.000000 | 2024-06-14T00:00:00.000000 |
| certfr-2024-avi-0494 | Vulnérabilité dans FreeRADIUS | 2024-06-14T00:00:00.000000 | 2024-06-21T00:00:00.000000 |
| certfr-2024-avi-0493 | Multiples vulnérabilités dans les produits Mozilla | 2024-06-14T00:00:00.000000 | 2024-06-24T00:00:00.000000 |
| certfr-2024-avi-0492 | Multiples vulnérabilités dans Google Android et Pixel | 2024-06-13T00:00:00.000000 | 2024-06-13T00:00:00.000000 |
| certfr-2024-avi-0491 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-06-13T00:00:00.000000 | 2024-06-13T00:00:00.000000 |
| certfr-2024-avi-0490 | Multiples vulnérabilités dans GitLab | 2024-06-13T00:00:00.000000 | 2024-06-13T00:00:00.000000 |
| certfr-2024-avi-0489 | Multiples vulnérabilités dans les produits Microsoft | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0488 | Multiples vulnérabilités dans Microsoft Azure | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0487 | Multiples vulnérabilités dans Microsoft .Net | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0486 | Multiples vulnérabilités dans Microsoft Windows | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0485 | Multiples vulnérabilités dans Microsoft Office | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0484 | Multiples vulnérabilités dans les produits Fortinet | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0483 | Multiples vulnérabilités dans les produits Adobe | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0482 | Multiples vulnérabilités dans Mozilla Firefox | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0481 | Multiples vulnérabilités dans Google Chrome | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0480 | Vulnérabilité dans les produits Citrix | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0479 | Multiples vulnérabilités dans HPE Aruba Networking AirWave Management Platform | 2024-06-12T00:00:00.000000 | 2024-06-12T00:00:00.000000 |
| certfr-2024-avi-0478 | Multiples vulnérabilités dans les produits Siemens | 2024-06-11T00:00:00.000000 | 2024-06-11T00:00:00.000000 |
| certfr-2024-avi-0477 | Multiples vulnérabilités dans les produits SAP | 2024-06-11T00:00:00.000000 | 2024-06-11T00:00:00.000000 |
| certfr-2024-avi-0476 | Multiples vulnérabilités dans les produits Schneider Electric | 2024-06-11T00:00:00.000000 | 2024-06-14T00:00:00.000000 |
| certfr-2024-avi-0475 | Multiples vulnérabilités dans Tenable Security Center | 2024-06-11T00:00:00.000000 | 2024-06-11T00:00:00.000000 |
| certfr-2024-avi-0474 | Vulnérabilité dans Veeam Recovery Orchestrator | 2024-06-11T00:00:00.000000 | 2024-06-11T00:00:00.000000 |
| certfr-2024-avi-0473 | Vulnérabilité dans VMware Tanzu | 2024-06-10T00:00:00.000000 | 2024-06-10T00:00:00.000000 |
| certfr-2024-avi-0472 | Multiples vulnérabilités dans le noyau Linux de Debian | 2024-06-07T00:00:00.000000 | 2024-06-07T00:00:00.000000 |
| certfr-2024-avi-0471 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-06-07T00:00:00.000000 | 2024-06-07T00:00:00.000000 |
| certfr-2024-avi-0470 | Multiples vulnérabilités dans les produits IBM | 2024-06-07T00:00:00.000000 | 2024-06-07T00:00:00.000000 |
| certfr-2024-avi-0469 | Vulnérabilité dans les produits Elastic | 2024-06-07T00:00:00.000000 | 2024-06-07T00:00:00.000000 |