Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5392 | 2.3 (v4.0) | wolfSSL heap OOB read in PKCS7 SignedData streaming |
wolfSSL |
wolfSSL |
2026-04-09T23:10:55.739Z | 2026-04-10T14:08:48.204Z |
| cve-2026-5393 | 6.3 (v4.0) | OOB Read in DoTls13CertificateVerify with WOLFSSL_DUAL… |
wolfSSL |
wolfSSL |
2026-04-09T23:02:28.747Z | 2026-04-10T15:02:58.096Z |
| cve-2026-5988 | Tenda F451 AdvSetWrlsafeset formWrlsafeset stack-based… |
Tenda |
F451 |
2026-04-09T23:00:16.968Z | 2026-04-14T16:33:50.818Z | |
| cve-2026-34424 | 9.3 (v4.0) 9.8 (v3.1) | Smart Slider 3 Pro 3.5.1.35 Supply Chain Attack Remote… |
Nextendweb |
Smart Slider 3 Pro for WordPress |
2026-04-09T22:59:38.306Z | 2026-04-14T03:13:40.678Z |
| cve-2026-5295 | 5.9 (v4.0) | Stack Buffer Overflow in wolfSSL PKCS7 wc_PKCS7_Decryp… |
wolfSSL |
wolfSSL |
2026-04-09T22:53:10.635Z | 2026-04-14T14:32:57.454Z |
| cve-2026-5987 | Sanluan PublicCMS FreeMarker Template AbstractFreemark… |
Sanluan |
PublicCMS |
2026-04-09T22:45:14.041Z | 2026-04-10T13:52:31.589Z | |
| cve-2026-5503 | 6.9 (v4.0) | out-of-bounds write in TLSX_EchChangeSNI via attacker-… |
wolfSSL |
wolfSSL |
2026-04-09T22:35:39.437Z | 2026-04-10T17:58:51.312Z |
| cve-2026-5504 | 6.3 (v4.0) | PKCS7 CBC Padding Oracle — Plaintext Recovery |
wolfSSL |
wolfSSL |
2026-04-09T22:33:42.179Z | 2026-04-14T14:34:40.546Z |
| cve-2026-5986 | Zod jsVideoUrlParser util.js getTime redos |
Zod |
jsVideoUrlParser |
2026-04-09T22:30:14.639Z | 2026-04-14T03:12:25.849Z | |
| cve-2026-5507 | 4.1 (v4.0) | Session Cache Restore — Arbitrary Free via Deserialize… |
wolfSSL |
wolfSSL |
2026-04-09T22:18:44.067Z | 2026-04-14T14:38:40.362Z |
| cve-2026-5985 | code-projects Simple IT Discussion Forum crud.php sql … |
code-projects |
Simple IT Discussion Forum |
2026-04-09T22:15:14.337Z | 2026-04-10T14:09:30.327Z | |
| cve-2026-5984 | D-Link DIR-605L POST Request formSetLog buffer overflow |
D-Link |
DIR-605L |
2026-04-09T22:00:17.511Z | 2026-04-10T17:08:23.078Z | |
| cve-2026-5772 | 2.1 (v4.0) | MatchDomainName 1-Byte Stack Buffer Over-Read in Hostn… |
wolfSSL |
wolfSSL |
2026-04-09T21:50:04.038Z | 2026-04-10T13:52:58.722Z |
| cve-2026-5983 | D-Link DIR-605L POST Request formSetDDNS buffer overflow |
D-Link |
DIR-605L |
2026-04-09T21:45:14.227Z | 2026-04-14T16:33:56.691Z | |
| cve-2026-5778 | 2.1 (v4.0) | Integer underflow leads to out-of-bounds access in sni… |
wolfSSL |
wolfSSL |
2026-04-09T21:45:09.053Z | 2026-04-10T13:53:29.181Z |
| cve-2026-39848 | Dockyard's Unauthenticated Cron Endpoint in Dockyard E… |
10ij |
dockyard |
2026-04-09T21:44:44.687Z | 2026-04-10T13:54:23.314Z | |
| cve-2026-5264 | 8.3 (v4.0) | DTLS 1.3 ACK heap buffer overflow |
wolfSSL |
wolfSSL |
2026-04-09T21:43:12.479Z | 2026-04-10T13:55:41.431Z |
| cve-2026-40154 | PraisonAI Affected by Untrusted Remote Template Code E… |
MervinPraison |
PraisonAI |
2026-04-09T21:42:34.835Z | 2026-04-10T17:09:03.403Z | |
| cve-2026-33791 | 6.7 (v3.1) 8.4 (v4.0) | Junos OS and Junos OS Evolved: Execution of crafted CL… |
Juniper Networks |
Junos OS |
2026-04-09T21:38:52.747Z | 2026-04-22T14:48:22.085Z |
| cve-2026-33790 | 7.5 (v3.1) 8.7 (v4.0) | Junos OS: SRX Series: In a NAT64 configuration, receip… |
Juniper Networks |
Junos OS |
2026-04-09T21:38:08.493Z | 2026-04-10T13:56:16.375Z |
| cve-2026-33787 | 5.5 (v3.1) 6.8 (v4.0) | Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a s… |
Juniper Networks |
Junos OS |
2026-04-09T21:37:31.411Z | 2026-04-13T18:06:18.752Z |
| cve-2026-33785 | 8.8 (v3.1) 6.3 (v4.0) | Junos OS: MX Series: Missing Authorization for specifi… |
Juniper Networks |
Junos OS |
2026-04-09T21:37:04.370Z | 2026-04-14T03:55:32.652Z |
| cve-2026-33784 | 9.8 (v3.1) 9.3 (v4.0) | JSI Virtual Lightweight Collector: Default password is… |
Juniper Networks |
JSI LWC |
2026-04-09T21:36:37.519Z | 2026-04-13T18:06:19.017Z |
| cve-2026-33783 | 6.5 (v3.1) 7.1 (v4.0) | Junos OS Evolved: PTX Series: If SRTE tunnels provisio… |
Juniper Networks |
Junos OS Evolved |
2026-04-09T21:36:13.503Z | 2026-04-13T18:06:19.144Z |
| cve-2026-33781 | 6.5 (v3.1) 7.1 (v4.0) | Junos OS: EX Series, QFX Series: In a VXLAN scenario w… |
Juniper Networks |
Junos OS |
2026-04-09T21:35:48.123Z | 2026-04-10T14:10:08.812Z |
| cve-2026-33778 | 7.5 (v3.1) 8.7 (v4.0) | Junos OS: SRX Series, MX Series: When a specifically m… |
Juniper Networks |
Junos OS |
2026-04-09T21:35:10.585Z | 2026-04-10T14:11:42.844Z |
| cve-2026-33776 | 5.5 (v3.1) 6.8 (v4.0) | Junos OS and Junos OS Evolved: Specific low privileged… |
Juniper Networks |
Junos OS |
2026-04-09T21:34:50.469Z | 2026-04-10T14:13:45.754Z |
| cve-2026-33774 | 6.5 (v3.1) 6.9 (v4.0) | Junos OS: MX Series: Firewall filters on lo0.<non-0> i… |
Juniper Networks |
Junos OS |
2026-04-09T21:34:21.126Z | 2026-04-10T14:14:24.774Z |
| cve-2026-33771 | 7.4 (v3.1) 9.1 (v4.0) | CTP OS: Configuring password requirements does not wor… |
Juniper Networks |
CTP OS |
2026-04-09T21:33:57.007Z | 2026-04-13T18:06:19.274Z |
| cve-2025-13914 | 8.7 (v3.1) 7 (v4.0) | Apstra: SSH host key validation vulnerability for mana… |
Juniper Networks |
Apstra |
2026-04-09T21:32:14.834Z | 2026-04-14T14:35:15.915Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2013-000063 | EC-CUBE vulnerable to cross-site scripting | 2013-06-27T14:31+09:00 | 2013-07-02T16:06+09:00 |
| jvndb-2013-000062 | EC-CUBE vulnerable to code injection | 2013-06-27T14:29+09:00 | 2013-07-02T16:01+09:00 |
| jvndb-2013-000061 | EC-CUBE vulnerable to directory traversal | 2013-06-27T14:29+09:00 | 2013-07-02T15:57+09:00 |
| jvndb-2013-003074 | Cross-site Scripting Vulnerability in Hitachi Command Suite Products | 2013-06-20T14:37+09:00 | 2013-06-20T14:37+09:00 |
| jvndb-2013-003073 | Vulnerability in JP1/HIBUN Advanced Edition Information Cypher Removable Media Encryption | 2013-06-20T14:24+09:00 | 2013-06-20T14:24+09:00 |
| jvndb-2013-000060 | Cybozu Live for Android vulnerable in the WebView class | 2013-06-18T15:20+09:00 | 2013-06-26T14:43+09:00 |
| jvndb-2013-000059 | Cybozu Live for Android vulnerable to arbitrary Java method execution | 2013-06-18T15:19+09:00 | 2013-06-26T14:46+09:00 |
| jvndb-2013-000058 | Ichitaro series vulnerable to arbitrary code execution | 2013-06-18T15:17+09:00 | 2013-06-26T14:49+09:00 |
| jvndb-2013-000057 | Orchard vulnerable to cross-site scripting | 2013-06-13T13:49+09:00 | 2013-06-17T12:01+09:00 |
| jvndb-2013-000056 | Galapagos Browser vulnerable in the WebView class | 2013-06-11T13:48+09:00 | 2013-06-18T17:55+09:00 |
| jvndb-2013-000055 | Angel Browser vulnerable in the WebView class | 2013-06-11T13:40+09:00 | 2013-06-18T17:52+09:00 |
| jvndb-2013-000054 | Pizza Hut Japan Official Order App for Android. contains an issue where it fails to verify SSL server certificates | 2013-06-07T15:03+09:00 | 2013-06-07T15:03+09:00 |
| jvndb-2013-000053 | Internet Explorer vulnerable to information disclosure | 2013-06-07T13:59+09:00 | 2013-06-07T13:59+09:00 |
| jvndb-2013-000052 | HP ProCurve 1700 series switches vulnerable to cross-site request forgery | 2013-06-03T14:28+09:00 | 2013-06-03T14:28+09:00 |
| jvndb-2013-000051 | Adobe Reader X vulnerable to sandbox bypass | 2013-05-31T15:44+09:00 | 2013-05-31T15:44+09:00 |
| jvndb-2013-000050 | Safari information disclosure vulnerability | 2013-05-31T15:44+09:00 | 2013-05-31T15:44+09:00 |
| jvndb-2013-000049 | FileMaker Pro vulnerable to cross-site scripting | 2013-05-31T15:43+09:00 | 2015-05-22T11:34+09:00 |
| jvndb-2013-000048 | FileMaker Pro fails to verify SSL server certificates | 2013-05-31T15:43+09:00 | 2014-09-18T21:08+09:00 |
| jvndb-2013-000047 | Content Provider in MovatwiTouch fails to restrict access permissions | 2013-05-29T15:32+09:00 | 2013-05-29T15:32+09:00 |
| jvndb-2013-000046 | Sleipnir Mobile for Android vulnerable to address bar spoofing | 2013-05-29T15:19+09:00 | 2013-05-29T15:19+09:00 |
| jvndb-2013-000045 | Yahoo! Browser vulnerable to address bar spoofing | 2013-05-27T15:04+09:00 | 2013-05-27T15:04+09:00 |
| jvndb-2013-002796 | Arbitrary Commands Execution Vulnerability in JP1/Integrated Management - TELstaff Alarm View | 2013-05-24T14:37+09:00 | 2013-05-24T14:37+09:00 |
| jvndb-2013-000044 | EC-CUBE vulnerable to information disclosure as a result of improper input checking | 2013-05-23T15:46+09:00 | 2013-05-23T15:46+09:00 |
| jvndb-2013-000043 | EC-CUBE fails to restrict access permissions | 2013-05-23T15:42+09:00 | 2013-06-03T16:13+09:00 |
| jvndb-2013-000042 | EC-CUBE vulnerable to session fixation | 2013-05-23T14:15+09:00 | 2013-05-23T14:15+09:00 |
| jvndb-2013-000041 | EC-CUBE vulnerable to cross-site scripting | 2013-05-23T14:11+09:00 | 2013-05-23T14:11+09:00 |
| jvndb-2013-002770 | Cross-site Scripting Vulnerability in JP1/Automatic Operation | 2013-05-21T15:45+09:00 | 2013-05-21T15:45+09:00 |
| jvndb-2013-000040 | Cross-site scripting vulnerability in the web2py social bookmarking widget | 2013-05-20T15:16+09:00 | 2013-05-20T15:16+09:00 |
| jvndb-2013-000039 | Wi-Fi Spot Configuration Software vulnerability in the connection process | 2013-05-15T14:25+09:00 | 2013-06-19T09:58+09:00 |
| jvndb-2013-000038 | OpenPNE vulnerable to cross-site scripting | 2013-05-13T13:39+09:00 | 2013-06-19T09:56+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0438 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0437 | Vulnérabilité dans Google Chrome | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0436 | Multiples vulnérabilités dans les produits Mitel | 2024-05-24T00:00:00.000000 | 2024-05-24T00:00:00.000000 |
| certfr-2024-avi-0435 | Multiples vulnérabilités dans les produits Cisco | 2024-05-23T00:00:00.000000 | 2024-05-23T00:00:00.000000 |
| certfr-2024-avi-0434 | Multiples vulnérabilités dans les produits Ivanti | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0433 | Multiples vulnérabilités dans GitLab | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0432 | Multiples vulnérabilités dans les produits Atlassian | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0431 | Multiples vulnérabilités dans les produits Veeam | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0430 | Multiples vulnérabilités dans Google Chrome | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0429 | Vulnérabilité dans les produits SolarWinds | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0428 | Multiples vulnérabilités dans les produits Qnap | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0427 | Multiples vulnérabilités dans les produits VMware | 2024-05-22T00:00:00.000000 | 2024-05-22T00:00:00.000000 |
| certfr-2024-avi-0426 | Multiples vulnérabilités dans Roundcube | 2024-05-21T00:00:00.000000 | 2024-10-22T00:00:00.000000 |
| certfr-2024-avi-0425 | Vulnérabilité dans Ruby on Rails | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0424 | Vulnérabilité dans Asterisk | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0423 | Multiples vulnérabilités dans les produits NetApp | 2024-05-21T00:00:00.000000 | 2024-05-21T00:00:00.000000 |
| certfr-2024-avi-0422 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0421 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0420 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0419 | Multiples vulnérabilités dans les produits IBM | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0418 | Vulnérabilité dans Microsoft Azure Monitor Agent | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0417 | Multiples vulnérabilités dans Microsoft Edge | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0416 | Vulnérabilité dans OpenSSL | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0415 | Multiples vulnérabilités dans les produits Tenable | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0414 | Vulnérabilité dans les produits Palo Alto Networks | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0413 | Multiples vulnérabilités dans les produits MongoDB | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0412 | Multiples vulnérabilités dans les produits Mitel | 2024-05-17T00:00:00.000000 | 2024-05-17T00:00:00.000000 |
| certfr-2024-avi-0411 | Multiples vulnérabilités dans Wireshark | 2024-05-16T00:00:00.000000 | 2024-05-16T00:00:00.000000 |
| certfr-2024-avi-0410 | Multiples vulnérabilités dans Google Chrome | 2024-05-16T00:00:00.000000 | 2024-05-16T00:00:00.000000 |
| certfr-2024-avi-0409 | Multiples vulnérabilités dans les produits Cisco | 2024-05-16T00:00:00.000000 | 2024-05-16T00:00:00.000000 |