Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-5988 | Tenda F451 AdvSetWrlsafeset formWrlsafeset stack-based… |
Tenda |
F451 |
2026-04-09T23:00:16.968Z | 2026-04-14T16:33:50.818Z | |
| cve-2026-5993 | Totolink A7100RU CGI cstecgi.cgi setWiFiGuestCfg os co… |
Totolink |
A7100RU |
2026-04-10T00:15:14.223Z | 2026-04-14T16:33:44.412Z | |
| cve-2026-6109 | FoundationAgents MetaGPT Mineflayer HTTP API index.js … |
FoundationAgents |
MetaGPT |
2026-04-12T01:30:15.439Z | 2026-04-14T16:33:38.654Z | |
| cve-2026-6114 | Totolink A7100RU CGI cstecgi.cgi setNetworkCfg os comm… |
Totolink |
A7100RU |
2026-04-12T03:30:16.504Z | 2026-04-14T16:33:32.690Z | |
| cve-2026-6119 | AstrBotDevs AstrBot API Endpoint post_data.get server-… |
AstrBotDevs |
AstrBot |
2026-04-12T05:00:20.093Z | 2026-04-14T16:33:26.198Z | |
| cve-2026-6124 | Tenda F451 httpd SafeMacFilter fromSafeMacFilter stack… |
Tenda |
F451 |
2026-04-12T09:00:18.190Z | 2026-04-14T16:33:20.025Z | |
| cve-2026-40385 | 4 (v3.1) | In libexif through 0.6.25, an unsigned 32bit inte… |
libexif project |
libexif |
2026-04-12T18:16:30.420Z | 2026-04-14T16:33:12.567Z |
| cve-2026-40386 | 4 (v3.1) | In libexif through 0.6.25, an integer underflow i… |
libexif project |
libexif |
2026-04-12T18:19:08.684Z | 2026-04-14T16:33:07.044Z |
| cve-2026-6131 | Totolink A7100RU CGI cstecgi.cgi setTracerouteCfg os c… |
Totolink |
A7100RU |
2026-04-12T22:15:14.611Z | 2026-04-14T16:33:00.472Z | |
| cve-2026-6136 | Tenda F451 L7Im frmL7ImForm stack-based overflow |
Tenda |
F451 |
2026-04-12T23:30:20.978Z | 2026-04-14T16:32:54.668Z | |
| cve-2026-31281 | N/A | Totara LMS v19.1.5 and before is vulnerable to HT… |
n/a |
n/a |
2026-04-13T00:00:00.000Z | 2026-04-14T16:32:49.455Z |
| cve-2026-31282 | N/A | Totara LMS v19.1.5 and before is vulnerable to In… |
n/a |
n/a |
2026-04-13T00:00:00.000Z | 2026-04-14T16:32:43.823Z |
| cve-2026-31283 | N/A | In Totara LMS v19.1.5 and before, the forgot pass… |
n/a |
n/a |
2026-04-13T00:00:00.000Z | 2026-04-14T16:32:37.891Z |
| cve-2026-28291 | simple-git has Command Execution via Option-Parsing Bypass |
steveukx |
git-js |
2026-04-13T17:15:14.594Z | 2026-04-14T16:30:34.266Z | |
| cve-2025-69627 | N/A | Nitro PDF Pro for Windows 14.41.1.4 contains a he… |
n/a |
n/a |
2026-04-13T00:00:00.000Z | 2026-04-14T16:30:15.973Z |
| cve-2026-6141 | danielmiessler Personal_AI_Infrastructure parse_url.ts… |
danielmiessler |
Personal_AI_Infrastructure |
2026-04-13T00:45:12.748Z | 2026-04-14T16:30:09.632Z | |
| cve-2026-6150 | code-projects Simple Laundry System checkupdatestatus.… |
code-projects |
Simple Laundry System |
2026-04-13T02:00:18.592Z | 2026-04-14T16:30:00.935Z | |
| cve-2026-6155 | Totolink A7100RU CGI cstecgi.cgi setWanCfg os command … |
Totolink |
A7100RU |
2026-04-13T03:15:24.203Z | 2026-04-14T16:29:54.527Z | |
| cve-2026-6160 | code-projects Simple ChatBox Endpoint chatbox.sql Simp… |
code-projects |
Simple ChatBox |
2026-04-13T04:30:22.947Z | 2026-04-14T16:29:48.824Z | |
| cve-2026-6165 | code-projects Vehicle Showroom Management System Login… |
code-projects |
Vehicle Showroom Management System |
2026-04-13T05:45:17.209Z | 2026-04-14T16:29:43.178Z | |
| cve-2026-6182 | code-projects Simple Content Management System login.p… |
code-projects |
Simple Content Management System |
2026-04-13T14:30:14.768Z | 2026-04-14T16:29:36.999Z | |
| cve-2026-6188 | SourceCodester Pharmacy Sales and Inventory System aja… |
SourceCodester |
Pharmacy Sales and Inventory System |
2026-04-13T15:45:10.955Z | 2026-04-14T16:29:30.432Z | |
| cve-2026-23891 | Decidim has a Cross-site scripting (XSS) vulnerability… |
decidim |
decidim |
2026-04-13T16:52:16.448Z | 2026-04-14T16:29:24.311Z | |
| cve-2026-6193 | PHPGurukul Daily Expense Tracking System register.php … |
PHPGurukul |
Daily Expense Tracking System |
2026-04-13T17:00:17.681Z | 2026-04-14T16:29:17.934Z | |
| cve-2026-40042 | 9.3 (v4.0) 9.8 (v3.1) | Pachno 1.0.6 Wiki TextParser XML External Entity Injection |
pancho |
Pachno |
2026-04-13T18:10:59.054Z | 2026-04-14T16:29:11.810Z |
| cve-2026-6198 | Tenda F456 NatStaticSetting fromNatStaticSetting stack… |
Tenda |
F456 |
2026-04-13T18:15:14.119Z | 2026-04-14T16:29:06.183Z | |
| cve-2026-33534 | EspoCRM has authenticated SSRF via internal-host valid… |
espocrm |
espocrm |
2026-04-13T19:20:04.414Z | 2026-04-14T16:28:58.299Z | |
| cve-2026-6215 | DbGate REST/GraphQL openApiDriver.ts apiServerUrl1 ser… |
n/a |
DbGate |
2026-04-13T19:30:12.683Z | 2026-04-14T16:28:52.818Z | |
| cve-2026-32272 | Craft Commerce: Blind SQL Injection via hasVariant/has… |
craftcms |
commerce |
2026-04-13T20:25:50.420Z | 2026-04-14T16:28:47.197Z | |
| cve-2026-33900 | ImageMagick has a Heap overflow caused by integer over… |
ImageMagick |
ImageMagick |
2026-04-13T20:50:19.615Z | 2026-04-14T16:28:41.536Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000095 | Mac OS X OpenSSH vulnerable to denial-of-service (DoS) | 2012-10-31T15:01+09:00 | 2012-10-31T15:01+09:00 |
| jvndb-2012-000093 | Tokyo BBS vulnerable to cross-site scripting | 2012-10-26T14:00+09:00 | 2012-10-26T14:00+09:00 |
| jvndb-2012-000088 | Safari vulnerable to local file content disclosure | 2012-10-23T14:57+09:00 | 2012-10-23T14:57+09:00 |
| jvndb-2012-000094 | Smarty vulnerable to cross-site scripting | 2012-10-10T14:45+09:00 | 2012-10-10T14:45+09:00 |
| jvndb-2012-000092 | MyWebSearch vulnerable to cross-site scripting | 2012-10-05T16:49+09:00 | 2012-10-05T16:49+09:00 |
| jvndb-2009-000037 | Apache Tomcat denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2012-09-28T13:40+09:00 |
| jvndb-2009-000036 | Apache Tomcat information disclosure vulnerability | 2009-06-18T17:53+09:00 | 2012-09-28T13:35+09:00 |
| jvndb-2012-000091 | jigbrowser+ for Android vulnerable in the WebView class | 2012-09-28T12:20+09:00 | 2012-09-28T12:20+09:00 |
| jvndb-2012-000090 | Trend Micro Control Manager vulnerable to SQL injection | 2012-09-27T12:43+09:00 | 2012-09-27T12:43+09:00 |
| jvndb-2012-000089 | ATOK for Android issue in the access permissions for the learning information file | 2012-09-25T13:40+09:00 | 2012-09-25T13:40+09:00 |
| jvndb-2012-000087 | myLittleAdmin for SQL Server 2000 vulnerable to arbitrary script execution | 2012-09-20T12:33+09:00 | 2012-09-20T12:33+09:00 |
| jvndb-2012-000086 | Email Anti-virus (formerly WebShield SMTP) vulnerable to denial-of-service | 2012-09-20T12:31+09:00 | 2012-09-20T12:31+09:00 |
| jvndb-2012-000085 | KUNAI Browser for Remote Service beta vulnerable in the WebView class | 2012-09-13T13:51+09:00 | 2012-09-13T13:51+09:00 |
| jvndb-2012-000084 | Cybozu KUNAI for Android vulnerable in the WebView class | 2012-09-07T16:40+09:00 | 2012-09-07T16:40+09:00 |
| jvndb-2012-000083 | Cybozu KUNAI for Android vulnerable to arbitrary Java method execution | 2012-09-07T16:39+09:00 | 2012-09-07T16:39+09:00 |
| jvndb-2012-000082 | Cybozu Live for Android vulnerable in the WebView class | 2012-09-03T10:41+09:00 | 2012-09-03T10:41+09:00 |
| jvndb-2012-000081 | Cybozu Live for Android vulnerable to arbitrary Java method execution | 2012-09-03T10:34+09:00 | 2012-09-03T10:34+09:00 |
| jvndb-2012-000078 | mixi for Android information management vulnerability | 2012-08-17T15:58+09:00 | 2012-08-17T15:58+09:00 |
| jvndb-2012-000077 | Multiple GREE Android applications vulnerable in the WebView class | 2012-08-17T15:52+09:00 | 2012-08-17T15:52+09:00 |
| jvndb-2012-003525 | Cross-site Scripting Vulnerability in JP1/Integrated Management - Service Support | 2012-08-10T15:05+09:00 | 2012-08-10T15:05+09:00 |
| jvndb-2012-000076 | Sleipnir Mobile for Android vulnerable to arbitrary script execution | 2012-08-08T14:43+09:00 | 2012-08-08T14:43+09:00 |
| jvndb-2012-000075 | Sleipnir Mobile for Android vulnerable to arbitrary Java method execution | 2012-08-08T14:39+09:00 | 2012-08-08T14:39+09:00 |
| jvndb-2012-000074 | LINE for Android vulnerable in handling of implicit intents | 2012-08-07T13:33+09:00 | 2012-08-07T13:33+09:00 |
| jvndb-2011-000088 | Safari for iOS vulnerable to cross-site scripting | 2011-10-17T18:56+09:00 | 2012-08-07T12:11+09:00 |
| jvndb-2012-000072 | Yahoo! Toolbar (for Chrome, Safari) vulnerable to toolbar alteration | 2012-07-30T14:56+09:00 | 2012-08-02T16:33+09:00 |
| jvndb-2012-000073 | GoodReader vulnerable to cross-site scripting | 2012-08-02T14:46+09:00 | 2012-08-02T14:46+09:00 |
| jvndb-2012-000009 | Multiple web browsers vulnerable in processing Tranfer-Encoding header | 2012-07-30T14:53+09:00 | 2012-07-30T14:53+09:00 |
| jvndb-2012-000049 | Opera fails to verify SSL server certificates | 2012-05-25T15:40+09:00 | 2012-07-26T17:31+09:00 |
| jvndb-2012-000071 | Sleipnir Mobile for Android vulnerable in the WebView class | 2012-07-24T14:05+09:00 | 2012-07-24T14:05+09:00 |
| jvndb-2012-003244 | Privilege escalation vulnerability in Hitachi JP1/NETM/DM | 2012-07-23T17:13+09:00 | 2012-07-23T17:13+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0322 | Multiples vulnérabilités dans Oracle Database Server | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0321 | Multiples vulnérabilités dans Oracle Java SE | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0320 | Multiples vulnérabilités dans Oracle VirtualBox | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0319 | Multiples vulnérabilités dans les produits Cisco | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0318 | Multiples vulnérabilités dans les produits Mitel | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0317 | Vulnérabilité dans Cisco ClamAV | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0316 | Vulnérabilité dans les produits Xen | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0312 | Multiples vulnérabilités dans les produits Atlassian | 2024-04-17T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0315 | Vulnérabilité dans SolarWinds Serv-U | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0314 | Multiples vulnérabilités dans Ivanti Avalanche | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0313 | Multiples vulnérabilités dans Google Chrome | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0311 | Multiples vulnérabilités dans les produits Mozilla | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0310 | Vulnérabilité dans les produits Juniper | 2024-04-16T00:00:00.000000 | 2024-04-16T00:00:00.000000 |
| certfr-2024-avi-0309 | Vulnérabilité dans Stormshield Network Security | 2024-04-16T00:00:00.000000 | 2024-04-16T00:00:00.000000 |
| certfr-2024-avi-0308 | Vulnérabilité dans Stormshield Network Security | 2024-04-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-avi-0307 | Vulnérabilité dans Palo Alto Networks GlobalProtect | 2024-04-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-avi-0306 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-avi-0305 | Multiples vulnérabilités dans les produits IBM | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0304 | Multiples vulnérabilités dans Debian LTS buster | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0303 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0302 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0301 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0300 | Multiples vulnérabilités dans PHP | 2024-04-12T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0283 | Multiples vulnérabilités dans les produits SAP | 2024-04-09T00:00:00.000000 | 2024-04-12T00:00:00.000000 |
| certfr-2024-avi-0299 | Multiples vulnérabilités dans les produits Citrix | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |
| certfr-2024-avi-0298 | Vulnérabilité dans Spring Framework | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |
| certfr-2024-avi-0297 | Multiples vulnérabilités dans Juniper | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |
| certfr-2024-avi-0296 | Multiples vulnérabilités dans GitLab | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |
| certfr-2024-avi-0295 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |
| certfr-2024-avi-0294 | Multiples vulnérabilités dans Google Chrome | 2024-04-11T00:00:00.000000 | 2024-04-11T00:00:00.000000 |