Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
cve-2026-40072 web3.py affected by SSRF via CCIP Read (EIP-3668) Offc… ethereum
 web3.py
 2026-04-09T17:41:14.920Z 2026-04-09T19:37:07.730Z
cve-2026-40071 pyLoad WebUI JSON permission mismatch lets ADD/DELETE … pyload
 pyload
 2026-04-09T17:36:24.837Z 2026-04-10T14:09:11.900Z
cve-2026-40070 bsv-sdk and bsv-wallet persist unverified certifier si… sgbett
 bsv-ruby-sdk
 2026-04-09T17:26:51.495Z 2026-04-13T15:38:58.154Z
cve-2026-40069 bsv-sdk ARC broadcaster treats INVALID/MALFORMED/ORPHA… sgbett
 bsv-ruby-sdk
 2026-04-09T17:22:28.416Z 2026-04-13T20:11:51.134Z
cve-2026-39987 marimo Affected by Pre-Auth Remote Code Execution via … marimo-team
 marimo
 2026-04-09T17:16:55.639Z 2026-04-09T17:44:29.019Z
cve-2026-39961 Aiven Operator has cross-namespace secret exfiltration… aiven
 aiven-operator
 2026-04-09T17:14:07.330Z 2026-04-10T14:08:22.087Z
cve-2026-39985 LORIS has an open redirect field on login aces
 Loris
 2026-04-09T17:08:49.668Z 2026-04-10T14:07:40.047Z
cve-2026-39983 FTP Command Injection via CRLF in basic-ftp patrickjuchli
 basic-ftp
 2026-04-09T17:05:46.228Z 2026-04-09T19:31:42.093Z
cve-2026-39981 AGiXT has a Path Traversal in safe_join() Josh-XT
 AGiXT
 2026-04-09T17:01:27.069Z 2026-04-13T20:10:13.881Z
cve-2026-5970 FoundationAgents MetaGPT HumanEvalBenchmark/MBPPBenchm… FoundationAgents
 MetaGPT
 2026-04-09T17:00:21.409Z 2026-04-09T18:07:11.915Z
cve-2026-39980 OpenCTI affected by RCE via notifier template OpenCTI-Platform
 opencti
 2026-04-09T16:54:31.566Z 2026-04-09T18:44:10.616Z
cve-2026-39976 Laravel Passport's TokenGuard Authenticates Unrelated … laravel
 passport
 2026-04-09T16:50:42.326Z 2026-04-09T19:31:53.801Z
cve-2026-39974 n8n-MCP has an Authenticated SSRF via instance-URL hea… czlonkowski
 n8n-mcp
 2026-04-09T16:45:20.490Z 2026-04-13T20:09:26.781Z
cve-2026-39972 Mercure has a Topic Selector Cache Key Collision dunglas
 mercure
 2026-04-09T16:42:22.903Z 2026-04-09T18:59:49.306Z
cve-2026-39962 LDAP injection in MISP ApacheAuthenticate when using a… MISP
 MISP
 2026-04-09T16:37:38.880Z 2026-04-10T14:07:02.751Z
cve-2026-5962 Tenda CH22 httpd R7WebsSecurityHandlerfunction path tr… Tenda
 CH22
 2026-04-09T16:30:16.464Z 2026-04-09T19:01:37.732Z
cve-2026-39959 Tmds.DBus: malicious D-Bus peers can spoof signals, ex… tmds
 Tmds.DBus
 2026-04-09T16:29:20.616Z 2026-04-09T19:32:09.891Z
cve-2026-39958 oma-topic: name Field in Topic Manifests (topic.json) … AOSC-Dev
 oma
 2026-04-09T16:28:18.758Z 2026-04-13T20:08:17.849Z
cve-2026-5961 code-projects Simple IT Discussion Forum topic-details… code-projects
 Simple IT Discussion Forum
 2026-04-09T16:15:13.362Z 2026-04-09T19:37:15.178Z
cve-2026-39957 Lychee has Broken Access Control in SharingController:… LycheeOrg
 Lychee
 2026-04-09T16:14:56.133Z 2026-04-09T19:08:20.555Z
cve-2026-39943 Directus exposes sensitive fields in revision history directus
 directus
 2026-04-09T16:12:09.963Z 2026-04-10T14:06:06.440Z
cve-2026-39942 Directus has a Path Traversal and Broken Access Contro… directus
 directus
 2026-04-09T16:07:54.100Z 2026-04-09T19:37:24.389Z
cve-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated… mtrojnar
 osslsigncode
 2026-04-09T16:03:28.233Z 2026-04-13T20:06:35.283Z
cve-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash … mtrojnar
 osslsigncode
 2026-04-09T15:58:38.559Z 2026-04-09T19:22:16.659Z
cve-2026-40046 Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ … Apache Software Foundation
 Apache ActiveMQ
 2026-04-09T15:58:32.966Z 2026-04-10T19:41:00.618Z
cve-2026-33005 Apache OpenMeetings: Insufficient checks in FileWebService Apache Software Foundation
 Apache OpenMeetings
 2026-04-09T15:52:50.770Z 2026-04-10T18:44:45.976Z
cve-2026-33266 Apache OpenMeetings: Hardcoded Remember-Me Cookie Encr… Apache Software Foundation
 Apache OpenMeetings
 2026-04-09T15:52:36.105Z 2026-04-10T18:49:13.351Z
cve-2026-34020 Apache OpenMeetings: Login Credentials Passed via GET … Apache Software Foundation
 Apache OpenMeetings
 2026-04-09T15:52:06.599Z 2026-04-10T20:13:47.789Z
cve-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded… mtrojnar
 osslsigncode
 2026-04-09T15:50:26.548Z 2026-04-09T16:15:19.583Z
cve-2026-39843 Plane has a Server-Side Request Forgery (SSRF) in Favi… makeplane
 plane
 2026-04-09T15:43:34.963Z 2026-04-13T20:05:32.594Z
ID CVSS Description Vendor Product Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Package Published Updated
ID Description Type
ID Description Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Updated
ID Description Published Updated
jvndb-2012-000043 baserCMS vulnerable to session management 2012-05-15T16:56+09:00 2012-05-15T16:56+09:00
jvndb-2012-000042 WEB MART from KENT-WEB vulnerable to cross-site scripting 2012-05-15T16:53+09:00 2012-05-15T16:53+09:00
jvndb-2012-000041 WEB MART from KENT-WEB vulnerable to cross-site scripting 2012-05-15T16:44+09:00 2012-05-15T16:44+09:00
jvndb-2012-002377 Arbitrary Code Execution Vulnerability in Hitachi COBOL GUI Option on Windows 2012-05-15T15:14+09:00 2012-05-15T15:14+09:00
jvndb-2012-000037 sp mode mail issue in the verification of SSL certificates 2012-04-26T14:21+09:00 2012-04-26T14:21+09:00
jvndb-2012-000036 OSQA vulnerable to cross-site scripting 2012-04-26T14:15+09:00 2012-04-26T14:15+09:00
jvndb-2012-000035 Multiple JustSystems products vulnerable to buffer overflow 2012-04-24T13:37+09:00 2012-05-09T19:49+09:00
jvndb-2012-000034 Multiple JustSystems products may insecurely load dynamic libraries 2012-04-24T13:36+09:00 2012-04-24T13:36+09:00
jvndb-2012-000033 TwitRocker2 (Android version) vulnerable in the WebView class 2012-04-20T12:21+09:00 2012-04-20T12:21+09:00
jvndb-2012-000031 ActiveScriptRuby vulnerable to arbitrary Ruby script execution 2012-04-13T14:08+09:00 2012-04-13T14:08+09:00
jvndb-2012-000032 Dokodemo Rikunabi 2013 vulnerable to cross-site scripting 2012-04-13T14:03+09:00 2012-04-13T14:03+09:00
jvndb-2012-001932 Vulnerability in Fujitsu Interstage List Works Where Permissions Cannot Be Denied 2012-04-11T11:45+09:00 2012-04-11T11:45+09:00
jvndb-2012-000030 SENCHA SNS vulnerable to session fixation 2012-04-05T16:41+09:00 2012-04-05T16:41+09:00
jvndb-2012-000029 SENCHA SNS vulnerable to cross-site request forgery 2012-04-05T16:41+09:00 2012-04-05T16:41+09:00
jvndb-2012-000028 TOSHIBA TEC e-Studio series vulnerable to authentication bypass 2012-04-05T16:40+09:00 2012-04-05T16:40+09:00
jvndb-2012-000027 Janetter vulnerable to cross-site request forgery 2012-03-19T14:31+09:00 2012-03-19T14:31+09:00
jvndb-2012-000026 Janetter vulnerable to information disclosure 2012-03-19T14:27+09:00 2012-03-19T14:27+09:00
jvndb-2012-001793 JP1/Cm2/Network Node Manager i Denial of Service (DoS) Vulnerability 2012-03-19T12:04+09:00 2012-03-19T12:04+09:00
jvndb-2012-000025 Redmine vulnerable to cross-site scripting 2012-03-13T13:39+09:00 2012-03-13T13:39+09:00
jvndb-2012-000024 twicca fails to restrict access permissions 2012-03-13T13:36+09:00 2012-03-13T13:36+09:00
jvndb-2012-000023 Jenkins vulnerable to cross-site scripting 2012-03-09T14:35+09:00 2012-03-09T14:35+09:00
jvndb-2012-000022 Jenkins vulnerable to cross-site scripting 2012-03-09T14:28+09:00 2012-03-09T14:28+09:00
jvndb-2012-000021 SquirrelMail plugin Autocomplete vulnerable to cross-site scripting 2012-03-09T14:18+09:00 2012-03-09T14:18+09:00
jvndb-2012-000020 ES File Explorer fails to restrict access permissions 2012-03-05T15:50+09:00 2012-03-05T15:50+09:00
jvndb-2012-000019 Kingsoft Internet Security 2011 vulnerable to denial-of-service 2012-03-01T14:03+09:00 2012-03-01T14:03+09:00
jvndb-2012-000018 Movable Type vulnerable to session hijacking 2012-02-23T14:28+09:00 2012-02-23T14:28+09:00
jvndb-2012-000017 Movable Type vulnerable to OS command injection 2012-02-23T14:21+09:00 2012-02-23T14:21+09:00
jvndb-2012-000016 Movable Type vulnerable to cross-site scripting 2012-02-23T14:20+09:00 2012-02-23T14:20+09:00
jvndb-2012-000015 Movable Type vulnerable to cross-site request forgery 2012-02-23T14:19+09:00 2012-02-23T14:19+09:00
jvndb-2012-000014 Multiple COOKPAD applications for Android vulnerable in WebView class 2012-02-22T14:44+09:00 2012-02-29T10:56+09:00
ID Description Updated
ID Description
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
certfr-2024-avi-0288 Vulnérabilité dans Microsoft Office 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0287 Multiples vulnérabilités dans les produits Fortinet 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0286 Multiples vulnérabilités dans les produits Xen 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0285 Vulnérabilité dans WordPress 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0284 Multiples vulnérabilités dans les produits Adobe 2024-04-10T00:00:00.000000 2024-04-10T00:00:00.000000
certfr-2024-avi-0283 Multiples vulnérabilités dans les produits SAP 2024-04-09T00:00:00.000000 2024-04-12T00:00:00.000000
certfr-2024-avi-0282 Vulnérabilité dans les produits Schneider 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0281 Multiples vulnérabilités dans les produits Siemens 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0280 Vulnérabilité dans OpenSSL 2024-04-09T00:00:00.000000 2024-04-09T00:00:00.000000
certfr-2024-avi-0279 Multiples vulnérabilités dans les produits IBM 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0278 Vulnérabilité dans le noyau Linux de Debian 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0277 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0276 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0275 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0274 Multiples vulnérabilités dans Apache HTTP Server 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0273 Multiples vulnérabilités dans Microsoft Edge 2024-04-05T00:00:00.000000 2024-04-05T00:00:00.000000
certfr-2024-avi-0272 Multiples vulnérabilités dans Google Android et Pixel 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0271 Multiples vulnérabilités dans les produits Ivanti 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0270 Vulnérabilité dans Cisco Nexus Dashboard Fabric Controller 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0269 Multiples vulnérabilités dans Mozilla Firefox 2024-04-04T00:00:00.000000 2024-04-04T00:00:00.000000
certfr-2024-avi-0268 Multiples vulnérabilités dans VMware SD-WAN 2024-04-03T00:00:00.000000 2024-04-03T00:00:00.000000
certfr-2024-avi-0267 Vulnérabilité dans les produits Palo Alto Networks 2024-04-02T00:00:00.000000 2024-04-02T00:00:00.000000
certfr-2024-avi-0266 Multiples vulnérabilités dans Synology Surveillance Station 2024-04-02T00:00:00.000000 2024-04-02T00:00:00.000000
certfr-2024-avi-0265 Multiples vulnérabilités dans le noyau Linux de SUSE 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0264 Multiples vulnérabilités dans le noyau Linux de RedHat 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0263 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0262 Multiples vulnérabilités dans les produits IBM 2024-03-29T00:00:00.000000 2024-03-29T00:00:00.000000
certfr-2024-avi-0261 Multiples vulnérabilités dans Microsoft Edge 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0260 Multiples vulnérabilités dans les produits Cisco 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
certfr-2024-avi-0259 Multiples vulnérabilités dans GitLab 2024-03-28T00:00:00.000000 2024-03-28T00:00:00.000000
ID Description Published Updated