Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2024-1490 | 7.2 (v3.1) | Wago: Vulnerability in WBM through Open VPN |
WAGO |
CC100 (0751-9x01) |
2026-04-09T10:52:41.174Z | 2026-04-09T16:15:38.524Z |
| cve-2026-24661 | 3.7 (v3.1) | Unbounded Request Body Read in MS Teams Plugin {{/chan… |
Mattermost |
Mattermost |
2026-04-09T10:12:45.340Z | 2026-04-09T11:44:35.023Z |
| cve-2026-21388 | 3.7 (v3.1) | Unbounded Request Body Read in MS Teams Plugin {{/life… |
Mattermost |
Mattermost |
2026-04-09T10:09:23.899Z | 2026-04-09T11:44:54.614Z |
| cve-2026-34185 | 8.7 (v4.0) | SQL Injection in Hydrosystem Control System |
Hydrosystem |
Control System |
2026-04-09T09:41:15.531Z | 2026-04-09T11:45:33.927Z |
| cve-2026-34184 | 8.8 (v4.0) | Missing Authorization in Hydrosystem Control System |
Hydrosystem |
Control System |
2026-04-09T09:41:08.526Z | 2026-04-09T11:51:07.882Z |
| cve-2026-4901 | 6.9 (v4.0) | Insertion of Sesitive Information into Log File in Hyd… |
Hydrosystem |
Control System |
2026-04-09T09:40:59.143Z | 2026-04-09T11:51:48.409Z |
| cve-2025-62188 | Apache DolphinScheduler: Users can access sensitive in… |
Apache Software Foundation |
Apache DolphinScheduler |
2026-04-09T09:27:13.570Z | 2026-04-09T13:57:33.406Z | |
| cve-2026-34179 | 9.1 (v3.1) | Update of type field in restricted TLS certificate all… |
Canonical |
lxd |
2026-04-09T09:22:14.693Z | 2026-04-09T11:54:18.487Z |
| cve-2026-34178 | 9.1 (v3.1) | Importing a crafted backup leads to project restrictio… |
Canonical |
lxd |
2026-04-09T09:18:58.404Z | 2026-04-09T11:55:20.431Z |
| cve-2026-34177 | 9.1 (v3.1) | VM lowlevel restriction bypass via raw.apparmor and ra… |
Canonical |
lxd |
2026-04-09T09:15:27.532Z | 2026-04-09T12:12:48.251Z |
| cve-2026-34538 | Apache Airflow: Authorization bypass in DagRun wait en… |
Apache Software Foundation |
Apache Airflow |
2026-04-09T09:09:20.906Z | 2026-04-09T14:06:21.963Z | |
| cve-2026-5854 | Totolink A7100RU CGI cstecgi.cgi setWiFiEasyCfg os com… |
Totolink |
A7100RU |
2026-04-09T06:45:18.857Z | 2026-04-09T13:15:25.316Z | |
| cve-2026-5853 | Totolink A7100RU CGI cstecgi.cgi setIpv6LanCfg os comm… |
Totolink |
A7100RU |
2026-04-09T06:30:21.107Z | 2026-04-09T14:47:52.744Z | |
| cve-2026-5852 | Totolink A7100RU CGI cstecgi.cgi setIptvCfg os command… |
Totolink |
A7100RU |
2026-04-09T06:15:15.694Z | 2026-04-09T16:15:44.029Z | |
| cve-2026-5851 | Totolink A7100RU CGI cstecgi.cgi setUPnPCfg os command… |
Totolink |
A7100RU |
2026-04-09T06:00:16.723Z | 2026-04-09T12:13:58.251Z | |
| cve-2026-5850 | Totolink A7100RU CGI cstecgi.cgi setVpnPassCfg os comm… |
Totolink |
A7100RU |
2026-04-09T05:45:12.796Z | 2026-04-13T20:00:59.200Z | |
| cve-2026-5849 | Tenda i12 HTTP path traversal |
Tenda |
i12 |
2026-04-09T05:30:15.755Z | 2026-04-09T13:18:58.857Z | |
| cve-2026-5848 | jeecgboot JimuReport Data Source testConnection Driver… |
jeecgboot |
JimuReport |
2026-04-09T05:15:11.492Z | 2026-04-09T14:49:08.071Z | |
| cve-2026-5847 | code-projects Movie Ticketing System SQL Database Back… |
code-projects |
Movie Ticketing System |
2026-04-09T05:00:19.384Z | 2026-04-09T16:15:49.733Z | |
| cve-2026-5844 | D-Link DIR-882 HNAP1 SetNetworkSettings prog.cgi sprin… |
D-Link |
DIR-882 |
2026-04-09T04:45:13.697Z | 2026-04-09T12:41:29.493Z | |
| cve-2026-5842 | decolua 9router Administrative API Endpoint api author… |
decolua |
9router |
2026-04-09T04:30:17.225Z | 2026-04-13T19:59:23.935Z | |
| cve-2026-5841 | Tenda i3 HTTP R7WebsSecurityHandler path traversal |
Tenda |
i3 |
2026-04-09T04:15:19.245Z | 2026-04-09T13:27:56.313Z | |
| cve-2026-5840 | PHPGurukul News Portal Project check_availability.php … |
PHPGurukul |
News Portal Project |
2026-04-09T04:00:15.815Z | 2026-04-09T14:49:43.824Z | |
| cve-2026-5839 | PHPGurukul News Portal Project add-subcategory.php sql… |
PHPGurukul |
News Portal Project |
2026-04-09T03:45:14.278Z | 2026-04-09T16:15:55.225Z | |
| cve-2026-5838 | PHPGurukul News Portal Project add-subadmins.php sql i… |
PHPGurukul |
News Portal Project |
2026-04-09T03:30:14.593Z | 2026-04-09T12:42:05.800Z | |
| cve-2026-5742 | UsersWP <= 1.2.60 - Authenticated (Subscriber+) Stored… |
stiofansisland |
UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP |
2026-04-09T03:25:58.117Z | 2026-04-09T14:43:06.322Z | |
| cve-2026-4336 | Ultimate FAQ Accordion Plugin <= 2.4.7 - Authenticated… |
rustaurius |
Ultimate FAQ Accordion Plugin |
2026-04-09T03:25:57.761Z | 2026-04-09T12:58:47.398Z | |
| cve-2026-1830 | Quick Playground <= 1.3.1 - Missing Authorization to U… |
davidfcarr |
Quick Playground |
2026-04-09T03:25:57.200Z | 2026-04-09T13:34:45.661Z | |
| cve-2026-5837 | PHPGurukul News Portal Project news-details.php sql in… |
PHPGurukul |
News Portal Project |
2026-04-09T03:15:12.498Z | 2026-04-13T19:57:47.009Z | |
| cve-2026-5836 | code-projects Online Shoe Store admin_product.php cros… |
code-projects |
Online Shoe Store |
2026-04-09T03:00:20.635Z | 2026-04-09T13:37:58.660Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2011-000099 | ChaSen vulnerable to buffer overflow | 2011-11-08T18:31+09:00 | 2011-12-20T18:13+09:00 |
| jvndb-2011-000098 | Iwate Portal Bar vulnerable to arbitrary script execution | 2011-11-08T18:25+09:00 | 2011-11-08T18:25+09:00 |
| jvndb-2011-000097 | WebObjects vulnerable to cross-site scripting | 2011-11-04T17:36+09:00 | 2011-11-04T17:36+09:00 |
| jvndb-2011-000096 | Opengear console servers vulnerable to authentication bypass | 2011-11-04T17:34+09:00 | 2011-11-04T17:34+09:00 |
| jvndb-2011-000095 | CSWorks LiveData Service vulnerable to denial-of-service (DoS) | 2011-11-01T16:05+09:00 | 2011-11-02T14:42+09:00 |
| jvndb-2011-000094 | Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery | 2011-10-31T18:03+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000093 | Multiple SKYARC System Co., Ltd. products fail to restrict access permissions | 2011-10-31T17:54+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000089 | Touhou Hisouten vulnerable to denial-of-service | 2011-10-28T17:49+09:00 | 2011-10-28T17:49+09:00 |
| jvndb-2011-000092 | Multiple D-Link products vulnerable to buffer overflow | 2011-10-28T17:42+09:00 | 2011-10-28T17:42+09:00 |
| jvndb-2011-000091 | FFFTP may insecurely load executable files | 2011-10-28T17:39+09:00 | 2011-10-28T17:39+09:00 |
| jvndb-2011-000088 | Safari for iOS vulnerable to cross-site scripting | 2011-10-17T18:56+09:00 | 2012-08-07T12:11+09:00 |
| jvndb-2011-000087 | EC-CUBE vulnerable to SQL injection | 2011-10-14T17:53+09:00 | 2011-10-14T17:53+09:00 |
| jvndb-2011-000086 | DBD::mysqlPP vulnerable to SQL injection | 2011-10-14T17:50+09:00 | 2011-10-14T17:50+09:00 |
| jvndb-2011-000085 | DAEMON Tools vulnerable to denial-of-service | 2011-10-13T18:58+09:00 | 2011-10-13T18:58+09:00 |
| jvndb-2011-000084 | Pligg vulnerable to cross-site scripting | 2011-10-13T18:56+09:00 | 2011-10-13T18:56+09:00 |
| jvndb-2011-000083 | Plume vulnerable to cross-site scripting | 2011-10-13T18:38+09:00 | 2011-10-13T18:38+09:00 |
| jvndb-2011-000082 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:28+09:00 | 2011-10-25T13:46+09:00 |
| jvndb-2011-000081 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:27+09:00 | 2011-10-25T13:45+09:00 |
| jvndb-2011-000080 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:24+09:00 | 2011-10-25T13:44+09:00 |
| jvndb-2011-000079 | Cybozu Office vulnerable in restricting access | 2011-10-11T09:11+09:00 | 2011-11-28T16:48+09:00 |
| jvndb-2011-000078 | A-Form vulnerable in restricting access | 2011-10-11T09:08+09:00 | 2011-10-11T09:08+09:00 |
| jvndb-2011-000077 | Enkai-kun vulnerable to cross-site scripting | 2011-10-11T09:00+09:00 | 2011-10-11T09:00+09:00 |
| jvndb-2011-000066 | BaserCMS vulnerable to access restriction | 2011-09-30T18:45+09:00 | 2011-09-30T18:45+09:00 |
| jvndb-2011-000065 | BaserCMS vulnerable to cross-site scripting | 2011-09-30T18:39+09:00 | 2011-09-30T18:39+09:00 |
| jvndb-2011-000074 | SemanticScuttle vulnerable to cross-site scripting | 2011-09-16T18:08+09:00 | 2011-09-16T18:08+09:00 |
| jvndb-2011-000073 | Megalith vulnerable to authentication bypass | 2011-09-12T09:19+09:00 | 2011-09-12T09:19+09:00 |
| jvndb-2011-000072 | GTK+ may insecurely load dynamic libraries | 2011-09-02T19:26+09:00 | 2011-09-02T19:26+09:00 |
| jvndb-2011-000071 | Juniper Networks IDP ACM vulnerable to cross-site scripting | 2011-09-02T19:22+09:00 | 2011-09-02T19:22+09:00 |
| jvndb-2011-000070 | Sage vulnerable to arbitrary script execution | 2011-09-02T19:19+09:00 | 2011-09-02T19:19+09:00 |
| jvndb-2011-000069 | Sage vulnerable to arbitrary script execution | 2011-09-02T19:14+09:00 | 2011-09-02T19:14+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0228 | Multiples vulnérabilités dans IBM | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0227 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0226 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0225 | Multiples vulnérabilités dans Juniper Secure Analytics | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0224 | Multiples vulnérabilités dans Microsoft Edge | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0223 | Vulnérabilité dans Spring Framework | 2024-03-15T00:00:00.000000 | 2024-03-15T00:00:00.000000 |
| certfr-2024-avi-0222 | Vulnérabilité dans Synology Router Manager | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0221 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0220 | Multiples vulnérabilités dans Cisco IOS XR | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0219 | Vulnérabilité dans les produits Mitel | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0218 | Multiples vulnérabilités dans Apache Tomcat | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0217 | Multiples vulnérabilités dans SonicWall | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0216 | Multiples vulnérabilités dans les produits Xen | 2024-03-14T00:00:00.000000 | 2024-03-14T00:00:00.000000 |
| certfr-2024-avi-0215 | Vulnérabilité dans Adobe ColdFusion | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0214 | Multiples vulnérabilités dans les produits Stormshield Network Security | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0213 | Multiples vulnérabilités dans les produits Intel | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0212 | Multiples vulnérabilités dans les produits Fortinet | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0211 | Multiples vulnérabilités dans les produits Citrix | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0210 | Vulnérabilité dans Google Chrome | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0209 | Multiples vulnérabilités dans les produits SAP | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0208 | Multiples vulnérabilités dans les produits Microsoft | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0207 | Multiples vulnérabilités dans Microsoft Azure | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0206 | Multiples vulnérabilités dans Microsoft .Net | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0205 | Multiples vulnérabilités dans Microsoft Windows | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0204 | Multiples vulnérabilités dans Microsoft Office | 2024-03-13T00:00:00.000000 | 2024-03-13T00:00:00.000000 |
| certfr-2024-avi-0203 | Multiples vulnérabilités dans les produits Siemens | 2024-03-12T00:00:00.000000 | 2024-03-12T00:00:00.000000 |
| certfr-2024-avi-0202 | Multiples vulnérabilités dans les produits Schneider | 2024-03-12T00:00:00.000000 | 2024-03-12T00:00:00.000000 |
| certfr-2024-avi-0201 | Multiples vulnérabilités dans les produits Qnap | 2024-03-11T00:00:00.000000 | 2024-03-11T00:00:00.000000 |
| certfr-2024-avi-0200 | Vulnérabilité dans les produits MongoDB | 2024-03-11T00:00:00.000000 | 2024-03-11T00:00:00.000000 |
| certfr-2024-avi-0199 | Multiples vulnérabilités dans IBM | 2024-03-08T00:00:00.000000 | 2024-03-08T00:00:00.000000 |