Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-2449 | 9 (v4.0) | Improper neutralization of argument delimiters in… |
upKeeper Solutions |
upKeeper Instant Privilege Access |
2026-04-14T11:56:04.741Z | 2026-04-14T13:14:16.593Z |
| cve-2026-2450 | 7.4 (v4.0) | .NET misconfiguration: use of impersonation vulne… |
upKeeper Solutions |
upKeeper Instant Privilege Access |
2026-04-14T12:07:44.265Z | 2026-04-14T13:14:16.443Z |
| cve-2026-40040 | 8.7 (v4.0) 8.8 (v3.1) | Pachno 1.0.6 Unrestricted File Upload Remote Code Execution |
pancho |
Pachno |
2026-04-13T18:10:56.828Z | 2026-04-14T13:08:29.690Z |
| cve-2026-6200 | Tenda F456 webtypelibrary formwebtypelibrary stack-bas… |
Tenda |
F456 |
2026-04-13T18:45:12.958Z | 2026-04-14T13:07:41.730Z | |
| cve-2026-6218 | aandrew-me ytDownloader Error Details Panel createText… |
aandrew-me |
ytDownloader |
2026-04-13T20:30:14.394Z | 2026-04-14T13:05:33.179Z | |
| cve-2026-6227 | BackWPup <= 5.6.6 - Authenticated (Administrator+) Loc… |
wp_media |
BackWPup – WordPress Backup & Restore Plugin |
2026-04-14T02:25:47.771Z | 2026-04-14T13:03:30.768Z | |
| cve-2026-4109 | Eventin – Events Calendar, Event Booking, Ticket & Reg… |
arraytics |
Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered) |
2026-04-14T07:43:03.588Z | 2026-04-14T13:00:42.566Z | |
| cve-2026-27668 | A vulnerability has been identified in RUGGEDCOM … |
Siemens |
RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) |
2026-04-14T08:40:45.661Z | 2026-04-14T12:58:05.664Z | |
| cve-2026-5869 | N/A | Heap buffer overflow in WebML in Google Chrome pr… |
Google |
Chrome |
2026-04-08T21:20:43.915Z | 2026-04-14T12:52:09.160Z |
| cve-2026-5867 | N/A | Heap buffer overflow in WebML in Google Chrome pr… |
Google |
Chrome |
2026-04-08T21:20:43.173Z | 2026-04-14T12:51:46.643Z |
| cve-2026-5864 | N/A | Heap buffer overflow in WebAudio in Google Chrome… |
Google |
Chrome |
2026-04-08T21:20:41.982Z | 2026-04-14T12:51:29.954Z |
| cve-2024-9168 | N/A | {'providerMetadata': {'orgId': 'b15e7b5b-3da4-40ae-a43c-f7aa60e62599', 'shortName': 'Wordfence', 'dateUpdated': '2026-04-14T12:36:03.404Z'}, 'rejectedReasons': [{'lang': 'en', 'value': '** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage.'}]} | N/A | N/A | 2026-04-14T12:36:03.404Z | |
| cve-2026-5307 | N/A | {'providerMetadata': {'orgId': 'b15e7b5b-3da4-40ae-a43c-f7aa60e62599', 'shortName': 'Wordfence', 'dateUpdated': '2026-04-14T12:30:01.286Z'}, 'rejectedReasons': [{'lang': 'en', 'value': '** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage.'}]} | N/A | N/A | 2026-04-14T12:30:01.286Z | |
| cve-2026-5201 | 7.5 (v3.1) | Gdk-pixbuf: gdk-pixbuf: denial of service via heap-bas… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-03-31T08:32:58.344Z | 2026-04-14T11:24:02.757Z |
| cve-2026-22720 | 8 (v3.1) | VMware Aria Operations stored cross-site scripting vul… |
VMware |
VMware Aria Operations |
2026-02-25T19:33:14.729Z | 2026-04-14T10:40:29.059Z |
| cve-2026-22719 | 8.1 (v3.1) | VMware Aria Operations command injection vulnerability |
VMware |
VMware Aria Operations |
2026-02-25T19:18:59.269Z | 2026-04-14T10:38:25.169Z |
| cve-2020-26147 | N/A | An issue was discovered in the Linux kernel 5.8.9… |
n/a |
n/a |
2021-05-11T19:40:19.000Z | 2026-04-14T09:01:51.571Z |
| cve-2025-40898 | 7.2 (v4.0) 8.1 (v3.1) | Path traversal in Import Arc data archive functionalit… |
Nozomi Networks |
Guardian |
2025-12-18T13:19:22.192Z | 2026-04-14T08:58:13.064Z |
| cve-2025-40894 | 2.1 (v4.0) 4.4 (v3.1) | HTML injection in Alerted Nodes Dashboard in Guardian/… |
Nozomi Networks |
Guardian |
2026-03-04T13:51:14.413Z | 2026-04-14T08:58:11.923Z |
| cve-2025-40893 | 5.3 (v4.0) 6.1 (v3.1) | HTML injection in Asset List in Guardian/CMC before 25.5.0 |
Nozomi Networks |
Guardian |
2025-12-18T13:17:54.241Z | 2026-04-14T08:58:10.756Z |
| cve-2025-40892 | 7.1 (v4.0) 8.9 (v3.1) | Stored Cross-Site Scripting (XSS) in Reports in Guardi… |
Nozomi Networks |
Guardian |
2025-12-18T13:16:25.212Z | 2026-04-14T08:58:09.594Z |
| cve-2025-40891 | 2.3 (v4.0) 4.7 (v3.1) | HTML injection in in Time Machine functionality in Gua… |
Nozomi Networks |
Guardian |
2025-12-18T13:14:35.366Z | 2026-04-14T08:58:08.457Z |
| cve-2025-6965 | 7.2 (v4.0) | Integer Truncation on SQLite |
SQLite |
SQLite |
2025-07-15T13:44:00.784Z | 2026-04-14T08:58:07.313Z |
| cve-2025-2884 | Out-of-Bounds read vulnerability in TCG TPM2.0 referen… |
Trusted Computing Group |
TPM2.0 |
2025-06-10T17:29:19.463Z | 2026-04-14T08:58:06.200Z | |
| cve-2022-38767 | N/A | An issue was discovered in Wind River VxWorks 6.9… |
n/a |
n/a |
2022-11-25T00:00:00.000Z | 2026-04-14T08:58:05.041Z |
| cve-2022-3786 | X.509 Email Address Variable Length Buffer Overflow |
OpenSSL |
OpenSSL |
2022-11-01T00:00:00.000Z | 2026-04-14T08:58:03.787Z | |
| cve-2022-3602 | X.509 Email Address 4-byte Buffer Overflow |
OpenSSL |
OpenSSL |
2022-11-01T00:00:00.000Z | 2026-04-14T08:58:02.339Z | |
| cve-2022-0778 | Infinite loop in BN_mod_sqrt() reachable when parsing … |
OpenSSL |
OpenSSL |
2022-03-15T17:05:20.382Z | 2026-04-14T08:58:00.706Z | |
| cve-2020-26146 | N/A | An issue was discovered on Samsung Galaxy S3 i930… |
n/a |
n/a |
2021-05-11T19:39:07.000Z | 2026-04-14T08:49:11.814Z |
| cve-2020-26145 | N/A | An issue was discovered on Samsung Galaxy S3 i930… |
n/a |
n/a |
2021-05-11T19:35:10.000Z | 2026-04-14T08:49:09.886Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2010-000047 | Sleipnir and Grani may insecurely load dynamic libraries | 2010-10-25T17:42+09:00 | 2010-10-25T17:42+09:00 |
| jvndb-2010-000044 | Archive Decoder may insecurely load executable files | 2010-10-20T17:41+09:00 | 2010-10-20T17:41+09:00 |
| jvndb-2010-000043 | Explzh may insecurely load executable files | 2010-10-20T17:41+09:00 | 2010-10-20T17:41+09:00 |
| jvndb-2010-000041 | K2Editor may insecurely load executable files | 2010-10-20T17:41+09:00 | 2010-10-20T17:41+09:00 |
| jvndb-2010-000040 | XacRett may insecurely load executable files | 2010-10-20T17:40+09:00 | 2010-10-20T17:40+09:00 |
| jvndb-2010-000039 | Lhaplus may insecurely load executable files | 2010-10-20T17:40+09:00 | 2010-10-20T17:40+09:00 |
| jvndb-2008-000084 | PHP vulnerable to cross-site scripting | 2008-12-19T15:37+09:00 | 2010-10-19T17:40+09:00 |
| jvndb-2010-000042 | Cross-site Request Forgery Vulnerability in Oracle iPlanet Web Server | 2010-10-18T19:37+09:00 | 2010-10-18T19:37+09:00 |
| jvndb-2010-000038 | Lhasa may insecurely load executable files | 2010-10-18T19:36+09:00 | 2010-10-18T19:36+09:00 |
| jvndb-2010-000037 | Lhaplus may insecurely load dynamic libraries | 2010-10-18T19:36+09:00 | 2010-10-18T19:36+09:00 |
| jvndb-2010-002078 | Multiple Vulnerabilities in Groupmax Scheduler Server | 2010-10-13T16:58+09:00 | 2010-10-13T16:58+09:00 |
| jvndb-2010-002077 | Phishing Vulnerability in Accela BizSearch Document View Window | 2010-10-13T16:58+09:00 | 2010-10-13T16:58+09:00 |
| jvndb-2005-000775 | Vulnerability involving security zone handling in applications using Internet Explorer components | 2008-05-21T00:00+09:00 | 2010-10-12T16:44+09:00 |
| jvndb-2010-000036 | AD-EDIT2 vulnerable to cross-site scripting | 2010-10-05T19:31+09:00 | 2010-10-05T19:31+09:00 |
| jvndb-2010-002011 | JP1/NETM/Remote Control Agent Authentication Bypass Vulnerability | 2010-09-21T14:10+09:00 | 2010-09-21T14:10+09:00 |
| jvndb-2010-001958 | Denial of Service (DoS) Vulnerability in JP1/Desktop Navigation Built-in Database | 2010-09-15T13:46+09:00 | 2010-09-15T13:46+09:00 |
| jvndb-2010-001959 | Denial of Service (DoS) Vulnerability in Hitachi Storage Command Suite Built-in Database | 2010-09-15T13:45+09:00 | 2010-09-15T13:45+09:00 |
| jvndb-2010-000035 | Cross-site scripting vulnerability in Access Analyzer CGI by futomi's CGI Cafe | 2010-09-10T17:25+09:00 | 2010-09-10T17:25+09:00 |
| jvndb-2010-001878 | Denial of Service (DoS) Vulnerability in JP1/Integrated Manager and JP1/Integrated Management | 2010-09-01T14:12+09:00 | 2010-09-01T14:12+09:00 |
| jvndb-2010-001877 | Denial of Service (DoS) Vulnerability in JP1/PAM | 2010-09-01T14:12+09:00 | 2010-09-01T14:12+09:00 |
| jvndb-2010-001876 | Denial of Service (DoS) Vulnerability in JP1/AJS Built-in Database | 2010-09-01T14:11+09:00 | 2010-09-01T14:11+09:00 |
| jvndb-2010-001875 | Denial of Service (DoS) Vulnerability in JP1/ServerConductor/Control Manager | 2010-09-01T14:11+09:00 | 2010-09-01T14:11+09:00 |
| jvndb-2010-001874 | Denial of Service (DoS) Vulnerability in Cosminexus | 2010-09-01T14:11+09:00 | 2010-09-01T14:11+09:00 |
| jvndb-2010-000034 | moobbs2 vulnerable to cross-site scripting | 2010-08-31T14:16+09:00 | 2010-08-31T14:16+09:00 |
| jvndb-2010-000033 | moobbs vulnerable to cross-site scripting | 2010-08-31T14:16+09:00 | 2010-08-31T14:16+09:00 |
| jvndb-2010-000032 | SEIL/X Series and SEIL/B1 IPv6 Unicast RPF vulnerability | 2010-08-25T13:54+09:00 | 2010-08-25T13:54+09:00 |
| jvndb-2010-000030 | Winny vulnerable to buffer overflow | 2010-08-20T17:18+09:00 | 2010-08-20T17:18+09:00 |
| jvndb-2010-000029 | Winny vulnerable to buffer overflow | 2010-08-20T17:18+09:00 | 2010-08-20T17:18+09:00 |
| jvndb-2010-000028 | Winny node information processing vulnerability | 2010-08-20T17:17+09:00 | 2010-08-20T17:17+09:00 |
| jvndb-2010-000027 | Winny BBS information processing vulnerability | 2010-08-20T17:17+09:00 | 2010-08-20T17:17+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0082 | Multiples vulnérabilités dans les produits Xen | 2024-01-31T00:00:00.000000 | 2024-01-31T00:00:00.000000 |
| certfr-2024-avi-0081 | Multiples vulnérabilités dans les produits Spring | 2024-01-31T00:00:00.000000 | 2024-01-31T00:00:00.000000 |
| certfr-2024-avi-0080 | Multiples vulnérabilités dans les produits Splunk | 2024-01-31T00:00:00.000000 | 2024-01-31T00:00:00.000000 |
| certfr-2024-avi-0079 | Vulnérabilité dans les produits ESET | 2024-01-30T00:00:00.000000 | 2024-01-30T00:00:00.000000 |
| certfr-2024-avi-0078 | Vulnérabilité dans Progress MOVEit Transfer | 2024-01-30T00:00:00.000000 | 2024-01-30T00:00:00.000000 |
| certfr-2024-avi-0077 | Vulnérabilité dans les produits NetApp | 2024-01-29T00:00:00.000000 | 2024-01-29T00:00:00.000000 |
| certfr-2024-avi-0076 | Vulnérabilité dans Microsoft Edge | 2024-01-29T00:00:00.000000 | 2024-01-29T00:00:00.000000 |
| certfr-2024-avi-0075 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0074 | Multiples vulnérabilités dans les produits IBM | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0073 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0072 | Multiples vulnérabilités dans les produits Juniper | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0071 | Multiples vulnérabilités dans Microsoft Edge | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0070 | Vulnérabilité dans Synology DiskStation Manager | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0069 | Multiples vulnérabilités dans Gitlab | 2024-01-26T00:00:00.000000 | 2024-01-26T00:00:00.000000 |
| certfr-2024-avi-0068 | Vulnérabilité dans Cisco Unified Communications | 2024-01-25T00:00:00.000000 | 2024-01-25T00:00:00.000000 |
| certfr-2024-avi-0067 | Multiples vulnérabilités dans les produits NetApp | 2024-01-25T00:00:00.000000 | 2024-01-25T00:00:00.000000 |
| certfr-2024-avi-0066 | Vulnérabilité dans Squid | 2024-01-24T00:00:00.000000 | 2024-01-24T00:00:00.000000 |
| certfr-2024-avi-0065 | Vulnérabilité dans Citrix Hypervisor | 2024-01-24T00:00:00.000000 | 2024-01-24T00:00:00.000000 |
| certfr-2024-avi-0064 | Multiples vulnérabilités dans Google Chrome | 2024-01-24T00:00:00.000000 | 2024-01-24T00:00:00.000000 |
| certfr-2024-avi-0063 | Multiples vulnérabilités dans les produits Mozilla | 2024-01-24T00:00:00.000000 | 2024-01-24T00:00:00.000000 |
| certfr-2024-avi-0061 | Multiples vulnérabilités dans les produits Splunk | 2024-01-23T00:00:00.000000 | 2024-01-23T00:00:00.000000 |
| certfr-2024-avi-0060 | Vulnérabilité dans Xen | 2024-01-23T00:00:00.000000 | 2024-01-23T00:00:00.000000 |
| certfr-2023-avi-1019 | Vulnérabilité dans les produits Cisco | 2023-12-13T00:00:00.000000 | 2024-01-23T00:00:00.000000 |
| certfr-2024-avi-0059 | Vulnérabilité dans Spring Framework | 2024-01-22T00:00:00.000000 | 2024-01-22T00:00:00.000000 |
| certfr-2024-avi-0058 | Vulnérabilité dans Postfix | 2024-01-22T00:00:00.000000 | 2024-01-22T00:00:00.000000 |
| certfr-2024-avi-0057 | Multiples vulnérabilités dans les produits IBM | 2024-01-19T00:00:00.000000 | 2024-01-19T00:00:00.000000 |
| certfr-2024-avi-0056 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2024-01-19T00:00:00.000000 | 2024-01-19T00:00:00.000000 |
| certfr-2024-avi-0055 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-01-19T00:00:00.000000 | 2024-01-19T00:00:00.000000 |
| certfr-2024-avi-0054 | Vulnérabilité dans Exim | 2024-01-19T00:00:00.000000 | 2024-01-19T00:00:00.000000 |
| certfr-2024-avi-0053 | Multiples vulnérabilités dans les produits Nextcloud | 2024-01-18T00:00:00.000000 | 2024-01-18T00:00:00.000000 |