Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-30818 | 8.5 (v4.0) | OS Command Injection Vulnerability in dnsmasq Module i… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:54:44.175Z | 2026-04-09T03:56:18.130Z |
| cve-2026-30817 | 6.8 (v4.0) | Arbitrary File Reading Vulnerability in dnsmasq Module… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:53:58.495Z | 2026-04-08T19:21:49.676Z |
| cve-2026-30816 | 6.8 (v4.0) | Arbitrary File Reading Vulnerability in OpenVPN Module… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:53:20.560Z | 2026-04-08T19:21:56.624Z |
| cve-2026-30815 | 8.5 (v4.0) | OS Command Injection Vulnerability in OpenVPN Module i… |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:52:29.336Z | 2026-04-09T03:56:16.458Z |
| cve-2026-34166 | LiquidJS has a Memory Limit Bypass via Quadratic Ampli… |
harttle |
liquidjs |
2026-04-08T17:52:05.849Z | 2026-04-10T20:37:03.164Z | |
| cve-2026-30814 | 7.3 (v4.0) | Buffer Overflow Vulnerability in TP-Link AX53 |
TP-Link Systems Inc. |
AX53 v1.0 |
2026-04-08T17:52:00.929Z | 2026-04-09T03:56:15.034Z |
| cve-2026-33350 | LORIS has a SQL injection in MRI feedback popup |
aces |
Loris |
2026-04-08T17:47:32.566Z | 2026-04-08T19:24:05.846Z | |
| cve-2026-27806 | Fleet Affected by Local Privilege Escalation via Tcl C… |
fleetdm |
fleet |
2026-04-08T17:40:24.119Z | 2026-04-09T14:24:14.670Z | |
| cve-2026-39851 | Saleor has a user enumeration vulnerability due to dif… |
saleor |
saleor |
2026-04-08T17:33:37.998Z | 2026-04-08T19:22:20.422Z | |
| cve-2025-30650 | 6.7 (v3.1) 8.4 (v4.0) | Junos OS: Privileged local user can gain access to a L… |
Juniper Networks |
Junos OS |
2026-04-08T17:26:35.685Z | 2026-04-13T21:17:19.185Z |
| cve-2026-0811 | Advanced CF7 DB <= 2.0.9 - Cross-Site Request Forgery … |
vsourz1td |
Advanced Contact form 7 DB |
2026-04-08T17:25:52.629Z | 2026-04-08T19:10:25.260Z | |
| cve-2026-0814 | Advanced CF7 DB <= 2.0.9 - Missing Authorization to Au… |
vsourz1td |
Advanced Contact form 7 DB |
2026-04-08T17:25:52.159Z | 2026-04-08T18:36:26.257Z | |
| cve-2026-2942 | ProSolution WP Client <= 1.9.9 - Unauthenticated Arbit… |
prosolution |
ProSolution WP Client |
2026-04-08T17:25:51.614Z | 2026-04-08T19:22:50.228Z | |
| cve-2026-35407 | Saleor has Cross-Account Email Change via Unbound Conf… |
saleor |
saleor |
2026-04-08T17:24:39.716Z | 2026-04-10T20:36:19.733Z | |
| cve-2026-35401 | Saleor has a resource exhaustion vulnerability in Grap… |
saleor |
saleor |
2026-04-08T17:22:10.683Z | 2026-04-08T19:21:37.796Z | |
| cve-2026-33756 | Saleor Affected by Denial of Service via Unbounded Gra… |
saleor |
saleor |
2026-04-08T17:07:57.920Z | 2026-04-08T18:42:28.521Z | |
| cve-2026-32591 | 5.2 (v3.1) | Mirror-registry: quay: server-side request forgery in … |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:06:58.222Z | 2026-04-21T23:33:34.913Z |
| cve-2026-32590 | 7.1 (v3.1) | Mirror-registry: remote code execution using pickle de… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:04:22.870Z | 2026-04-21T23:33:34.858Z |
| cve-2026-32589 | 7.1 (v3.1) | Mirror-registry: quay: insecure direct object referenc… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T17:04:20.284Z | 2026-04-21T23:33:34.926Z |
| cve-2026-33466 | 8.1 (v3.1) | Improper Limitation of a Pathname to a Restricted Dire… |
Elastic |
Logstash |
2026-04-08T16:50:42.186Z | 2026-04-10T03:56:01.015Z |
| cve-2026-33458 | 6.8 (v3.1) | Server-Side Request Forgery (SSRF) in Kibana One Workf… |
Elastic |
Kibana |
2026-04-08T16:47:58.462Z | 2026-04-08T19:22:33.432Z |
| cve-2026-33459 | 6.5 (v3.1) | Uncontrolled Resource Consumption in Kibana Leading to… |
Elastic |
Kibana |
2026-04-08T16:46:02.601Z | 2026-04-09T14:24:44.912Z |
| cve-2026-33460 | 4.3 (v3.1) | Incorrect Authorization in Kibana Fleet Leading to Inf… |
Elastic |
Kibana |
2026-04-08T16:43:30.788Z | 2026-04-09T14:26:20.085Z |
| cve-2025-14243 | 5.3 (v3.1) | Mirror-registry: openshift mirror registry: user enume… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T16:41:55.597Z | 2026-04-08T21:46:14.175Z |
| cve-2026-33461 | 7.7 (v3.1) | Incorrect Authorization in Kibana Fleet Leading to Inf… |
Elastic |
Kibana |
2026-04-08T16:41:27.335Z | 2026-04-09T14:27:16.151Z |
| cve-2026-4498 | 7.7 (v3.1) | Execution with Unnecessary Privileges in Kibana Leadin… |
Elastic |
Kibana |
2026-04-08T16:38:59.327Z | 2026-04-09T14:27:38.420Z |
| cve-2026-2377 | 6.5 (v3.1) | Mirror-registry: quay: quay: server-side request forge… |
Red Hat |
mirror registry for Red Hat OpenShift |
2026-04-08T16:26:07.649Z | 2026-04-09T13:49:27.203Z |
| cve-2026-4837 | 6.6 (v3.1) | Eval Injection in Rapid7 Insight Agent |
Rapid7 |
Insight Agent |
2026-04-08T15:59:03.121Z | 2026-04-13T13:04:16.829Z |
| cve-2026-33753 | Improper Certificate Validation in rfc3161-client |
trailofbits |
rfc3161-client |
2026-04-08T14:54:59.704Z | 2026-04-08T16:12:57.796Z | |
| cve-2026-33229 | XWiki Platform affected by remote code execution with … |
xwiki |
xwiki-platform |
2026-04-08T14:53:35.977Z | 2026-04-10T20:33:15.897Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-002345 | StartTLS not enabled in Hitachi Storage Command Suite products | 2009-12-24T14:32+09:00 | 2009-12-24T14:32+09:00 |
| jvndb-2009-000084 | P forum vulnerable to directory traversal | 2009-12-17T14:18+09:00 | 2009-12-17T14:18+09:00 |
| jvndb-2009-000077 | Active! mail 2003 cookie disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000076 | Active! mail 2003 session ID disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000075 | Active! mail 2003 cross-site scripting vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000079 | SEIL/B1 authentication issue | 2009-12-09T19:38+09:00 | 2009-12-09T19:38+09:00 |
| jvndb-2009-000078 | EC-CUBE information disclosure vulnerability | 2009-12-07T14:51+09:00 | 2009-12-07T14:51+09:00 |
| jvndb-2009-000074 | Redmine vulnerable to cross-site request forgery | 2009-11-19T15:45+09:00 | 2009-11-19T15:45+09:00 |
| jvndb-2009-000073 | Redmine vulnerable to cross-site scripting | 2009-11-19T15:45+09:00 | 2009-11-19T15:45+09:00 |
| jvndb-2009-000072 | Roundcube Webmail vulnerable to cross-site request forgery | 2009-11-04T15:27+09:00 | 2009-11-04T15:27+09:00 |
| jvndb-2009-000071 | Roundcube Webmail vulnerable to cross-site request forgery | 2009-11-04T15:27+09:00 | 2009-11-04T15:27+09:00 |
| jvndb-2009-000070 | SEIL/X Series and SEIL/B1 denial of service vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2009-000069 | SEIL/X Series and SEIL/B1 buffer overflow vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2009-000068 | Implementations of IPv6 may be vulnerable to denial of service (DoS) attacks | 2009-10-26T15:58+09:00 | 2010-01-25T12:02+09:00 |
| jvndb-2009-000066 | Canon IT Solutions Inc. ACCESSGUARDIAN vulnerable to cross-site scripting | 2009-10-20T15:56+09:00 | 2009-10-20T15:56+09:00 |
| jvndb-2009-000067 | Multiple Cybozu products vulnerable to cross-site scripting | 2009-10-15T15:21+09:00 | 2009-10-15T15:21+09:00 |
| jvndb-2009-000065 | SugarCRM vulnerable to cross-site scripting | 2009-10-02T16:02+09:00 | 2009-10-02T16:02+09:00 |
| jvndb-2009-000064 | Directory traversal vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000063 | Cross-site scripting vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000062 | XF-Section vulnerable to cross-site scripting | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-000061 | Third-party cookie issue in Opera | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-001968 | GIF File Processing Denial of Service Vulnerability in Multiple JP1 Products | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-001967 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-000060 | Webservice-DIC yoyaku_v41 vulnerable to command injection | 2009-09-11T16:36+09:00 | 2009-09-11T16:36+09:00 |
| jvndb-2009-000059 | Buffer overflow vulnerability in Microsoft Windows | 2009-09-09T17:30+09:00 | 2009-09-09T17:30+09:00 |
| jvndb-2009-001931 | Issue of Access Control Failure in Hitachi Device Manager Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-001930 | Issue of Access Control Failure in Groupmax Scheduler Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-000058 | bingo!CMS core and bingo!CMS vulnerable to cross-site request forgery | 2009-08-27T15:29+09:00 | 2009-08-27T15:29+09:00 |
| jvndb-2009-000055 | Site Calendar 'mycaljp' vulnerable to cross-site scripting | 2009-08-26T15:25+09:00 | 2009-08-26T15:25+09:00 |
| jvndb-2009-001893 | Hitachi Business Logic Cross-Site Scripting Vulnerability | 2009-08-25T10:50+09:00 | 2009-08-25T10:50+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0018 | Multiples vulnérabilités dans les produits SAP | 2024-01-10T00:00:00.000000 | 2024-01-10T00:00:00.000000 |
| certfr-2024-avi-0017 | Multiples vulnérabilités dans les produits Intel | 2024-01-10T00:00:00.000000 | 2024-01-10T00:00:00.000000 |
| certfr-2024-avi-0016 | Multiples vulnérabilités dans les produits Trend Micro | 2024-01-10T00:00:00.000000 | 2024-01-10T00:00:00.000000 |
| certfr-2024-avi-0015 | Multiples vulnérabilités dans les produits Splunk | 2024-01-10T00:00:00.000000 | 2024-01-10T00:00:00.000000 |
| certfr-2024-avi-0014 | Multiples vulnérabilités dans les produits Siemens | 2024-01-09T00:00:00.000000 | 2024-01-09T00:00:00.000000 |
| certfr-2024-avi-0013 | Multiples vulnérabilités dans les produits Schneider Electric | 2024-01-09T00:00:00.000000 | 2024-01-09T00:00:00.000000 |
| certfr-2024-avi-0012 | Multiples vulnérabilités dans Microsoft Edge | 2024-01-08T00:00:00.000000 | 2024-01-08T00:00:00.000000 |
| certfr-2024-avi-0011 | Multiples vulnérabilités dans les produits Qnap | 2024-01-08T00:00:00.000000 | 2024-01-08T00:00:00.000000 |
| certfr-2024-avi-0010 | Multiples vulnérabilités dans les produits IBM | 2024-01-05T00:00:00.000000 | 2024-01-05T00:00:00.000000 |
| certfr-2024-avi-0009 | Multiples vulnérabilités dans Centreon Web | 2024-01-05T00:00:00.000000 | 2024-01-05T00:00:00.000000 |
| certfr-2024-avi-0008 | Vulnérabilité dans Ivanti Endpoint Manager | 2024-01-05T00:00:00.000000 | 2024-01-05T00:00:00.000000 |
| certfr-2024-avi-0007 | Multiples vulnérabilités dans Wireshark | 2024-01-05T00:00:00.000000 | 2024-01-05T00:00:00.000000 |
| certfr-2024-avi-0006 | Multiples vulnérabilités dans Google Android | 2024-01-04T00:00:00.000000 | 2024-01-04T00:00:00.000000 |
| certfr-2024-avi-0005 | Vulnérabilité dans Wireshark | 2024-01-04T00:00:00.000000 | 2024-01-04T00:00:00.000000 |
| certfr-2024-avi-0004 | Multiples vulnérabilités dans Google Chrome | 2024-01-04T00:00:00.000000 | 2024-01-04T00:00:00.000000 |
| certfr-2024-avi-0003 | Vulnérabilité dans Synology Router Manager | 2024-01-04T00:00:00.000000 | 2024-01-04T00:00:00.000000 |
| certfr-2024-avi-0002 | Multiples vulnérabilités dans Moxa OnCell G3150A-LTE Series | 2024-01-02T00:00:00.000000 | 2024-01-02T00:00:00.000000 |
| certfr-2024-avi-0001 | Vulnérabilité dans StormShield Network Security | 2024-01-02T00:00:00.000000 | 2024-01-03T00:00:00.000000 |
| certfr-2023-avi-1062 | Multiples vulnérabilités dans Juniper Secure Analytics | 2023-12-29T00:00:00.000000 | 2023-12-29T00:00:00.000000 |
| certfr-2023-avi-1061 | Multiples vulnérabilités dans Apache OpenOffice | 2023-12-29T00:00:00.000000 | 2024-01-02T00:00:00.000000 |
| certfr-2023-avi-1060 | Vulnérabilité dans NetApp Active IQ Unified Manager | 2023-12-28T00:00:00.000000 | 2023-12-28T00:00:00.000000 |
| certfr-2023-avi-1059 | Multiples vulnérabilités dans Moxa ioLogik E1200 | 2023-12-26T00:00:00.000000 | 2023-12-26T00:00:00.000000 |
| certfr-2023-avi-1058 | Vulnérabilité dans Stormshield Network Security | 2023-12-26T00:00:00.000000 | 2023-12-26T00:00:00.000000 |
| certfr-2023-avi-1057 | Vulnérabilité dans Postfix | 2023-12-22T00:00:00.000000 | 2023-12-26T00:00:00.000000 |
| certfr-2023-avi-1056 | Vulnérabilité dans Microsoft Edge | 2023-12-22T00:00:00.000000 | 2023-12-22T00:00:00.000000 |
| certfr-2023-avi-1055 | Multiples vulnérabilités dans les produits IBM | 2023-12-22T00:00:00.000000 | 2023-12-22T00:00:00.000000 |
| certfr-2023-avi-1054 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-12-22T00:00:00.000000 | 2023-12-22T00:00:00.000000 |
| certfr-2023-avi-1053 | Vulnérabilité dans les produits ESET | 2023-12-22T00:00:00.000000 | 2023-12-22T00:00:00.000000 |
| certfr-2023-avi-1052 | Vulnérabilité dans SolarWinds Access Rights Manager | 2023-12-22T00:00:00.000000 | 2023-12-22T00:00:00.000000 |
| certfr-2023-avi-1051 | Vulnérabilité dans Google Chrome | 2023-12-21T00:00:00.000000 | 2023-12-21T00:00:00.000000 |