Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2026-6204 | 8.5 (v4.0) | LibreNMS versions before 26.3.0 are affected by a… |
librenms |
librenms |
2026-04-13T10:56:16.850Z | 2026-04-13T12:43:19.241Z |
| cve-2026-2728 | 4.6 (v4.0) | LibreNMS versions before 26.3.0 are affected by a… |
librenms |
librenms |
2026-04-13T10:39:54.757Z | 2026-04-13T12:59:06.750Z |
| cve-2025-15632 | 1Panel-dev MaxKB MdPreview chat.ts cross site scripting |
1Panel-dev |
MaxKB |
2026-04-13T09:30:21.266Z | 2026-04-13T13:01:08.819Z | |
| cve-2026-35337 | Apache Storm Client: RCE through Unsafe Deserializatio… |
Apache Software Foundation |
Apache Storm Client |
2026-04-13T09:11:06.193Z | 2026-04-14T03:55:31.489Z | |
| cve-2026-35565 | Apache Storm UI: Stored Cross-Site Scripting (XSS) via… |
Apache Software Foundation |
Apache Storm UI |
2026-04-13T09:10:17.367Z | 2026-04-13T14:10:07.069Z | |
| cve-2026-4810 | 9.3 (v4.0) | Remote Code Execution in Google Agent Development Kit (ADK) |
Google Cloud |
Agent Development Kit (ADK) |
2026-04-13T08:35:56.529Z | 2026-04-13T13:07:12.959Z |
| cve-2026-0232 | 4 (v4.0) | Cortex XDR Agent: Local Administrator can disable the … |
Palo Alto Networks |
Cortex XDR Agent |
2026-04-13T07:22:48.325Z | 2026-04-13T13:27:43.511Z |
| cve-2026-0233 | 2 (v4.0) | Autonomous Digital Experience Manager: Improper valida… |
Palo Alto Networks |
Autonomous Digital Experience Manager |
2026-04-13T07:17:34.585Z | 2026-04-14T13:49:34.873Z |
| cve-2026-0234 | 7.2 (v4.0) | Cortex XSOAR: Improper Verification of Cryptographic S… |
Palo Alto Networks |
Cortex XSOAR Microsoft Teams Marketplace |
2026-04-13T07:15:03.667Z | 2026-04-14T03:55:44.286Z |
| cve-2026-5936 | 8.5 (v3.1) | Server-Side Request Forgery (SSRF) via URL Parameter i… |
Foxit Software Inc. |
Foxit PDF Services API |
2026-04-13T06:57:40.220Z | 2026-04-13T13:50:29.768Z |
| cve-2026-5085 | N/A | Solstice::Session versions through 1440 for Perl gener… |
MCRAWFOR |
Solstice::Session |
2026-04-13T06:56:14.964Z | 2026-04-13T15:30:06.627Z |
| cve-2026-40436 | 7.1 (v3.1) | ZTE ZXEDM iEMS product has a password reset vulnerability |
ZTE |
ZXEDM iEMS |
2026-04-13T06:31:49.372Z | 2026-04-13T13:01:38.521Z |
| cve-2026-6168 | TOTOLINK A7000R cstecgi.cgi setWiFiEasyGuestCfg stack-… |
TOTOLINK |
A7000R |
2026-04-13T06:30:14.050Z | 2026-04-16T13:26:41.857Z | |
| cve-2026-6167 | code-projects Faculty Management System subject-print.… |
code-projects |
Faculty Management System |
2026-04-13T06:15:10.133Z | 2026-04-13T11:16:22.719Z | |
| cve-2026-34866 | 5.1 (v3.1) | Out-of-bounds write vulnerability in the WEB modu… |
Huawei |
HarmonyOS |
2026-04-13T06:03:29.090Z | 2026-04-13T13:07:38.948Z |
| cve-2026-34865 | 10 (v4.0) | Out-of-bounds write vulnerability in the WEB modu… |
Huawei |
HarmonyOS |
2026-04-13T06:02:29.393Z | 2026-04-13T13:08:00.297Z |
| cve-2026-6166 | code-projects Vehicle Showroom Management System Updat… |
code-projects |
Vehicle Showroom Management System |
2026-04-13T06:00:19.595Z | 2026-04-13T18:50:38.667Z | |
| cve-2026-3830 | N/A | Product Filter for WooCommerce by WBW < 3.1.3 - Unauth… |
Unknown |
Product Filter for WooCommerce by WBW |
2026-04-13T06:00:13.287Z | 2026-04-13T12:56:39.504Z |
| cve-2025-15441 | N/A | Form Maker < 1.15.38 - SQL Injection |
Unknown |
Form Maker by 10Web |
2026-04-13T06:00:11.088Z | 2026-04-13T15:04:26.883Z |
| cve-2026-6165 | code-projects Vehicle Showroom Management System Login… |
code-projects |
Vehicle Showroom Management System |
2026-04-13T05:45:17.209Z | 2026-04-14T16:29:43.178Z | |
| cve-2026-6164 | code-projects Lost and Found Thing Management addcat.p… |
code-projects |
Lost and Found Thing Management |
2026-04-13T05:30:20.498Z | 2026-04-13T13:08:34.957Z | |
| cve-2026-6163 | code-projects Lost and Found Thing Management catageor… |
code-projects |
Lost and Found Thing Management |
2026-04-13T05:15:09.634Z | 2026-04-16T13:26:42.034Z | |
| cve-2026-21010 | 6.6 (v3.1) | Improper input validation in Retail Mode prior to… |
Samsung Mobile |
Samsung Mobile Devices |
2026-04-13T05:10:06.268Z | 2026-04-13T13:55:06.724Z |
| cve-2026-21008 | 5.1 (v4.0) | Exposure of sensitive information in S Share prio… |
Samsung Mobile |
Samsung Mobile Devices |
2026-04-13T05:09:40.420Z | 2026-04-13T13:57:52.407Z |
| cve-2026-40447 | 5.1 (v3.1) | Integer overflow or wraparound vulnerability in S… |
Samsung Open Source |
Escargot |
2026-04-13T05:06:38.362Z | 2026-04-13T14:14:26.774Z |
| cve-2026-21014 | 5.1 (v4.0) | Improper access control in Samsung Camera prior t… |
Samsung Mobile |
Samsung Camera |
2026-04-13T05:04:48.621Z | 2026-04-13T14:31:18.617Z |
| cve-2026-21013 | 6.9 (v4.0) | Incorrect default permission in Galaxy Wearable p… |
Samsung Mobile |
Galaxy Wearable |
2026-04-13T05:04:45.232Z | 2026-04-13T14:35:12.877Z |
| cve-2026-21012 | 6.8 (v4.0) | External control of file name in AODManager prior… |
Samsung Mobile |
Samsung Mobile Devices |
2026-04-13T05:04:42.068Z | 2026-04-13T13:09:30.242Z |
| cve-2026-21011 | 5.4 (v4.0) | Incorrect privilege assignment in Bluetooth in Ma… |
Samsung Mobile |
Samsung Mobile Devices |
2026-04-13T05:04:38.410Z | 2026-04-13T13:09:06.730Z |
| cve-2026-21009 | 4.1 (v4.0) | Improper check for exceptional conditions in Rece… |
Samsung Mobile |
Samsung Mobile Devices |
2026-04-13T05:04:32.607Z | 2026-04-13T18:06:16.578Z |
| ID | Description | Updated |
|---|
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2007-000875 | AirStation series and BroadStation series vulnerable to cross-site request forgery | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000824 | GreaseKit and Creammonkey allows execution of userscript functions | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000823 | Cross-site scripting in Sun Java System Web Server and Sun Java System Web Proxy Server | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000822 | WinAce buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000820 | Google Web Toolkit vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000819 | Cross-site scripting vulnerability in Apache HTTP Server "mod_imap" and "mod_imagemap" | 2008-05-21T00:00+09:00 | 2013-07-18T18:58+09:00 |
| jvndb-2007-000818 | Flash Player allows to send arbitrary HTTP headers | 2008-05-21T00:00+09:00 | 2008-06-20T13:34+09:00 |
| jvndb-2007-000817 | Flash Player vulnerable in handling cross-domain policy files | 2008-05-21T00:00+09:00 | 2009-02-10T11:32+09:00 |
| jvndb-2007-000816 | Rainboard cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000815 | Multiple Cybozu products vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000814 | Multiple Cybozu products vulnerable to HTTP header injection | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000813 | Multiple Cybozu products vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000812 | Cybozu Office denial of service (DoS) vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000811 | HttpLogger vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000810 | JP1/Cm2/Network Node Manager vulnerable to cross-site scripting | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000809 | SonicStage CP buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000808 | Lhaplus buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000807 | FileMaker cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000806 | Feed2JS cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000805 | RoundCube Webmail cross-site request forgery vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000804 | Sleipnir and Grani Bookmark Search vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000803 | Cross-site scripting vulnerability in updir.php in UPDIR.NET | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000802 | Lotus Domino cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000801 | NetCommons cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000779 | MouseoverDictionary vulnerable to arbitrary script execution | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000773 | Hitachi Web Server Cross-Site Scripting Vulnerability with Server-Status Page | 2008-05-21T00:00+09:00 | 2014-05-21T18:27+09:00 |
| jvndb-2007-000772 | Hitachi Web Server SSL Client Authentication Vulnerability | 2008-05-21T00:00+09:00 | 2014-05-23T18:32+09:00 |
| jvndb-2007-000745 | PowerArchiver buffer overflow vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000730 | Webmin OS command injection vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| jvndb-2007-000729 | Aipo session fixation vulnerability | 2008-05-21T00:00+09:00 | 2008-05-21T00:00+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2023-avi-0877 | Vulnérabilité dans Microsoft Edge | 2023-10-23T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0876 | Multiples vulnérabilités dans Squid | 2023-10-23T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0875 | Vulnérabilité dans Qnap QUSBCam2 | 2023-10-23T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0874 | Multiples vulnérabilités dans le noyau Linux de DebianLTS | 2023-10-20T00:00:00.000000 | 2023-10-20T00:00:00.000000 |
| certfr-2023-avi-0873 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2023-10-20T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0872 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2023-10-20T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0871 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2023-10-20T00:00:00.000000 | 2023-10-23T00:00:00.000000 |
| certfr-2023-avi-0870 | Multiples vulnérabilités dans les produits VMware | 2023-10-20T00:00:00.000000 | 2023-10-20T00:00:00.000000 |
| certfr-2023-avi-0869 | Multiples vulnérabilités dans Zimbra Collaboration | 2023-10-19T00:00:00.000000 | 2023-10-19T00:00:00.000000 |
| certfr-2023-avi-0868 | Multiples vulnérabilités dans Apache HTTP Server | 2023-10-19T00:00:00.000000 | 2023-10-19T00:00:00.000000 |
| certfr-2023-avi-0867 | Vulnérabilité dans Spring AMQP | 2023-10-19T00:00:00.000000 | 2023-10-19T00:00:00.000000 |
| certfr-2023-avi-0866 | Multiples vulnérabilités dans Oracle Virtualization | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0865 | Multiples vulnérabilités dans Oracle Systems | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0864 | Multiples vulnérabilités dans Oracle PeopleSoft | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0863 | Multiples vulnérabilités dans Oracle MySQL | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0862 | Multiples vulnérabilités dans Oracle Java SE | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0861 | Multiples vulnérabilités dans Oracle WebLogic | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0860 | Multiples vulnérabilités dans Oracle Database Server | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0859 | Multiples vulnérabilités dans Moodle | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0858 | Vulnérabilité dans Elastic Endpoint | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0857 | Vulnérabilité dans Sophos Firewall | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0856 | Vulnérabilité dans Google Chrome | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0855 | Vulnérabilité dans Aruba Networking AirWave Management Platform | 2023-10-18T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0854 | Multiples vulnérabilités dans Moodle | 2023-10-17T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0853 | Vulnérabilité dans Roundcube Webmail | 2023-10-17T00:00:00.000000 | 2023-10-18T00:00:00.000000 |
| certfr-2023-avi-0852 | Multiples vulnérabilités dans SonicWall SonicOS | 2023-10-17T00:00:00.000000 | 2023-10-17T00:00:00.000000 |
| certfr-2023-avi-0851 | Vulnérabilité dans Stormshield Management Center | 2023-10-16T00:00:00.000000 | 2023-10-16T00:00:00.000000 |
| certfr-2023-avi-0850 | Multiples vulnérabilités dans les produits Nextcloud | 2023-10-16T00:00:00.000000 | 2023-10-16T00:00:00.000000 |
| certfr-2023-avi-0849 | Multiples vulnérabilités dans AXIS OS | 2023-10-16T00:00:00.000000 | 2023-10-16T00:00:00.000000 |
| certfr-2023-avi-0848 | Multiples vulnérabilités dans Microsoft Edge | 2023-10-16T00:00:00.000000 | 2023-10-16T00:00:00.000000 |