Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| GCVE-1-2026-0034 |
5.1 (4.0)
|
CSP Report Endpoint Log Flooding via Incorrect Size Limit |
misp |
misp |
2026-05-20T18:15:00.000Z | 2026-05-20T18:42:33.806971Z |
| GCVE-1-2026-0035 |
8.3 (4.0)
|
Unauthorized ShadowAttribute modification in MISP via … |
misp |
misp |
2026-05-20T18:34:00.000Z | 2026-05-20T18:41:09.250167Z |
| GCVE-1-2026-0033 |
6 (4.0)
|
MISP OIDC authentication bypass via automatic email-ba… |
misp |
misp |
2026-05-20T14:22:00.000Z | 2026-05-20T15:11:36.782113Z |
| GCVE-1-2026-0032 |
6.8 (4.0)
|
MISP core - Stored XSS in MISP template (old engine) e… |
misp |
misp |
2026-05-07T12:09:04.093898Z | 2026-05-07T12:09:04.093898Z |
| GCVE-1-2026-0026 |
9.3 (4.0)
|
misp-modules website - Missing CSRF protection in the … |
misp |
misp-modules |
2026-04-29T09:24:00.000Z | 2026-05-06T16:04:44.788582Z |
| GCVE-1-2026-0027 |
5.8 (4.0)
|
Unsafe remote resource fetching in expansion misp-modules |
misp |
misp-modules |
2026-04-29T12:05:00.000Z | 2026-05-06T16:03:40.556833Z |
| GCVE-1-2026-0029 |
6.3 (4.0)
|
Improper UUID validation in MISP Collections |
misp |
misp |
2026-04-29T20:03:00.000Z | 2026-05-06T16:01:52.283022Z |
| GCVE-1-2026-0030 |
9.3 (4.0)
|
MISP - Improper access control in auth key reset allow… |
misp |
misp |
2026-04-29T20:10:00.000Z | 2026-05-06T16:01:17.334511Z |
| GCVE-1-2026-0031 |
9.4 (4.0)
|
MISP - SQL injection via unvalidated ordering paramete… |
misp |
misp |
2026-04-29T20:14:00.000Z | 2026-05-06T16:00:13.755114Z |
| GCVE-1-2026-0028 |
9.3 (4.0)
|
LookyLoo - PlaywrightCapture permits access to local f… |
LookyLoo |
PlaywrightCapture |
2026-04-29T19:28:00.000Z | 2026-04-29T19:28:44.316023Z |
| GCVE-1-2026-0025 |
6.9 (4.0)
|
RansomLook - Improper Filtering of Private Location En… |
ransomlook |
ransomlook |
2026-04-12T15:22:00.000Z | 2026-04-15T20:29:51.794609Z |
| GCVE-1-2026-0024 |
8.8 (4.0)
|
LDAP injection in MISP ApacheAuthenticate when using a… |
misp |
misp |
2026-04-08T08:28:00.000Z | 2026-04-09T04:44:04.936665Z |
| GCVE-1-2026-0023 |
8.5 (4.0)
|
Stored XSS in modal item preview for long item content… |
ail-project |
ail-framework |
2026-04-07T06:29:00.000Z | 2026-04-08T04:22:15.084342Z |
| GCVE-1-2026-0022 |
6.4 (4.0)
|
MISP - Beta Overmind UI Stored Cross-Site Scripting in… |
misp |
misp |
2026-03-30T09:48:36.968649Z | 2026-03-30T09:48:36.968649Z |
| GCVE-1-2026-0021 |
10 (4.0)
|
Critical RCE Vulnerability reported in Windchill |
windchill |
FlexPLM |
2026-03-23T12:30:40.249187Z | 2026-03-23T12:30:40.249187Z |
| GCVE-1-2026-0020 |
10 (4.0)
|
Remote Code Execution Attack Against Eircom D1000 Router |
Eir |
D1000 |
2026-03-11T14:12:00.000Z | 2026-03-11T14:23:24.609831Z |
| GCVE-1-2026-0019 |
6.4 (4.0)
|
Improper URL validation in MISP dashboard button widge… |
misp |
misp |
2026-02-27T14:55:00.000Z | 2026-02-27T15:44:29.998063Z |
| GCVE-1-2026-0018 |
6.5 (4.0)
|
Improper access control in MISP user contact form allo… |
misp |
misp |
2026-02-27T13:25:32.632362Z | 2026-02-27T13:25:32.632362Z |
| GCVE-1-2026-0017 |
7.2 (4.0)
|
Improper Neutralization of Raw HTML in MISP modules Ma… |
misp |
misp-modules |
2026-02-27T13:10:24.641948Z | 2026-02-27T13:10:24.641948Z |
| GCVE-1-2026-0016 |
7 (4.0)
|
Server-Side Request Forgery via Event Report Import Fr… |
misp |
misp |
2026-02-27T10:56:32.745676Z | 2026-02-27T10:56:32.745676Z |
| GCVE-1-2026-0015 |
7.2 (4.0)
|
Threat actors use FortiCloud SSO bypass to collect LDA… |
fortinet |
fortios |
2026-02-09T09:09:00.000Z | 2026-02-09T09:14:59.004089Z |
| GCVE-1-2026-0013 |
2.1 (4.0)
|
Flask Application Username Route Collision Allows Rese… |
vulnerability-lookup |
vulnerability-lookup |
2026-02-04T19:27:00.000Z | 2026-02-04T19:32:49.787763Z |
| GCVE-1-2026-0014 |
7.4 (4.0)
|
Missing Authorization Check Allows Unauthorized Modifi… |
vulnerability-lookup |
vulnerability-lookup |
2026-02-04T19:32:14.341383Z | 2026-02-04T19:32:14.341383Z |
| GCVE-1-2026-0012 |
2.1 (4.0)
|
Authentication Error Message Allows Email Address Enum… |
vulnerability-lookup |
vulnerability-lookup |
2026-02-04T19:21:34.411344Z | 2026-02-04T19:21:34.411344Z |
| GCVE-1-2026-0011 |
8.7 (4.0)
|
Out-of-bounds memory write in the network packet … |
EA Games |
Command & Conquer: Generals |
2026-01-29T14:37:00.000Z | 2026-01-29T14:39:17.728822Z |
| GCVE-1-2026-0010 |
9.3 (4.0)
|
Improper input validation in the file transfer ha… |
EA Games |
Command & Conquer: Generals |
2026-01-29T14:33:18.822829Z | 2026-01-29T14:33:18.822829Z |
| GCVE-1-2026-0009 |
9.3 (4.0)
|
Stack-based buffer overflow in the multiplayer ne… |
EA Games |
Command & Conquer: Generals |
2026-01-29T14:30:38.596928Z | 2026-01-29T14:30:38.596928Z |
| GCVE-1-2026-0008 |
10 (4.0)
|
gpg-agent stack buffer overflow in pkdecrypt using KEM |
gnupg |
gpg-agent |
2026-01-28T13:48:12.350509Z | 2026-01-28T13:48:12.350509Z |
| GCVE-1-2026-0007 |
10 (4.0)
|
GNU InetUtils Security Advisory: remote authentication… |
gnu |
InetUtils |
2026-01-20T20:57:00.000Z | 2026-01-26T16:32:40.831364Z |
| GCVE-1-2026-0004 |
8.5 (4.0)
|
Authorization Bypass in Cerebrate IndividualsControlle… |
cerebrate |
cerebrate |
2026-01-13T15:28:00.000Z | 2026-01-13T15:38:37.744618Z |