Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-38945 |
N/A
|
Command injection in Raynet rvia version 12.6.439… |
n/a |
n/a |
2026-05-27T00:00:00.000Z | 2026-05-27T16:25:51.787Z |
| CVE-2015-4000 |
3.7 (3.1)
|
The TLS protocol 1.2 and earlier, when a DHE_EXPO… |
n/a |
n/a |
2015-05-21T00:00:00.000Z | 2026-05-27T16:22:20.395Z |
| CVE-2025-70116 |
N/A
|
A NULL pointer dereference in GPAC MP4Box: when p… |
n/a |
n/a |
2026-05-27T00:00:00.000Z | 2026-05-27T16:20:53.118Z |
| CVE-2015-6564 |
7 (3.1)
|
Use-after-free vulnerability in the mm_answer_pam… |
n/a |
n/a |
2015-08-24T00:00:00.000Z | 2026-05-27T16:18:06.617Z |
| CVE-2026-1248 |
4.3 (3.1)
|
IBM Business Automation Workflow information leak |
IBM |
Business Automation Workflow containers and traditional |
2026-05-27T14:20:18.979Z | 2026-05-27T16:18:03.459Z |
| CVE-2026-49103 |
9.4 (4.0)
|
Webmin before 2.640 does not safely construct a f… |
Webmin |
Webmin |
2026-05-27T14:37:18.786Z | 2026-05-27T16:14:12.073Z |
| CVE-2026-47119 |
5.3 (4.0)
6.1 (3.1)
|
Agent Zero < 1.15 Stored XSS via image_get API Endpoint |
3clyp50 |
agent-zero |
2026-05-27T14:26:46.948Z | 2026-05-27T16:13:49.786Z |
| CVE-2026-38931 |
N/A
|
A stored cross-site scripting (XSS) vulnerability… |
n/a |
n/a |
2026-05-27T00:00:00.000Z | 2026-05-27T16:13:47.792Z |
| CVE-2015-6563 |
6.4 (3.1)
|
The monitor component in sshd in OpenSSH before 7… |
n/a |
n/a |
2015-08-24T00:00:00.000Z | 2026-05-27T16:11:52.468Z |
| CVE-2025-58074 |
8.8 (3.1)
|
A privilege escalation vulnerability exists durin… |
Gen Digital |
Norton Secure VPN |
2026-05-04T13:11:08.628Z | 2026-05-27T16:11:02.699Z |
| CVE-2018-25343 |
5.3 (4.0)
4.3 (3.1)
|
Smartshop 1 Cross-Site Request Forgery via editprofile.php |
Behance |
Smartshop |
2026-05-23T18:30:45.936Z | 2026-05-27T16:10:36.062Z |
| CVE-2018-25349 |
5.1 (4.0)
6.1 (3.1)
|
userSpice 4.3.24 Cross-Site Scripting via X-Forwarded-… |
UserSpice |
userSpice |
2026-05-23T18:30:50.474Z | 2026-05-27T16:10:22.223Z |
| CVE-2018-25355 |
8.6 (4.0)
8.4 (3.1)
|
Audiograbber 1.83 Local Buffer Overflow via SEH |
Audiograbber |
Audiograbber |
2026-05-23T18:30:54.959Z | 2026-05-27T16:10:08.216Z |
| CVE-2018-25361 |
7 (4.0)
6.8 (3.1)
|
Soroush IM Desktop App 0.17.0 Authentication Bypass vi… |
Soroush |
Soroush IM Desktop App |
2026-05-25T14:15:08.685Z | 2026-05-27T16:09:54.014Z |
| CVE-2018-25367 |
6.9 (4.0)
6.2 (3.1)
|
NASA openVSP 3.16.1 Denial of Service via Buffer Overflow |
NASA |
openVSP |
2026-05-25T14:15:13.261Z | 2026-05-27T16:09:40.605Z |
| CVE-2026-38930 |
N/A
|
OpenRapid RapidCMS v1.3.1 was discovered to conta… |
n/a |
n/a |
2026-05-27T00:00:00.000Z | 2026-05-27T16:09:29.996Z |
| CVE-2018-25373 |
8.6 (4.0)
8.4 (3.1)
|
DVD Photo Slideshow Professional 8.07 Buffer Overflow SEH |
SocuSoft |
DVD Photo Slideshow Professional |
2026-05-25T14:15:17.927Z | 2026-05-27T16:09:27.196Z |
| CVE-2026-44971 |
8.2 (3.1)
|
GuardDog: Blind GitHub URL rewrite in remote project s… |
DataDog |
guarddog |
2026-05-27T14:43:18.643Z | 2026-05-27T16:09:24.880Z |
| CVE-2018-25379 |
8.8 (4.0)
8.2 (3.1)
|
Collectric CMU 1.0 SQL Injection via lang Parameter |
Ourenergy |
Collectric CMU |
2026-05-25T14:15:22.166Z | 2026-05-27T16:09:13.242Z |
| CVE-2026-41917 |
6.9 (4.0)
4.9 (3.1)
|
OpenKM 6.3.12 Local File Inclusion via Admin Scripting |
Openkm |
OpenKM Community Edition |
2026-05-26T14:08:49.680Z | 2026-05-27T16:08:59.835Z |
| CVE-2026-44831 |
4.8 (3.1)
|
Snipe-IT: XSS vulnerability in component notes |
grokability |
snipe-it |
2026-05-26T19:27:16.856Z | 2026-05-27T16:08:45.980Z |
| CVE-2026-44667 |
8.7 (3.1)
|
Faction: Stored XSS in Remediation Verification Attach… |
factionsecurity |
faction |
2026-05-26T17:42:39.244Z | 2026-05-27T16:07:42.965Z |
| CVE-2026-49044 |
6.5 (3.1)
|
WordPress Advanced Custom Fields: Font Awesome Field p… |
Justin Kruit |
Advanced Custom Fields: Font Awesome Field |
2026-05-27T14:46:17.551Z | 2026-05-27T16:07:03.872Z |
| CVE-2015-0192 |
9.8 (3.1)
|
Unspecified vulnerability in IBM Java 8 before SR… |
n/a |
n/a |
2015-07-02T21:16:00.000Z | 2026-05-27T16:05:34.880Z |
| CVE-2026-49052 |
4.3 (3.1)
|
WordPress ElementsKit Elementor addons Lite plugin <= … |
Wpmet |
ElementsKit Elementor addons Lite |
2026-05-27T14:55:55.994Z | 2026-05-27T16:05:26.059Z |
| CVE-2026-46620 |
6.5 (3.1)
|
e107: CSRF in comment.php moderation endpoints via tok… |
e107inc |
e107 |
2026-05-26T15:04:32.092Z | 2026-05-27T16:04:41.864Z |
| CVE-2026-45571 |
5.4 (3.1)
|
go-git: Crafted repositories may modify main and submo… |
go-git |
go-git |
2026-05-27T14:57:32.843Z | 2026-05-27T16:03:30.942Z |
| CVE-2026-48962 |
7.3 (3.1)
|
IO::Compress versions before 2.220 for Perl can execut… |
PMQS |
IO::Compress |
2026-05-27T03:12:38.974Z | 2026-05-27T16:02:15.210Z |
| CVE-2026-42081 |
6.1 (3.1)
|
free5GC: UE Security Capability bypass on NGAP PathSwi… |
free5gc |
free5gc |
2026-05-27T15:59:58.216Z | 2026-05-27T15:59:58.216Z |
| CVE-2026-42082 |
3.7 (3.1)
|
free5GC: Missing Concurrent NAS SMC Validation During … |
free5gc |
free5gc |
2026-05-27T15:59:21.228Z | 2026-05-27T15:59:21.228Z |