Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-12187 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
GL.iNet GL-MT3000 Online Firmware Upgrade one_click_up… |
GL.iNet |
GL-MT3000 |
2026-06-14T22:00:09.360Z | 2026-06-14T22:00:09.360Z |
| CVE-2026-12186 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
GL.iNet GL-MT3000 Tor Proxy Service Configuration tor … |
GL.iNet |
GL-MT3000 |
2026-06-14T20:45:08.530Z | 2026-06-14T20:45:08.530Z |
| CVE-2026-54413 |
7.8 (4.0)
8.2 (3.1)
|
driftregion iso14229 through 0.9.0 contains an in… |
driftregion |
iso14229 |
2026-06-14T17:38:16.326Z | 2026-06-14T17:38:16.326Z |
| CVE-2026-54412 |
7.8 (4.0)
8.2 (3.1)
|
LiamBindle MQTT-C through version 1.1.6 contains … |
LiamBindle |
MQTT-C |
2026-06-14T17:26:36.740Z | 2026-06-14T17:27:35.016Z |
| CVE-2026-54411 |
6.9 (4.0)
5.9 (3.1)
|
Linux-PAM through 1.7.2 contains an observable ti… |
Linux-PAM |
Linux-PAM |
2026-06-14T17:21:43.853Z | 2026-06-14T17:21:43.853Z |
| CVE-2026-54410 |
7.8 (4.0)
8.6 (3.1)
|
nanoMODBUS through v1.23.0 contains an off-by-one… |
debevv |
nanoMODBUS |
2026-06-14T17:10:12.275Z | 2026-06-14T17:10:12.275Z |
| CVE-2026-11527 |
N/A
|
Config::IniFiles versions before 3.001000 for Perl all… |
SHLOMIF |
Config::IniFiles |
2026-06-14T11:40:45.634Z | 2026-06-14T11:40:45.634Z |
| CVE-2026-11526 |
N/A
|
GD versions before 2.86 for Perl allow OS command inje… |
RURBAN |
GD |
2026-06-14T11:39:21.122Z | 2026-06-14T11:39:21.122Z |
| CVE-2025-15546 |
N/A
|
Iptanus File Upload < 5.1.7 - File Overwrite via Race … |
Unknown |
Iptanus File Upload |
2026-06-14T06:00:03.776Z | 2026-06-14T06:00:03.776Z |
| CVE-2026-54421 |
6.8 (3.1)
|
In OpenStack Ironic through 35.0.1, when applying… |
OpenStack |
Ironic |
2026-06-14T03:49:37.996Z | 2026-06-14T03:49:37.996Z |
| CVE-2026-54420 |
8.5 (3.1)
|
LiteSpeed cPanel plugin before 2.4.8 (as distribu… |
LiteSpeed Technologies |
cPanel Plugin |
2026-06-14T03:23:12.863Z | 2026-06-14T03:23:12.863Z |
| CVE-2026-12176 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
SourceCodester CET Automated Grading System with AI Pr… |
SourceCodester |
CET Automated Grading System with AI Predictive Analytics |
2026-06-13T23:15:10.784Z | 2026-06-13T23:15:10.784Z |
| CVE-2026-12175 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
CodeAstro Student Attendance Management System createS… |
CodeAstro |
Student Attendance Management System |
2026-06-13T22:45:06.442Z | 2026-06-13T22:45:06.442Z |
| CVE-2026-12174 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
D-Link DCS-935L HTTP rhea snprintf format string |
D-Link |
DCS-935L |
2026-06-13T20:15:12.362Z | 2026-06-13T20:15:12.362Z |
| CVE-2026-12183 |
9.3 (4.0)
9.8 (3.1)
|
Nefteprodukttekhnika BUK TS-G Gas Station Automat… |
Nefteprodukttekhnika LLC |
BUK TS-G Gas Station Automation System |
2026-06-13T17:36:49.109Z | 2026-06-13T17:41:00.118Z |
| CVE-2026-6428 |
5.6 (4.0)
7.6 (3.1)
|
SQL Injection in reports/catalogue_out.pl in Koha… |
Koha Community |
Koha |
2026-06-13T16:34:10.326Z | 2026-06-13T16:35:56.718Z |
| CVE-2026-5513 |
7.2 (3.1)
|
Online Scheduling and Appointment Booking System – Boo… |
ladela |
Online Scheduling and Appointment Booking System – Bookly |
2026-06-13T11:25:24.786Z | 2026-06-13T11:25:24.786Z |
| CVE-2026-11624 |
9.4 (4.0)
|
The Model Context Protocol has a security warning… |
Google |
MCP Toolbox for Databases |
2026-06-13T08:38:42.908Z | 2026-06-13T08:38:42.908Z |
| CVE-2026-1291 |
4.3 (3.1)
|
Meow Gallery <= 5.4.4 - Missing Authorization to Authe… |
tigroumeow |
Meow Gallery |
2026-06-13T08:29:40.890Z | 2026-06-13T08:29:40.890Z |
| CVE-2026-9629 |
6.4 (3.1)
|
Canvas <= 2.5.2 - Authenticated (Contributor+) Stored … |
codesupplyco |
Canvas |
2026-06-13T07:51:22.473Z | 2026-06-13T07:51:22.473Z |
| CVE-2026-2470 |
4.3 (3.1)
|
Pagelayer <= 2.0.9 - Incorrect Authorization to Authen… |
softaculous |
Page Builder: Pagelayer – Drag and Drop website builder |
2026-06-13T07:51:22.099Z | 2026-06-13T07:51:22.099Z |
| CVE-2026-3297 |
6.4 (3.1)
|
Page Builder: Pagelayer – Drag and Drop website builde… |
softaculous |
Page Builder: Pagelayer – Drag and Drop website builder |
2026-06-13T07:51:21.555Z | 2026-06-13T07:51:21.555Z |
| CVE-2026-9134 |
6.4 (3.1)
|
Photo Gallery by FooGallery : Responsive Image Gallery… |
fooplugins |
Photo Gallery by FooGallery : Responsive Image Gallery, Masonry Gallery & Carousel |
2026-06-13T06:47:59.690Z | 2026-06-13T06:47:59.690Z |
| CVE-2026-9062 |
N/A
|
Agile Store Locator < 1.6.9 - Admin+ Arbitrary File Re… |
Unknown |
Store Locator WordPress |
2026-06-13T06:00:01.911Z | 2026-06-13T06:00:01.911Z |
| CVE-2026-9061 |
N/A
|
Agile Store Locator < 1.6.9 - Admin+ Stored XSS via lo… |
Unknown |
Store Locator WordPress |
2026-06-13T06:00:01.732Z | 2026-06-13T06:00:01.732Z |
| CVE-2026-9109 |
7.2 (3.1)
|
GPTranslate <= 2.31 - Unauthenticated Stored Cross-Sit… |
john-dagelmore |
GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites |
2026-06-13T05:32:37.292Z | 2026-06-13T05:32:37.292Z |
| CVE-2026-11769 |
6.4 (4.0)
|
Operator - Namespaced User Path Traversal |
Grafana |
Grafana Operator |
2026-06-13T04:17:41.099Z | 2026-06-13T04:17:41.099Z |
| CVE-2026-54231 |
5.5 (3.1)
|
Abrt: unsanitized systemd journal content written to d… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-06-13T02:34:37.428Z | 2026-06-13T02:34:37.428Z |
| CVE-2026-54230 |
7 (3.1)
|
Abrt: event handler scripts follow symlinks when writi… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-06-13T02:34:35.969Z | 2026-06-13T02:34:35.969Z |
| CVE-2026-54229 |
7 (3.1)
|
Abrt: chownproblemdir succeeds during active post-crea… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-06-13T02:34:31.110Z | 2026-06-13T02:34:31.110Z |