Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026042743
High

Multiple vulnerabilities in Foxit PDF Reader and PDF Editor for Windows
Patched
12m ago
SB2026042742
Medium

Improper Neutralization of Formula Elements in a CSV File in kimai2
Patched
18m ago
SB2026042741
Medium

Resource exhaustion in go-ethereum
Patched
26m ago
SB2026042740
Medium

Multiple vulnerabilities in go-ethereum
Patched
26m ago
SB2026042739
Low

Multiple vulnerabilities in PhpSpreadsheet
Patched Public exploit
37m ago
SB2026042738
Medium

Multiple vulnerabilities in NocoDB
Patched
38m ago
SB2026042737
Medium

Multiple vulnerabilities in NocoDB
Patched
38m ago
SB2026042736
High

Multiple vulnerabilities in jspdf
Patched
49m ago
SB2026042735
High

Multiple vulnerabilities in jspdf
Patched
49m ago
SB2026042734
High

Multiple vulnerabilities in jspdf
Patched
49m ago

Zero-Days

View All
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
5d ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1w ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1w ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
2w ago
#VU125748

Embedded malicious code (backdoor) in Smart Slider 3
CVE-ID: N/A
2w ago
#VU124861

Missing authorization in FortiClientEMS
CVE-2026-35616
3w ago
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
3w ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
3w ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
3w ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
3w ago

Exploits

View All
#VU127962
CVE-2026-35453
Other

Exploit for Cross-site scripting in PhpSpreadsheet
PhpSpreadsheet
38m ago
#VU127972
CVE-2026-40296
Other

Exploit for Stored cross-site scripting in PhpSpreadsheet
PhpSpreadsheet
38m ago
#VU127961
CVE-2026-42194
Other

Exploit for Server-Side Request Forgery (SSRF) in Admidio
Admidio
1h ago
#VU127960
Other

Exploit for Integer overflow in jq
jq
1h ago
#VU127959
CVE-2026-40300
Other

Exploit for Improper access control in Zulip Server
Zulip Server
2h ago
#VU127512
CVE-2026-23887
Other

Exploit for Stored cross-site scripting in Group Office
Group Office
2d ago
#VU127527
CVE-2026-25511
Other

Exploit for Server-Side Request Forgery (SSRF) in Group Office
Group Office
2d ago
#VU127550
CVE-2026-30237
Other

Exploit for Cross-site scripting in Group Office
Group Office
2d ago
#VU127583
CVE-2026-30238
Other

Exploit for Cross-site scripting in Group Office
Group Office
2d ago

Vendor Spotlight - Last 7 Days

Linux Foundation

259 bulletins

Oracle

166 bulletins

Red Hat Inc.

99 bulletins

IBM Corporation

66 bulletins

Google

5 bulletins