Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026042958
Low

Cross-site request forgery in ChurchCRM
Not patched Public exploit
4m ago
SB2026042957
Low

AWS SDK for PHP update for Moodle
Patched
6m ago
SB2026042956
Low

PHPUnit update for Moodle
Patched
8m ago
SB2026042955
Medium

Multiple vulnerabilities in curl
Patched
28m ago
SB2026042954
Medium

SUSE update for sqlite3
Patched
44m ago
SB2026042953
Medium

SUSE update for sqlite3
Patched
44m ago
SB2026042952
Medium

Infinite loop in Red Hat OpenShift Container Platform 4.19
Patched
45m ago
SB2026042951
Medium

openEuler 24.03 LTS SP2 update for sqlite
Patched
46m ago
SB2026042950
Medium

Platform Navigator and Automation Assets in IBM Cloud Pak for Integration update for minimatch
Patched
46m ago
SB2026042949
Medium

openEuler 24.03 LTS SP3 update for sqlite
Patched
46m ago

Zero-Days

View All
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
1w ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1w ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
2w ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
2w ago
#VU125748

Embedded malicious code (backdoor) in Smart Slider 3
CVE-ID: N/A
2w ago
#VU124861

Missing authorization in FortiClientEMS
CVE-2026-35616
3w ago
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
3w ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
4w ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
4w ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
4w ago

Exploits

View All
#VU128461
CVE-2026-42289
Other

Exploit for Cross-site request forgery in ChurchCRM
ChurchCRM
4m ago
#VU128302
Other

Exploit for Cross-site request forgery in AVideo
AVideo
21h ago
#VU128346
Other

Exploit for Server-Side Request Forgery (SSRF) in AVideo
AVideo
21h ago
#VU128318
Other

Exploit for Information disclosure in AVideo
AVideo
21h ago
#VU128355
Other

Exploit for Missing Authentication for Critical Function in AVideo
AVideo
21h ago
#VU128274
Other

Exploit for Authorization bypass through user-controlled key in AVideo
AVideo
21h ago
#VU128358
Other

Exploit for CRLF injection in AVideo
AVideo
21h ago
#VU128351
Other

Exploit for Improper Verification of Source of a Communication Channel in AVideo
AVideo
21h ago
#VU128349
CVE-2026-23622
Other

Exploit for Cross-site request forgery in Easy!Appointments
Easy!Appointments
22h ago

Vendor Spotlight - Last 7 Days

Linux Foundation

264 bulletins

Oracle

164 bulletins

Red Hat Inc.

88 bulletins

IBM Corporation

63 bulletins

Apache Foundation

6 bulletins