Vulnerability Database

12-Month Intensity

Security bulletin trends by severity

0 1000 2000 3000 4000 Apr 25 May 25 Jun 25 Jul 25 Aug 25 Sep 25 Oct 25 Nov 25 Dec 25 Jan Feb Mar

CVSSv4 Base Score Distribution

Vulnerabilities by severity score for the past 7 days

9.0-10 7.0-8.9 4.0-6.9 0.1-3.9 0 500 1000 1500 2000

Attack Vector

Breakdown by attack vectors for the past 7 days

Remote Adjecent Local Physical

Latest Vulnerability Database Updates

Security Bulletins

View All
SB2026042851
Medium

Multiple vulnerabilities in Thrift
Patched
1m ago
SB2026042850
High

Multiple vulnerabilities in Gradio
Patched
1m ago
SB2026042849
Medium

Absolute Path Traversal in Gradio
Patched
1m ago
SB2026042848
Medium

Multiple vulnerabilities in wger
Patched
27m ago
SB2026042847
High

Ubuntu update for jq
Patched Public exploit
30m ago
SB2026042846
Medium

Ubuntu update for vim
Patched
31m ago
SB2026042845
Low

Ubuntu update for authd
Patched
31m ago
SB2026042844
Low

SUSE update for ntfs-3g_ntfsprogs
Patched
46m ago
SB2026042843
Low

openEuler 24.03 LTS SP1 update for ntfs-3g
Patched
48m ago
SB2026042842
Low

openEuler 24.03 LTS SP3 update for ntfs-3g
Patched
48m ago

Zero-Days

View All
#VU126820

Missing Authentication for Critical Function in Oracle Identity Manager Connector
CVE-2026-21992
6d ago
#VU126208

Insufficient Granularity of Access Control in Windows Defender
CVE-2026-33825
1w ago
#VU126005

Input validation error in Microsoft SharePoint Server
CVE-2026-32201
1w ago
#VU125813

Prototype pollution in Adobe Acrobat
CVE-2026-34621
2w ago
#VU125748

Embedded malicious code (backdoor) in Smart Slider 3
CVE-ID: N/A
2w ago
#VU124861

Missing authorization in FortiClientEMS
CVE-2026-35616
3w ago
#VU124751

Use-after-free in Google Chrome
CVE-2026-5281
3w ago
#VU124720

Embedded malicious code (backdoor) in axios
CVE-ID: N/A
3w ago
#VU124719

Download of code without integrity check in TrueConf client for Windows
CVE-2026-3502
3w ago
#VU124689

Embedded malicious code (backdoor) in trivy
CVE-2026-33634
4w ago

Exploits

View All
#VU128254
Other

Exploit for Incorrect authorization in kimai2
kimai2
2h ago
#VU128155
CVE-2022-31062
Exploit-DB

Exploit for Path traversal in GLPI Inventory plugin
GLPI Inventory plugin
20h ago
#VU128056
Other

Exploit for Use of GET Request Method With Sensitive Query Strings in AVideo
AVideo
21h ago
#VU128087
Other

Exploit for Cross-site scripting in AVideo
AVideo
21h ago
#VU128118
Other

Exploit for Cross-site request forgery in AVideo
AVideo
21h ago
#VU128055
Other

Exploit for Stored cross-site scripting in AVideo
AVideo
21h ago
#VU128069
Other

Exploit for Cross-site scripting in AVideo
AVideo
21h ago
#VU128024
Other

Exploit for Information Exposure Through an Error Message in AVideo
AVideo
21h ago
#VU127962
CVE-2026-35453
Other

Exploit for Cross-site scripting in PhpSpreadsheet
PhpSpreadsheet
1d ago

Vendor Spotlight - Last 7 Days

Linux Foundation

265 bulletins

Oracle

166 bulletins

Red Hat Inc.

84 bulletins

IBM Corporation

65 bulletins

Microsoft

2 bulletins