Recent vulnerabilities
Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-41847 |
4.8 (3.1)
|
Spring Framework Security Filter Bypass in WebFlux Kot… |
Spring |
Spring Framework |
2026-06-09T03:51:03.298Z | 2026-06-09T03:51:03.298Z |
| CVE-2026-41846 |
5.9 (3.1)
|
Spring Framework Cross-site Scripting via JSP Form Tags |
Spring |
Spring Framework |
2026-06-09T03:50:56.840Z | 2026-06-09T03:50:56.840Z |
| CVE-2026-41845 |
7.1 (3.1)
|
Spring Framework Cross-site Scripting via JavaScriptUtils |
Spring |
Spring Framework |
2026-06-09T03:50:48.454Z | 2026-06-09T03:50:48.454Z |
| CVE-2026-41844 |
4.2 (3.1)
|
Spring Framework Open Redirect in Spring MVC and WebFlux |
Spring |
Spring Framework |
2026-06-09T03:50:39.340Z | 2026-06-09T03:50:39.340Z |
| CVE-2026-41843 |
5.9 (3.1)
|
Spring Framework Path Traversal via Versioned Static R… |
Spring |
Spring Framework |
2026-06-09T03:50:34.480Z | 2026-06-09T03:50:34.480Z |
| CVE-2026-41842 |
7.5 (3.1)
|
Spring Framework Denial of Service via Versioned Resou… |
Spring |
Spring Framework |
2026-06-09T03:50:29.899Z | 2026-06-09T03:50:29.899Z |
| CVE-2026-41979 |
5.5 (3.1)
|
Permission control vulnerability in the print mod… |
Huawei |
HarmonyOS |
2026-06-09T03:50:25.589Z | 2026-06-09T03:50:25.589Z |
| CVE-2026-41841 |
5.9 (3.1)
|
Spring Framework Information Disclosure via Static Res… |
Spring |
Spring Framework |
2026-06-09T03:50:20.843Z | 2026-06-09T03:50:20.843Z |
| CVE-2026-41840 |
5.9 (3.1)
|
Spring Framework Denial of Service via Multipart Reque… |
Spring |
Spring Framework |
2026-06-09T03:50:15.174Z | 2026-06-09T03:50:15.174Z |
| CVE-2026-41839 |
4.2 (3.1)
|
Spring Framework Escalation via Session Fixation in WebFlux |
Spring |
Spring Framework |
2026-06-09T03:49:52.381Z | 2026-06-09T03:49:52.381Z |
| CVE-2026-41838 |
4.8 (3.1)
|
Spring Framework Predictable Session ID in WebSocket Module |
Spring |
Spring Framework |
2026-06-09T03:49:15.933Z | 2026-06-09T03:49:15.933Z |
| CVE-2026-41720 |
7.4 (3.1)
|
Authentication Bypass with Empty Password in Spring LDAP |
Spring |
Spring LDAP |
2026-06-09T03:48:56.229Z | 2026-06-09T03:48:56.229Z |
| CVE-2026-41978 |
4.4 (3.1)
|
Permission control vulnerability in the clone mod… |
Huawei |
HarmonyOS |
2026-06-09T03:48:55.966Z | 2026-06-09T03:48:55.966Z |
| CVE-2026-41715 |
6.1 (3.1)
|
Reactor Netty HTTP Client Leaks Credentials On Protoco… |
Spring |
Reactor Netty |
2026-06-09T03:48:41.439Z | 2026-06-09T03:48:41.439Z |
| CVE-2026-41710 |
5.9 (3.1)
|
Cache Exhaustion in Stateful Retries leads to Denial o… |
Spring |
Spring Retry |
2026-06-09T03:48:15.972Z | 2026-06-09T03:48:15.972Z |
| CVE-2026-40984 |
7.5 (3.1)
|
Micrometer HTTP server instrumentations DoS vulnerability |
Spring |
Micrometer |
2026-06-09T03:47:46.447Z | 2026-06-09T03:47:46.447Z |
| CVE-2026-41975 |
6.3 (3.1)
|
Permission management vulnerability in the networ… |
Huawei |
HarmonyOS |
2026-06-09T03:47:10.167Z | 2026-06-09T03:47:10.167Z |
| CVE-2026-40983 |
7.5 (3.1)
|
Micrometer gRPC server instrumentation DoS vulnerability |
Spring |
Micrometer |
2026-06-09T03:46:54.131Z | 2026-06-09T03:46:54.131Z |
| CVE-2026-8895 |
6.4 (3.1)
|
kk blog card <= 1.3 - Authenticated (Contributor+) Sto… |
kenz60 |
kk blog card |
2026-06-09T03:41:24.370Z | 2026-06-09T03:41:24.370Z |
| CVE-2026-11603 |
6.1 (3.1)
|
Product Filter Widget for Elementor <= 1.0.6 - Reflect… |
brthumar1959 |
Product Filter Widget for Elementor |
2026-06-09T03:41:23.979Z | 2026-06-09T03:41:23.979Z |
| CVE-2026-8904 |
4.3 (3.1)
|
FastPicker, an order picker and order management syste… |
yuluma |
FastPicker, an order picker and order management system (oms) for WooCommerce on steroids |
2026-06-09T03:41:23.635Z | 2026-06-09T03:41:23.635Z |
| CVE-2026-10553 |
4.3 (3.1)
|
jQuery Hover Footnotes <= 1.4 - Cross-Site Request For… |
weaverlancegmailcom |
jQuery Hover Footnotes |
2026-06-09T03:41:23.259Z | 2026-06-09T03:41:23.259Z |
| CVE-2026-8910 |
6.1 (3.1)
|
WP Emoticon Rating <= 1.0.1 - Cross-Site Request Forge… |
rahulbhangale |
WP Emoticon Rating |
2026-06-09T03:41:22.889Z | 2026-06-09T03:41:22.889Z |
| CVE-2026-10738 |
6.4 (3.1)
|
jQuery Hover Footnotes <= 1.4 - Authenticated (Author+… |
weaverlancegmailcom |
jQuery Hover Footnotes |
2026-06-09T03:41:22.446Z | 2026-06-09T03:41:22.446Z |
| CVE-2026-8882 |
6.4 (3.1)
|
WP ApplicantStack Jobs Display <= 1.1.1 - Authenticate… |
jdm-labs |
WP ApplicantStack Jobs Display |
2026-06-09T03:41:22.057Z | 2026-06-09T03:41:22.057Z |
| CVE-2026-8977 |
6.4 (3.1)
|
WP GDPR Cookie Consent <= 1.0.0 - Authenticated (Subsc… |
techjewel |
WP GDPR Cookie Consent |
2026-06-09T03:41:21.669Z | 2026-06-09T03:41:21.669Z |
| CVE-2026-7662 |
6.4 (3.1)
|
ePaperFlip Publisher <= 1 - Authenticated (Contributor… |
joshin85 |
Plugin Name: ePaperFlip Publisher |
2026-06-09T03:41:21.306Z | 2026-06-09T03:41:21.306Z |
| CVE-2026-8902 |
4.3 (3.1)
|
AJAX Report Comments <= 2.0.4 - Cross-Site Request For… |
tierrainnovation |
AJAX Report Comments |
2026-06-09T03:41:20.899Z | 2026-06-09T03:41:20.899Z |
| CVE-2026-9185 |
7.5 (3.1)
|
6Storage Rentals <= 2.22.0 - Unauthenticated Insecure … |
sixstorage |
6Storage Rentals |
2026-06-09T03:41:20.509Z | 2026-06-09T03:41:20.509Z |
| CVE-2026-8909 |
4.3 (3.1)
|
WpMobi <= 0.0.3 - Cross-Site Request Forgery via save_… |
rahulbhangale |
WpMobi |
2026-06-09T03:41:20.112Z | 2026-06-09T03:41:20.112Z |