🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-34396 | Medium | 6.1 |
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo admin panel renders plugin configur…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-30879 | Medium | 6.1 |
baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has a cross-site scripting vulnerability i…
|
— | Mar 31, 2026 |
| CVE-2026-3191 | Medium | 5.4 |
The Minify HTML plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2…
|
— | Mar 31, 2026 |
| CVE-2026-34442 | Medium | 5.4 |
FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.211, host header…
|
⚡ Exploit ✅ Patch | Mar 31, 2026 |
| CVE-2026-33276 | Medium | 5.4 |
Stored cross-site scripting (XSS) in Checkmk 2.5.0 (beta) before 2.5.0b2 allows authenticated users with permission to c…
|
— | Mar 31, 2026 |
| CVE-2026-20915 | Medium | 5.4 |
Stored cross-site scripting (XSS) in Checkmk version 2.5.0 (beta) before 2.5.0b2 allows authenticated users with permiss…
|
— | Mar 31, 2026 |
| CVE-2026-5236 | Medium | 5.3 |
A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_BitReader::SkipBits of …
|
— | Mar 31, 2026 |
| CVE-2026-5235 | Medium | 5.3 |
A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache o…
|
— | Mar 31, 2026 |
| CVE-2026-5186 | Medium | 5.3 |
A weakness has been identified in Nothings stb up to 2.30. This impacts the function stbi__load_gif_main of the file stb…
|
— | Mar 31, 2026 |
| CVE-2026-5185 | Medium | 5.3 |
A security flaw has been discovered in Nothings stb_image up to 2.30. This affects the function stbi__gif_load_next of t…
|
— | Mar 31, 2026 |
| CVE-2026-1797 | Medium | 5.3 |
The Appointment Booking and Scheduler Plugin – Truebooker plugin for WordPress is vulnerable to Sensitive Information Ex…
|
— | Mar 31, 2026 |
| CVE-2026-3055 | Critical | 9.8 |
Citrix NetScaler — CVE-2026-3055
Citrix NetScaler ADC (formerly Citrix ADC), NetScaler Gateway (formerly Citrix Gateway)…
|
— | Mar 30, 2026 |
| CVE-2026-34714 | Critical | 9.2 |
Vim before 9.2.0272 allows code execution that happens immediately upon opening a crafted file in the default configurat…
|
✅ Patch | Mar 30, 2026 |
| CVE-2026-5130 | High | 8.8 |
The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up…
|
— | Mar 30, 2026 |
| CVE-2026-5155 | High | 8.8 |
A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function fromAdvSetWan of the file /goform/AdvSetWan o…
|
⚡ Exploit | Mar 30, 2026 |
| CVE-2026-5152 | High | 8.8 |
A vulnerability was detected in Tenda CH22 1.0.0.1. Impacted is the function formCreateFileName of the file /goform/crea…
|
⚡ Exploit | Mar 30, 2026 |
| CVE-2026-5154 | High | 8.8 |
A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /…
|
— | Mar 30, 2026 |
| CVE-2026-2370 | High | 8.1 |
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1…
|
✅ Patch | Mar 30, 2026 |
| CVE-2026-4415 | High | 8.1 |
Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is ena…
|
— | Mar 30, 2026 |
| CVE-2026-4416 | High | 7.8 |
The Performance Library component of Gigabyte Control Center has an Insecure Deserialization vulnerability. Authenticate…
|
— | Mar 30, 2026 |