🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-5205 | Medium | 6.3 |
A vulnerability was identified in chatwoot up to 4.11.2. Affected by this vulnerability is the function Webhooks::Trigge…
|
— | Mar 31, 2026 |
| CVE-2026-5197 | Medium | 6.3 |
A vulnerability was found in code-projects Student Membership System 1.0. The affected element is an unknown function of…
|
— | Mar 31, 2026 |
| CVE-2026-5196 | Medium | 6.3 |
A vulnerability has been found in code-projects Student Membership System 1.0. Impacted is an unknown function of the fi…
|
— | Mar 31, 2026 |
| CVE-2026-5177 | Medium | 6.3 |
A weakness has been identified in Totolink A3300R 17.0.0cu.557_b20221024. Affected by this vulnerability is the function…
|
— | Mar 31, 2026 |
| CVE-2026-5184 | Medium | 6.3 |
A vulnerability was identified in TRENDnet TEW-713RE up to 1.02. The impacted element is an unknown function of the file…
|
— | Mar 31, 2026 |
| CVE-2026-5183 | Medium | 6.3 |
A vulnerability was determined in TRENDnet TEW-713RE up to 1.02. The affected element is the function sub_421494 of the …
|
— | Mar 31, 2026 |
| CVE-2026-5181 | Medium | 6.3 |
A vulnerability has been found in SourceCodester Simple Doctors Appointment System up to 1.0. This issue affects some un…
|
— | Mar 31, 2026 |
| CVE-2026-5178 | Medium | 6.3 |
A security vulnerability has been detected in Totolink A3300R 17.0.0cu.557_b20221024. Affected by this issue is the func…
|
— | Mar 31, 2026 |
| CVE-2026-1877 | Medium | 6.1 |
The Auto Post Scheduler plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and incl…
|
— | Mar 31, 2026 |
| CVE-2026-34605 | Medium | 6.1 |
SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function i…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-34396 | Medium | 6.1 |
WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo admin panel renders plugin configur…
|
⚡ Exploit | Mar 31, 2026 |
| CVE-2026-30879 | Medium | 6.1 |
baserCMS is a website development framework. Prior to version 5.2.3, baserCMS has a cross-site scripting vulnerability i…
|
— | Mar 31, 2026 |
| CVE-2026-3191 | Medium | 5.4 |
The Minify HTML plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2…
|
— | Mar 31, 2026 |
| CVE-2026-34442 | Medium | 5.4 |
FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.211, host header…
|
⚡ Exploit ✅ Patch | Mar 31, 2026 |
| CVE-2026-33276 | Medium | 5.4 |
Stored cross-site scripting (XSS) in Checkmk 2.5.0 (beta) before 2.5.0b2 allows authenticated users with permission to c…
|
— | Mar 31, 2026 |
| CVE-2026-20915 | Medium | 5.4 |
Stored cross-site scripting (XSS) in Checkmk version 2.5.0 (beta) before 2.5.0b2 allows authenticated users with permiss…
|
— | Mar 31, 2026 |
| CVE-2026-5186 | Medium | 5.3 |
A weakness has been identified in Nothings stb up to 2.30. This impacts the function stbi__load_gif_main of the file stb…
|
— | Mar 31, 2026 |
| CVE-2026-5185 | Medium | 5.3 |
A security flaw has been discovered in Nothings stb_image up to 2.30. This affects the function stbi__gif_load_next of t…
|
— | Mar 31, 2026 |
| CVE-2026-5235 | Medium | 5.3 |
A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache o…
|
— | Mar 31, 2026 |
| CVE-2026-1797 | Medium | 5.3 |
The Appointment Booking and Scheduler Plugin – Truebooker plugin for WordPress is vulnerable to Sensitive Information Ex…
|
— | Mar 31, 2026 |