Welcome to the VULNDBASE (demo version 0.0.7)

CVE ID Exploitable Vendor Product Vulnerability Date added
CVE-2026-39808 True Fortinet FortiSandbox Fortinet FortiSandbox OS Command Injection Vulnerability 2026-07-16 00:00:00
CVE-2026-25089 True Fortinet FortiSandbox Fortinet FortiSandbox OS Command Injection Vulnerability 2026-07-16 00:00:00
CVE-2026-58644 True Microsoft SharePoint Microsoft SharePoint Deserialization of Untrusted Data Vulnerability 2026-07-16 00:00:00
CVE-2023-4346 True KNX Association KNX Protocol Connection Authorization Option 1 KNX Association KNX Protocol Connection Authorization Option 1 Overly Restrictive Account Lockout Mechanism Vulnerability 2026-07-15 00:00:00
CVE-2026-46817 True Oracle E-Business Suite Oracle E-Business Suite Improper Privilege Management Vulnerability 2026-07-15 00:00:00
CVE-2026-15410 True SonicWall SMA1000 Appliances SonicWall SMA1000 Appliances Code Injection Vulnerability 2026-07-14 00:00:00
CVE-2026-15409 True SonicWall SMA1000 Appliances SonicWall SMA1000 Appliances Server-Side Request Forgery Vulnerability 2026-07-14 00:00:00
CVE-2026-56164 True Microsoft SharePoint Server Microsoft SharePoint Server Missing Authentication for Critical Function Vulnerability 2026-07-14 00:00:00
CVE-2026-56155 True Microsoft Active Directory Federation Services Microsoft Active Directory Federation Services Insufficient Granularity of Access Control Vulnerability 2026-07-14 00:00:00
CVE-2008-4128 True Cisco IOS Cisco IOS Cross-Site Request Forgery Vulnerability 2026-07-13 00:00:00
CVE-2026-48939 True iCagenda iCagenda iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability 2026-07-10 00:00:00
CVE-2026-56291 True Balbooa Forms Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability 2026-07-10 00:00:00
CVE-2026-48282 True Adobe ColdFusion Adobe ColdFusion Path Traversal Vulnerability 2026-07-07 00:00:00
CVE-2026-56290 True Joomlack Page Builder Joomlack Page Builder Improper Access Control Vulnerability 2026-07-07 00:00:00
CVE-2026-55255 True Langflow Langflow Langflow Authorization Bypass Through User-Controlled Key Vulnerability 2026-07-07 00:00:00
CVE-2026-48908 True JoomShaper SP Page Builder JoomShaper SP Page Builder Unrestricted Upload of File with Dangerous Type Vulnerability 2026-07-07 00:00:00
CVE-2026-45659 True Microsoft SharePoint Server Microsoft SharePoint Server Deserialization of Untrusted Data Vulnerability 2026-07-01 00:00:00
CVE-2026-48558 True SimpleHelp SimpleHelp SimpleHelp Authentication Bypass Vulnerability 2026-06-29 00:00:00
CVE-2026-20230 True Cisco Unified Communications Manager Cisco Unified Communications Manager Server-Side Request Forgery (SSRF) Vulnerability 2026-06-25 00:00:00
CVE-2026-12569 True PTC Windchill and FlexPLM PTC Windchill and FlexPLM Improper Input Validation Vulnerability 2026-06-25 00:00:00

AVET INS is an owner of VULNDBASE brand and website. This product uses data from the NVD API but is not endorsed or certified by the NVD. See NVD page for more information. CVE is a registered trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE site. CWE is a registered trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE page. KEV (Known Exploited Vulnerabilities) is a catalog maintained by CISA. EUVD is the official EU repository for timely, curated cybersecurity vulnerability intelligence and remediation guidance run by ENISA. DORA (Digital Operational Resilience Act) is and EU directive.

Copyright AVET INS 1997 - 2026