Vulnerabilities database (CVE, CAPEC, CWE, Exploit-db)

3.7 CVE-2025-40745
A vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter...

2026-04-14T09:16:34.683

7.3 CVE-2026-24032
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3 with UMC). The affected...

2026-04-14T09:16:34.900

8.8 CVE-2026-25654
A vulnerability has been identified in SINEC NMS (All versions < V4.0 SP3). Affected products do...

2026-04-14T09:16:35.150

8.8 CVE-2026-27668
A vulnerability has been identified in RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) (All...

2026-04-14T09:16:35.480

CVE-2026-31908
Header injection vulnerability in Apache APISIX. The attacker can take advantage of certain configuration...

2026-04-14T09:16:35.650

7.5 CVE-2026-31923
Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. This can occur due...

2026-04-14T19:16:34.560

5.3 CVE-2026-31924
Cleartext Transmission of Sensitive Information vulnerability in Apache APISIX. tencent-cloud-cls log...

2026-04-14T20:16:38.340

7.1 CVE-2026-33892
A vulnerability has been identified in Industrial Edge Management Pro V1 (All versions >= V1.7.6...

2026-04-14T09:16:36.097

4.3 CVE-2026-33929
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache...

2026-04-14T20:16:47.240

4.3 CVE-2026-4109
The Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) plugin for...

2026-04-14T09:16:36.460

CVE-2025-13822
MCPHub in versions below 0.11.0 is vulnerable to authentication bypass. Some endpoints are not...

2026-04-14T11:16:24.300

5.4 CVE-2026-24069
Kiuwan SAST improperly authorizes SSO logins for locally disabled mapped user accounts, allowing disabled...

2026-04-14T19:16:33.553

7.4 CVE-2026-2332
In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used,...

2026-04-14T12:16:21.333

CVE-2026-2449
Improper neutralization of argument delimiters in a command ('argument injection') vulnerability in...

2026-04-14T12:16:21.590

CVE-2026-2450
.NET misconfiguration: use of impersonation vulnerability in upKeeper Solutions upKeeper Instant Privilege...

2026-04-14T13:16:22.333

CVE-2025-7389
A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its authenticated...

2026-04-14T14:16:10.263

CVE-2025-8095
The OECH1 prefix encoding is intended to obfuscate values across the OpenEdge platform. It has...

2026-04-14T14:16:11.237

CVE-2026-31049
An issue in Hostbill v.2025-11-24 and 2025-12-01 allows a remote attacker to execute arbitrary code...

2026-04-14T14:16:13.130

CVE-2025-61260
A vulnerability was identified in OpenAI Codex CLI v0.23.0 and before that enables code execution through...

2026-04-14T15:16:24.487

CVE-2025-69893
A side-channel vulnerability exists in the implementation of BIP-39 mnemonic processing, as observed...

2026-04-14T15:16:25.357

6.1 CVE-2025-69993
Leaflet versions up to and including 1.9.4 are vulnerable to Cross-Site Scripting (XSS) via the bindPopup()...

2026-04-14T18:16:41.530