| high |
CVE-2026-31019 — In the Website module of Dolibarr ERP & CRM 22.0.4 and below, the application uses blacklist-based f… |
vulnerability |
nvd |
CVE-2026-31019 |
rce |
2026-04-21 |
| high |
CVE-2026-31018 — In Dolibarr ERP & CRM <= 22.0.4, PHP code detection and editing permission enforcement in the Websit… |
vulnerability |
nvd |
CVE-2026-31018 |
|
2026-04-21 |
| medium |
CVE-2026-31014 — Dovestones Softwares AD Self Update <4.0.0.5 is vulnerable to Cross Site Request Forgery (CSRF). The… |
vulnerability |
nvd |
CVE-2026-31014 |
|
2026-04-21 |
| medium |
CVE-2026-31013 — Dovestones Softwares ADPhonebook <4.0.1.1 has a reflected cross-site scripting (XSS) vulnerability i… |
vulnerability |
nvd |
CVE-2026-31013 |
|
2026-04-21 |
| medium |
CVE-2026-1089 — User‑Controlled HTTP Header in Fortra's GoAnywhere MFT prior to version 7.10.0 allows attackers to t… |
vulnerability |
nvd |
CVE-2026-1089 |
|
2026-04-21 |
| medium |
CVE-2026-0972 — HTML injection is possible in system generated emails in Fortra's GoAnywhere MFT prior to 7.10.0. No… |
vulnerability |
nvd |
CVE-2026-0972 |
|
2026-04-21 |
| medium |
CVE-2026-0971 — An improper session timeout issue in Fortra's GoAnywhere MFT prior to version 7.10.0 results in SAML… |
vulnerability |
nvd |
CVE-2026-0971 |
|
2026-04-21 |
| medium |
CVE-2025-31981 — HCL BigFix Service Management (SM) Discovery is vulnerable to unenforced encryption due to port 80 (… |
vulnerability |
nvd |
CVE-2025-31981 |
|
2026-04-21 |
| low |
CVE-2025-31958 — HCL BigFix Service Management is susceptible to HTTP Request Smuggling. HTTP request smuggling vulne… |
vulnerability |
nvd |
CVE-2025-31958 |
|
2026-04-21 |
| medium |
CVE-2025-1241 — Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to v… |
vulnerability |
nvd |
CVE-2025-1241 |
|
2026-04-21 |
| high |
CVE-2025-14362 — The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if th… |
vulnerability |
nvd |
CVE-2025-14362 |
|
2026-04-21 |
| unknown |
CVE-2025-10354 — Cross-Site Scripting (XSS) vulnerability reflected in Semantic MediaWiki. This vulnerability allows… |
vulnerability |
nvd |
CVE-2025-10354 |
|
2026-04-21 |
| critical |
Google Fixes Critical RCE Flaw in AI-Based 'Antigravity' Tool |
news |
general-news |
|
rce |
2026-04-21 |
| critical |
Ransomware Negotiator Pleads Guilty to Aiding BlackCat Attacks in 2023 |
news |
general-news |
|
ransomware |
2026-04-21 |
| critical |
The Gentlemen Ransomware Expands With Rapid Affiliate Growth |
news |
general-news |
|
ransomware |
2026-04-21 |
| unknown |
CVE-2026-40372 ASP.NET Core Elevation of Privilege Vulnerability |
advisory |
vendor-blogs |
|
|
2026-04-21 |
| unknown |
CVE-2026-26168 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability |
advisory |
vendor-blogs |
|
|
2026-04-21 |
| unknown |
CVE-2026-32223 Windows USB Printing Stack (usbprint.sys) Elevation of Privilege Vulnerability |
advisory |
vendor-blogs |
|
|
2026-04-21 |
| high |
CVE-2026-6784 — Memory safety bugs present in Firefox 149 and Thunderbird 149. Some of these bugs showed evidence of… |
vulnerability |
nvd |
CVE-2026-6784 |
|
2026-04-21 |
| medium |
CVE-2026-6783 — Incorrect boundary conditions, integer overflow in the Audio/Video: Playback component. This vulnera… |
vulnerability |
nvd |
CVE-2026-6783 |
ransomware |
2026-04-21 |
| high |
CVE-2026-6782 — Information disclosure in the IP Protection component. This vulnerability was fixed in Firefox 150 a… |
vulnerability |
nvd |
CVE-2026-6782 |
|
2026-04-21 |
| high |
CVE-2026-6780 — Denial-of-service in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 15… |
vulnerability |
nvd |
CVE-2026-6780, CVE-2026-6781 |
ransomware |
2026-04-21 |
| medium |
CVE-2026-6779 — Other issue in the JavaScript Engine component. This vulnerability was fixed in Firefox 150 and Thun… |
vulnerability |
nvd |
CVE-2026-6779 |
|
2026-04-21 |
| medium |
CVE-2026-6778 — Invalid pointer in the Audio/Video: Playback component. This vulnerability was fixed in Firefox 150… |
vulnerability |
nvd |
CVE-2026-6778 |
ransomware |
2026-04-21 |
| medium |
CVE-2026-6777 — Other issue in the Networking: DNS component. This vulnerability was fixed in Firefox 150 and Thunde… |
vulnerability |
nvd |
CVE-2026-6777 |
|
2026-04-21 |
| high |
CVE-2026-6776 — Incorrect boundary conditions in the WebRTC: Networking component. This vulnerability was fixed in F… |
vulnerability |
nvd |
CVE-2026-6776 |
|
2026-04-21 |
| medium |
CVE-2026-6775 — Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150 a… |
vulnerability |
nvd |
CVE-2026-6775 |
|
2026-04-21 |
| medium |
CVE-2026-6774 — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150 and Th… |
vulnerability |
nvd |
CVE-2026-6774 |
|
2026-04-21 |
| high |
CVE-2026-6773 — Denial-of-service due to integer overflow in the Graphics: WebGPU component. This vulnerability was… |
vulnerability |
nvd |
CVE-2026-6773 |
|
2026-04-21 |
| critical |
CVE-2026-6771 — Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 150, Firef… |
vulnerability |
nvd |
CVE-2026-6771 |
|
2026-04-21 |
| medium |
CVE-2026-6770 — Other issue in the Storage: IndexedDB component. This vulnerability was fixed in Firefox 150, Firefo… |
vulnerability |
nvd |
CVE-2026-6770 |
|
2026-04-21 |
| high |
CVE-2026-6769 — Privilege escalation in the Debugger component. This vulnerability was fixed in Firefox 150, Firefox… |
vulnerability |
nvd |
CVE-2026-6769 |
|
2026-04-21 |
| medium |
CVE-2026-6767 — Other issue in the Libraries component in NSS. This vulnerability was fixed in Firefox 150, Firefox… |
vulnerability |
nvd |
CVE-2026-6767 |
|
2026-04-21 |
| high |
CVE-2026-6766 — Incorrect boundary conditions in the Libraries component in NSS. This vulnerability was fixed in Fir… |
vulnerability |
nvd |
CVE-2026-6766, CVE-2026-6772 |
|
2026-04-21 |
| medium |
CVE-2026-6765 — Information disclosure in the Form Autofill component. This vulnerability was fixed in Firefox 150,… |
vulnerability |
nvd |
CVE-2026-6765 |
|
2026-04-21 |
| medium |
CVE-2026-6764 — Incorrect boundary conditions in the DOM: Device Interfaces component. This vulnerability was fixed… |
vulnerability |
nvd |
CVE-2026-6764 |
|
2026-04-21 |
| medium |
CVE-2026-6763 — Mitigation bypass in the File Handling component. This vulnerability was fixed in Firefox 150, Firef… |
vulnerability |
nvd |
CVE-2026-6763 |
|
2026-04-21 |
| medium |
CVE-2026-6762 — Spoofing issue in the DOM: Core & HTML component. This vulnerability was fixed in Firefox 150, Firef… |
vulnerability |
nvd |
CVE-2026-6762 |
|
2026-04-21 |
| high |
CVE-2026-6761 — Privilege escalation in the Networking component. This vulnerability was fixed in Firefox 150, Firef… |
vulnerability |
nvd |
CVE-2026-6761 |
|
2026-04-21 |
| critical |
CVE-2026-6760 — Mitigation bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 150… |
vulnerability |
nvd |
CVE-2026-6760, CVE-2026-6768 |
|
2026-04-21 |
| high |
CVE-2026-6759 — Use-after-free in the Widget: Cocoa component. This vulnerability was fixed in Firefox 150, Firefox… |
vulnerability |
nvd |
CVE-2026-6759 |
|
2026-04-21 |
| high |
CVE-2026-6758 — Use-after-free in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 150… |
vulnerability |
nvd |
CVE-2026-6758 |
|
2026-04-21 |
| medium |
CVE-2026-6757 — Invalid pointer in the JavaScript: WebAssembly component. This vulnerability was fixed in Firefox 15… |
vulnerability |
nvd |
CVE-2026-6757 |
|
2026-04-21 |
| high |
CVE-2026-6756 — Mitigation bypass in Firefox for Android. This vulnerability was fixed in Firefox 150. |
vulnerability |
nvd |
CVE-2026-6756 |
|
2026-04-21 |
| medium |
CVE-2026-6755 — Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and… |
vulnerability |
nvd |
CVE-2026-6755 |
|
2026-04-21 |
| high |
CVE-2026-6754 — Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 150, Fire… |
vulnerability |
nvd |
CVE-2026-6754 |
|
2026-04-21 |
| high |
CVE-2026-6752 — Incorrect boundary conditions in the WebRTC component. This vulnerability was fixed in Firefox 150,… |
vulnerability |
nvd |
CVE-2026-6752, CVE-2026-6753 |
|
2026-04-21 |
| high |
CVE-2026-6750 — Privilege escalation in the Graphics: WebRender component. This vulnerability was fixed in Firefox 1… |
vulnerability |
nvd |
CVE-2026-6750 |
|
2026-04-21 |
| high |
CVE-2026-6749 — Information disclosure due to uninitialized memory in the Graphics: Canvas2D component. This vulnera… |
vulnerability |
nvd |
CVE-2026-6749 |
|
2026-04-21 |
| critical |
CVE-2026-6748 — Uninitialized memory in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firef… |
vulnerability |
nvd |
CVE-2026-6748, CVE-2026-6751 |
|
2026-04-21 |