Zero Day Monitor
Dashboard
Vulnerabilities
Trending
Zero-Days
News
Login
107243
New CVEs
322
Critical
9
Pre-CVE
1491
CISA KEV
2303
Articles
35/40
Feeds
Vulnerabilities
Trending
Newest
Urgent
—
aquasecurity ·
CVE-2026-33634 —
Trivy ecosystem supply chain briefly compromised
KEV
EXPLOITED
setup-trivy
· CWE-506
124
🔥
3 articles
0
Mar 23, 2026
10.0
oracle ·
CVE-2026-21962 —
Vulnerability in the Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in product of Oracle Fusion Middleware (component: Weblogic Server Proxy Plug-in for Apache HTTP Server, Weblogic Server Prox
KEV
EXPLOITED
http_server
· CVSS 10.0
· CWE-284
100
2 articles
0
Jan 20, 2026
10.0
cis ·
CVE-2026-20131 —
Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability
KEV
EXPLOITED
secure_firewall_management_center
· CVSS 10.0
· CWE-502
98
8 articles
0
Mar 4, 2026
9.8
langflow-ai ·
CVE-2026-33017 —
Langflow has Unauthenticated Remote Code Execution via Public Flow Build Endpoint
KEV
EXPLOITED
langflow
· CVSS 9.8
· CWE-94
89
3 articles
0
Mar 20, 2026
10.0
cis ·
CVE-2026-20127 —
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, r
KEV
EXPLOITED
catalyst_sd-wan_manager
· CVSS 10.0
· CWE-287
87
1 articles
0
Feb 25, 2026
—
GDTaller ·
CVE-2025-41027 —
Multiple vulnerabilities in GDTaller
EXPLOITED
GDTaller
· CWE-79
87
32 articles
0
Mar 26, 2026
—
GDTaller ·
CVE-2025-41026 —
Multiple vulnerabilities in GDTaller
EXPLOITED
GDTaller
· CWE-79
86
16 articles
0
Mar 26, 2026
7.1
8theme ·
CVE-2026-25306 —
WordPress XStore Core plugin <= 5.6.4 - Reflected Cross Site Scripting (XSS) vulnerability
KEV
EXPLOITED
XStore Core
· CVSS 7.1
· CWE-79
85
1 articles
0
Mar 25, 2026
8.8
microsoft ·
CVE-2026-21510 —
Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.
KEV
EXPLOITED
windows_10_1607
· CVSS 8.8
· CWE-693
81
1 articles
0
Feb 10, 2026
7.8
microsoft ·
CVE-2026-21533 —
Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
KEV
EXPLOITED
windows_10_1607
· CVSS 7.8
· CWE-269
81
1 articles
0
Feb 10, 2026
→ View full list
Urgent
31.0
langflow-ai langflow
CVE-2026-33017
KEV
6d ago
29.5
cis secure_firewall_management_center
CVE-2026-20131
KEV
22d ago
24.0
8theme XStore Core
CVE-2026-25306
KEV
1d ago
23.7
ISC Kea
CVE-2026-3608
EXP
1d ago
23.1
harttle liquidjs
CVE-2026-33287
EXP
1d ago
23.0
GNU Inetutils
CVE-2026-24061
KEV
64d ago
22.8
GDTaller GDTaller
CVE-2025-41027
EXP
today
22.7
GDTaller GDTaller
CVE-2025-41026
EXP
today
22.6
PublishPress PublishPress Revisions
CVE-2026-32539
EXP
1d ago
22.6
edge-themes pelicula
CVE-2026-32512
EXP
1d ago
View full list
Pre-CVE Events
View all
Multiples vulnérabilités dans Cisco IOS et IOS XE (26 mars 2026)
1 sources
reported
BPFdoor Linux Backdoor
1 sources
reported
New Whitepaper: Exploiting Cellular-based IoT Devices
1 sources
reported
[NEU] [mittel] FreeBSD Project FreeBSD OS: Mehrere Schwachstellen
1 sources
reported
[NEU] [mittel] Znuny: Mehrere Schwachstellen
n8n
HIGH
1 sources
reported
Latest news
[JPCERT/CC]
Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]
Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]
Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]
Security Alert: Microsoft Releases March 2026 Security Updat...
[oss-security]
Re: Multiple vulnerabilities in AppArmor
18m ago
[Cisco Talos]
TP-Link, Canva, HikVision vulnerabilities
22m ago
Pipeline
0
Queued
0
Analyzing
641
Today
