Zero Day Monitor
DashboardVulnerabilitiesTrendingZero-DaysNews
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
1885 articles · 106953 vulns · 38/55 feeds (7d)
106953
New CVEs
333
Critical
5
Pre-CVE
1491
CISA KEV
1885
Articles
38/55
Feeds

Vulnerabilities

10.0
Cisco · CVE-2026-20131 — Cisco Secure Firewall Management Center Software Remote Code Execution VulnerabilityKEVEXPLOITED
Cisco Secure Firewall Management Center (FMC)· CVSS 10.0· CWE-502
115🔥
7 articles
0
Mar 4, 2026
—
aquasecurity · CVE-2026-33634 — Trivy ecosystem supply chain briefly compromisedKEVEXPLOITED
setup-trivy· CWE-506
89
1 articles
0
Mar 23, 2026
10.0
cisco · CVE-2026-20127 — A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, rKEVEXPLOITED
catalyst_sd-wan_manager· CVSS 10.0· CWE-287
89
1 articles
0
Feb 25, 2026
9.8
langflow-ai · CVE-2026-33017 — Langflow has Unauthenticated Remote Code Execution via Public Flow Build EndpointKEVEXPLOITED
langflow· CVSS 9.8· CWE-94
87
1 articles
0
Mar 20, 2026
7.1
8theme · CVE-2026-25306 — WordPress XStore Core plugin <= 5.6.4 - Reflected Cross Site Scripting (XSS) vulnerabilityKEVEXPLOITED
XStore Core· CVSS 7.1· CWE-79
86
1 articles
0
Mar 25, 2026
7.8
microsoft · CVE-2026-21514 — Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally.KEVEXPLOITED
365_apps· CVSS 7.8· CWE-807
83
1 articles
0
Feb 10, 2026
7.8
microsoft · CVE-2026-21533 — Improper privilege management in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.KEVEXPLOITED
windows_10_1607· CVSS 7.8· CWE-269
83
1 articles
0
Feb 10, 2026
7.8
microsoft · CVE-2026-21519 — Access of resource using incompatible type ('type confusion') in Desktop Window Manager allows an authorized attacker to elevate privileges locally.KEVEXPLOITED
windows_10_1607· CVSS 7.8· CWE-843
83
1 articles
0
Feb 10, 2026
8.8
microsoft · CVE-2026-21513 — Protection mechanism failure in MSHTML Framework allows an unauthorized attacker to bypass a security feature over a network.KEVEXPLOITED
windows_10_1607· CVSS 8.8· CWE-693
83
1 articles
0
Feb 10, 2026
8.8
microsoft · CVE-2026-21510 — Protection mechanism failure in Windows Shell allows an unauthorized attacker to bypass a security feature over a network.KEVEXPLOITED
windows_10_1607· CVSS 8.8· CWE-693
83
1 articles
0
Feb 10, 2026
→ View full list

Urgent

7.1
8theme XStore Core
CVE-2026-25306
KEVtoday
19.7
n8n-io n8n
CVE-2026-33713
EXPtoday
9.1
Nelio Software Nelio AB Testing
CVE-2026-32573
EXPtoday
19.6
Premmerce Premmerce Redirect Manager
CVE-2026-32541
EXPtoday
9.3
PublishPress PublishPress Revisions
CVE-2026-32539
EXP
today
19.6
JoomSky JS Help Desk
CVE-2026-32535
EXPtoday
19.6
LatePoint LatePoint
CVE-2026-32533
EXPtoday
19.6
WPFunnels Creator LMS
CVE-2026-32530
EXPtoday
19.6
CRM Perks WP Insightly for Contact Form 7, WPForms, Elementor, Formidable and Ninja Forms
CVE-2026-32527
EXPtoday
9.9
jetmonsters JetFormBuilder
CVE-2026-32525
EXPtoday
→ View full list

Pre-CVE Events

View all
Multiple Vulnerabilities in GNU InetUtils
gnuCRITICAL1 sourcesreported
Node.js Security Advisory AV26-277
node.js foundation1 sourcesreported
SQL Injection in Shenzhen Ruiming Technology Streamax Crocus 1.3.44
shenzhen ruiming technologyCRITICAL1 sourcesreported
Multiple Vulnerabilities in OpenClaw
null1 sourcesreported
Multiple Vulnerabilities in ImageMagick
imagemagick studioMEDIUM1 sourcesreported

Latest news

[JPCERT/CC]Security Alert: Microsoft Releases January 2026 Security Upd...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[JPCERT/CC]Security Alert: Microsoft Releases February 2026 Security Up...
[JPCERT/CC]Security Alert: Microsoft Releases December 2025 Security Up...
[JPCERT/CC]Security Alert: Alert Regarding Vulnerabilities in Adobe Acr...
[Cisco Security]Cisco IOS XE Software Secure Channel for Meraki Information ...
2m ago
[Cisco Security]Cisco IOS XE Software TLS Memory Exhaustion Denial of Servic...
2m ago
[Cisco Security]Cisco IOS XE Software Denial of Service Vulnerability
2m ago

Pipeline

503
Queued
0
Analyzing
1885
Today