| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-31430 | X.509: Fix out-of-bounds access when parsing extensions | Linux | Linux | - | - | 2026-04-20 09:43:04 | Deep Dive |
| CVE-2026-31429 | net: skb: fix cross-cache free of KFENCE-allocated skb head | Linux | Linux | - | - | 2026-04-20 09:43:03 | Deep Dive |
| CVE-2026-6625 | moxi624 Mogu Blog v2 Picture Storage Service LocalFileServiceImpl.java LocalFileServiceImpl.uploadPictureByUrl server-side request forgery | moxi624 | Mogu Blog v2 | High | 7.3 | 2026-04-20 09:30:17 | Deep Dive |
| CVE-2026-6624 | BichitroGan ISP Billing Software Pool List add cross site scripting | BichitroGan | ISP Billing Software | Low | 2.4 | 2026-04-20 09:15:18 | Deep Dive |
| CVE-2026-6623 | BichitroGan ISP Billing Software Profile users-view cross site scripting | BichitroGan | ISP Billing Software | Low | 2.4 | 2026-04-20 09:00:20 | Deep Dive |
| CVE-2025-13480 | Incorrect authorization in Fudo Enterprise | Fudo Security | Fudo Enterprise | - | - | 2026-04-20 09:00:16 | Deep Dive |
| CVE-2026-6622 | BichitroGan ISP Billing Software Customer edit cross site scripting | BichitroGan | ISP Billing Software | Low | 2.4 | 2026-04-20 08:45:21 | Deep Dive |
| CVE-2026-6621 | 1024bit extend-deep index.js prototype pollution | 1024bit | extend-deep | High | 7.3 | 2026-04-20 08:30:14 | Deep Dive |
| CVE-2026-6620 | SonicCloudOrg sonic-server File Upload Endpoint FileTool.java upload path traversal | SonicCloudOrg | sonic-server | Medium | 6.3 | 2026-04-20 08:15:18 | Deep Dive |
| CVE-2026-39454 | SKYSEA Client View 安全漏洞 | Sky Co.,LTD. | SKYSEA Client View | - | - | 2026-04-20 08:04:57 | Deep Dive |
| CVE-2026-6619 | langgenius dify ImagePreview image-preview.tsx openInNewTab cross site scripting | langgenius | dify | Low | 3.5 | 2026-04-20 08:00:17 | Deep Dive |
| CVE-2026-6618 | langgenius dify ApiBasedToolSchemaParser parser.py parse_openai_plugin_json_to_tool_bundle server-side request forgery | langgenius | dify | Medium | 6.3 | 2026-04-20 07:45:17 | Deep Dive |
| CVE-2026-5967 | TeamT5|ThreatSonar Anti-Ransomware - Privilege Escalation | TeamT5 | ThreatSonar Anti-Ransomware | High | 8.8 | 2026-04-20 07:44:20 | Deep Dive |
| CVE-2026-5966 | TeamT5|ThreatSonar Anti-Ransomware - Arbitrary File Deletion | TeamT5 | ThreatSonar Anti-Ransomware | High | 8.1 | 2026-04-20 07:40:33 | Deep Dive |
| CVE-2026-5964 | Digiwin|EasyFlow .NET - SQL Injection | Digiwin | EasyFlow .NET | Critical | 9.8 | 2026-04-20 07:36:58 | Deep Dive |
| CVE-2026-5963 | Digiwin|EasyFlow .NET - SQL Injection | Digiwin | EasyFlow .NET | Critical | 9.8 | 2026-04-20 07:32:20 | Deep Dive |
| CVE-2026-6617 | langgenius dify ApiToolManageService api_tools_manage_service.py get_api_tool_provider_remote_schema server-side request forgery | langgenius | dify | Medium | 6.3 | 2026-04-20 07:30:12 | Deep Dive |
| CVE-2026-6616 | TransformerOptimus SuperAGI WebScraperTool webpage_extractor.py extract_with_lxml server-side request forgery | TransformerOptimus | SuperAGI | Medium | 6.3 | 2026-04-20 07:15:12 | Deep Dive |
| CVE-2026-41282 | Nuclei 安全漏洞 | ProjectDiscovery | Nuclei | Medium | 4.0 | 2026-04-20 07:10:30 | Deep Dive |
| CVE-2026-6615 | TransformerOptimus SuperAGI Multipart Upload resources.py upload path traversal | TransformerOptimus | SuperAGI | High | 7.3 | 2026-04-20 07:00:16 | Deep Dive |