| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-41254 | Little CMS 安全漏洞 | littlecms | little cms color engine | Medium | 4.0 | 2026-04-18 06:43:14 | Deep Dive |
| CVE-2026-20136 | Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 6.0 | 2026-04-15 16:11:29 | Deep Dive |
| CVE-2026-20180 | Cisco Identity Services Engine Multiple Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Critical | 9.9 | 2026-04-15 16:03:51 | Deep Dive |
| CVE-2026-20186 | Cisco Identity Services Engine Multiple Authenticated Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Critical | 9.9 | 2026-04-15 16:03:35 | Deep Dive |
| CVE-2026-20148 | Cisco Identity Services Engine Path Traversal Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 4.9 | 2026-04-15 16:03:32 | Deep Dive |
| CVE-2026-20147 | Cisco Identity Services Engine Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Critical | 9.9 | 2026-04-15 16:03:26 | Deep Dive |
| CVE-2026-20132 | Cisco Identity Services Engine Multiple Cross-Site Scripting Vulnerabilities | Cisco | Cisco Identity Services Engine Software | Medium | 4.8 | 2026-04-15 16:03:15 | Deep Dive |
| CVE-2026-39506 | WordPress AI Engine (Pro) plugin < 3.4.2 - Broken Access Control vulnerability | Jordy Meow | AI Engine (Pro) | - | - | 2026-04-08 08:30:14 | Deep Dive |
| CVE-2026-4740 | Rhacm: open cluster management (ocm): cross-cluster privilege escalation via improper kubernetes client certificate renewal validation | Red Hat | Multicluster Engine for Kubernetes | High | 8.2 | 2026-04-07 14:30:36 | Deep Dive |
| CVE-2026-2437 | WP Travel Engine - Travel and Tour Booking Plugin <= 6.7.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via wte_trip_tax Shortcode | wptravelengine | WP Travel Engine – Tour Booking Plugin – Tour Operator Software | Medium | 6.4 | 2026-04-04 08:25:19 | Deep Dive |
| CVE-2026-32524 | WordPress Photo Engine plugin <= 6.4.9 - Arbitrary File Upload vulnerability | Jordy Meow | Photo Engine | 中危 | - | 2026-03-25 16:15:08 | Deep Dive |
| CVE-2016-20036 | Wowza Streaming Engine 4.5.0 Multiple Cross-Site Scripting Vulnerabilities | Wowza Media Systems, LLC. | Wowza Streaming Engine | Medium | 6.1 | 2026-03-15 18:34:24 | Deep Dive |
| CVE-2016-20035 | Wowza Streaming Engine 4.5.0 CSRF via user edit endpoint | Wowza Media Systems, LLC. | Wowza Streaming Engine | Medium | 5.3 | 2026-03-15 18:34:23 | Deep Dive |
| CVE-2016-20034 | Wowza Streaming Engine 4.5.0 Privilege Escalation via user edit | Wowza Media Systems, LLC. | Wowza Streaming Engine | High | 8.8 | 2026-03-15 18:34:22 | Deep Dive |
| CVE-2016-20033 | Wowza Streaming Engine 4.5.0 Local Privilege Escalation via nssm_x64.exe | Wowza Media Systems, LLC. | Wowza Streaming Engine | High | 7.8 | 2026-03-15 18:34:21 | Deep Dive |
| CVE-2025-12690 | Local Privilege Escalation in NGFW Engine | Forcepoint | NGFW Engine | - | - | 2026-03-11 15:36:33 | Deep Dive |
| CVE-2026-23802 | WordPress AI Engine plugin <= 3.3.2 - Arbitrary File Upload vulnerability | Jordy Meow | AI Engine | 中危 | - | 2026-03-05 05:53:49 | Deep Dive |
| CVE-2026-20068 | Multiple Cisco Products Snort 3 TBD Denial of Service Vulnerability | Cisco | Cisco Cyber Vision | Medium | 5.8 | 2026-03-04 17:49:11 | Deep Dive |
| CVE-2026-20067 | Multiple Cisco Products Snort 3 TBD Denial of Service Vulnerability | Cisco | Cisco Cyber Vision | Medium | 5.8 | 2026-03-04 17:49:03 | Deep Dive |
| CVE-2026-20066 | Multiple Cisco Products Snort 3 TBD Denial of Service Vulnerability | Cisco | Cisco Secure Firewall Threat Defense (FTD) Software | Medium | 5.8 | 2026-03-04 17:49:01 | Deep Dive |