CVE Find - Vulnerabilities Database

CVE Find is a real-time vulnerability database indexing 344 824 security flaws (CVE) from MITRE, NVD, CISA KEV, CWE and CAPEC. 804 new CVEs were published in the last 7 days.

Data aggregated from: MITRE Corporation (CVE, CWE, CAPEC), National Vulnerability Database – NIST (NVD), CISA Known Exploited Vulnerabilities (KEV), FIRST (EPSS).

CVE Find
With CVE Find, explore the world's largest database of vulnerabilities.

344 824 vulnerabilities

Last update : 2026-04-21 10h46 +00:00
Common Vulnerabilities and Exposures (CVE), is a list of publicly disclosed computer security flaws.
View CVE 2025
0
Created 7 days ago
0
Updated 7 days ago
0
Created 30 days ago
0
Updated 30 days ago

Free CVE Email Notifications

Get free real-time alerts on new vulnerabilities with CVE Find.
Stay protected and informed instantly !

The last 10 High CVE

Total 344 824 CVE in Datadase
CVE ID Published Description Score Severity

CVE-2026-40478

2026-04-17
21h57 +00:00
Thymeleaf is a server-side Java template engine for web and standalone environments. Versions 3.1.3....
9.1
Critical

CVE-2026-40285

2026-04-17
21h16 +00:00
WeGIA is a web manager for charitable institutions. Versions prior to 3.6.10 contain a SQL injection...
SQL Injection
8.8
High

CVE-2026-40342

2026-04-17
20h16 +00:00
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 ...
Directory TraversalCode Injection
9.9
Critical

CVE-2026-40066

2026-04-17
20h16 +00:00
Anviz CX2 Lite and CX7 are vulnerable to unverified update packages that can be uploaded. The dev...
8.8
High

CVE-2026-35682

2026-04-17
20h16 +00:00
Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that e...
Command Injection
8.8
High

CVE-2026-32107

2026-04-17
20h16 +00:00
xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did n...
Improper Privilege Management
8.8
High

CVE-2026-35546

2026-04-17
19h39 +00:00
Anviz CX2 Lite and CX7 are vulnerable to unauthenticated firmware uploads. This causes crafted ar...
Authorization problems
9.8
Critical

CVE-2026-40525

2026-04-17
19h16 +00:00
OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot...
9.1
Critical

CVE-2026-28224

2026-04-17
19h16 +00:00
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 ...
Memory Corruption
8.2
High

CVE-2026-27890

2026-04-17
19h16 +00:00
Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 ...
Overflow
8.2
High

Distribution by CVSS scores


CVE created per quarter since 1999

Frequently asked questions about CVE Find

CVE Find is a cybersecurity vulnerability search engine that aggregates and indexes CVE (Common Vulnerabilities and Exposures), CWE, CAPEC and CPE data from MITRE, NVD and CISA. It allows you to search, filter and monitor security flaws via configurable real-time alerts.

A CVE (Common Vulnerability and Exposure) is a unique identifier assigned to a publicly disclosed computer security flaw. Each CVE is managed by MITRE Corporation and referenced in the NIST National Vulnerability Database (NVD) with a CVSS score evaluating its severity from 0 to 10.

CVSS (Common Vulnerability Scoring System) is an international standard that evaluates the severity of a vulnerability on a scale of 0 to 10. A score of 9 to 10 is rated Critical, 7 to 8.9 High, 4 to 6.9 Medium, and 0.1 to 3.9 Low.

CISA KEV (Known Exploited Vulnerabilities) is a catalog maintained by the US Cybersecurity Agency (CISA) listing CVE vulnerabilities actively exploited in real cyberattacks. US federal organizations are required to remediate them within a mandated deadline.

CVE Find offers a free alert system: create an account, then configure alerts by keyword, by vendor/product (CPE), by CWE category, by CVSS score or based on the CISA KEV list. Notifications are sent by email as soon as a new CVE matches your criteria.