Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 25 March 2026
RSS112 vulnerabilities published on 25 March 2026
Severity:
Hitachi Analytics Probe Allows Malicious Scripts to Run in Web Browser
CVE-2026-2072
An attacker can inject malicious code into the Hitachi Infrastructure Analytics Advisor's web interface, potentially allowing them to steal sensitive information or take control of a user's session. T...
8.2
Simple Laundry System 1.0 SQL Injection Risk: Unauthorized Data Access
CVE-2026-4784
The Simple Laundry System 1.0 software has a security issue that lets attackers access data they shouldn't. This is a problem because sensitive information could be stolen or modified. To protect your...
6.9
Easy Image Gallery for WordPress: Malicious Code Injection in Galleries
CVE-2026-4766
The Easy Image Gallery plugin for WordPress allows attackers to inject malicious code into galleries, which can be executed when users view those galleries. This can lead to unauthorized actions or da...
6.4
itsourcecode College Management System: SQL Injection via Course Code
CVE-2026-4783
A weakness in the College Management System's handling of course codes allows an attacker to inject malicious SQL code, potentially exposing sensitive data or disrupting the system. This issue affects...
5.3
SourceCodester Sales and Inventory System 1.0 SQL Injection Vulnerability
CVE-2026-4781
The SourceCodester Sales and Inventory System 1.0 has a security flaw that allows an attacker to potentially inject malicious SQL code. This could allow an attacker to access sensitive information or ...
5.3
SourceCodester Sales and Inventory System 1.0: SQL Injection Risk via GET Request
CVE-2026-4780
If an attacker knows the URL structure, they can inject malicious code into your database. This could let them access sensitive information or even take control of your system. Update your system to t...
5.3
Hitachi Ops Center Administrator allows attackers to redirect users
CVE-2026-1166
Hitachi Ops Center Administrator versions before 11.0.8 have a security issue that could allow an attacker to trick users into visiting a different website. This could be used to steal sensitive infor...
4.3
CGA-24pc-qh57-rv75
CGA-24pc-qh57-rv75
CGA-24pc-qh57-rv75
CGA-w98x-3v9v-cp74
CGA-w98x-3v9v-cp74
CGA-w98x-3v9v-cp74
CGA-7gm3-8gfq-33f9
CGA-7gm3-8gfq-33f9
CGA-7gm3-8gfq-33f9
CGA-phf7-w5jg-gh42
CGA-phf7-w5jg-gh42
CGA-phf7-w5jg-gh42
CGA-jwmv-8x4w-7p4x
CGA-jwmv-8x4w-7p4x
CGA-jwmv-8x4w-7p4x
CGA-6p82-p5j2-744w
CGA-6p82-p5j2-744w
CGA-6p82-p5j2-744w
CGA-457j-wv38-43g8
CGA-457j-wv38-43g8
CGA-457j-wv38-43g8
iOS and iPadOS Devices with Stolen Device Protection: Passcode Bypass Risk
CVE-2026-28895
If an attacker has access to your iPhone or iPad with biometric security enabled, they may be able to bypass the lock screen and access sensitive apps if Stolen Device Protection is turned on. This is...
iOS, iPadOS, macOS: Malicious Input Can Crash Devices
CVE-2026-28894
Certain iOS, iPadOS, and macOS versions have a security fix that prevents a malicious attacker from crashing your device by sending it bad input. This could cause your device to shut down or become un...
macOS Tahoe: Temporary files left behind during print preview
CVE-2026-28893
A previous version of macOS Tahoe was writing temporary files to disk when you used print preview, potentially exposing sensitive information. This has been fixed in the latest update. Update to macOS...
macOS: Unsecured App Can Modify Protected Files
CVE-2026-28892
A vulnerability in macOS allows an app to potentially make unauthorized changes to important system files. This could lead to data loss or system instability. Update to macOS Sequoia 15.7.5, macOS Son...