Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 4 April 2026
RSS18 vulnerabilities published on 4 April 2026
Severity:
Fortinet FortiClientEMS allows unauthorized code execution via crafted requests
CVE-2026-35616
Fortinet's FortiClientEMS versions 7.4.5 and 7.4.6 have a security weakness that lets hackers run unauthorized code or commands without needing a login. This could allow them to access or modify sensi...
9.8
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, SubprocessSandbox in all modes (BASIC, STRICT, NETWORK_ISOLATED) calls subprocess.run() with shell=True and relies solely on string...
GHSA-r4f2-3m54-pp7q
CVE-2026-34955
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, SubprocessSandbox in all modes (BASIC, STRICT, NETWORK_ISOLATED) calls subprocess.run() with shell=True and relies solely on string-pa...
8.8
Electron apps: Video frame transfer via contextBridge can give attackers control
GHSA-jfqg-hf23-qpw2
CVE-2026-34780
Electron apps that share video data between browser and Node.js environments are at risk of being compromised by an attacker who can inject malicious code. To fix, avoid sharing video frames directly ...
8.3
Pie Register Plugin Allows Unauthenticated Access to Registration Settings
CVE-2026-3571
An unpatched plugin for WordPress allows anyone to change registration settings without permission. This means that anyone can modify how users register, even if they don't have permission to do so. U...
6.5
CGA-x3jx-7xjp-vpm8
CGA-x3jx-7xjp-vpm8
CGA-x3jx-7xjp-vpm8
CGA-pc6g-f7g9-qmgw
CGA-pc6g-f7g9-qmgw
CGA-pc6g-f7g9-qmgw
CGA-r8j8-xfm5-2jxw
CGA-r8j8-xfm5-2jxw
CGA-r8j8-xfm5-2jxw
CGA-gj88-qj5p-j3qr
CGA-gj88-qj5p-j3qr
CGA-gj88-qj5p-j3qr
CGA-hjrq-x5p4-76xf
CGA-hjrq-x5p4-76xf
CGA-hjrq-x5p4-76xf
CGA-x7fc-8m86-jx94
CGA-x7fc-8m86-jx94
CGA-x7fc-8m86-jx94
CGA-jcqr-x7xr-ch3m
CGA-jcqr-x7xr-ch3m
CGA-jcqr-x7xr-ch3m