Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
CVE

EU Regulatory Changes

262 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
CVE 18 May 2026 nvd
CVE-2018-25332 (CVSS 9.8) — GitBucket 4.23.1 contains an unauthenticated remote code execution vulnerability that all...
CVE 18 May 2026 nvd
CVE-2018-25335 (CVSS 9.8) — WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that a...
CVE 17 May 2026 nvd
CVE-2020-37228 (CVSS 9.8) — iDS6 DSSPro Digital Signage System 6.2 contains a CAPTCHA security bypass vulnerability t...
A critical vulnerability, CVE-2020-37228, has been published with a CVSS score of 9.8, indicating a severe security flaw in the iDS6 DSSPro Digital Signage System version 6.2. The issue allows an a...
Read analysis →
CVE 17 May 2026 nvd
CVE-2020-37239 (CVSS 9.8) — libbabl 0.1.62 contains a broken double free detection vulnerability that allows attacker...
A critical vulnerability has been published under CVE-2020-37239, affecting libbabl version 0.1.62, a library used in image processing and graphics software. The flaw carries a CVSS score of 9.8, i...
Read analysis →
CVE 17 May 2026 nvd
CVE-2021-47952 (CVSS 9.8) — python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attack...
A critical vulnerability has been published in the Python library jsonpickle, version 2.0.0, identified as CVE-2021-47952 with a CVSS score of 9.8. This flaw allows remote attackers to execute arbi...
Read analysis →
CVE 16 May 2026 nvd
CVE-2021-47965 (CVSS 9.8) — WordPress Plugin WP Super Edit 2.5.4 and earlier contains an unrestricted file upload vul...
CVE 16 May 2026 nvd
CVE-2026-46364 (CVSS 9.8) — phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulnerability in BuiltinC...
CVE 16 May 2026 kev
KEV: CVE-2026-42897 — Microsoft Microsoft (Microsoft Exchange Server Cross-Site Scripting Vulnerability)
CVE 15 May 2026 nvd
CVE-2020-37168 (CVSS 9.8) — Ecommerce Systempay 1.0 contains a weak cryptographic implementation vulnerability that a...
CVE 15 May 2026 nvd
CVE-2026-41225 (CVSS 9.1) — A vulnerability exists in iControl REST where a highly privileged, authenticated attacker...
CVE 15 May 2026 nvd
CVE-2026-8181 (CVSS 9.8) — The Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative)...
CVE 15 May 2026 nvd
CVE-2026-6271 (CVSS 9.8) — The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all vers...
CVE 15 May 2026 nvd
CVE-2026-6510 (CVSS 9.8) — The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation via missing ...
CVE 15 May 2026 nvd
CVE-2026-6512 (CVSS 9.1) — The InfusedWoo Pro plugin for WordPress is vulnerable to authorization bypass in all versi...
CVE 15 May 2026 nvd
CVE-2025-11024 (CVSS 9.8) — Improper neutralization of special elements used in an SQL command ('SQL injection') vuln...
CVE 15 May 2026 nvd
CVE-2026-2347 (CVSS 9.8) — Authorization bypass through User-Controlled key vulnerability in Akilli Commerce Software...
CVE 15 May 2026 nvd
CVE-2026-41615 (CVSS 9.6) — Exposure of sensitive information to an unauthorized actor in Microsoft Authenticator all...
CVE 15 May 2026 nvd
CVE-2026-5229 (CVSS 9.8) — The Form Notify plugin for WordPress is vulnerable to Authentication Bypass in versions up...
CVE 15 May 2026 kev
KEV: CVE-2026-20182 — Cisco Catalyst SD-WAN (Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability)
CVE 15 May 2026 kev
KEV: CVE-2026-42208 — BerriAI LiteLLM (BerriAI LiteLLM SQL Injection Vulnerability)