Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
CVE

EU Regulatory Changes

227 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
CVE 20 May 2026 nvd
CVE-2026-7637 (CVSS 9.8) — The Boost plugin for WordPress is vulnerable to PHP Object Injection in versions up to, an...
CVE 19 May 2026 nvd
CVE-2026-42822 (CVSS 10.0) — Improper authentication in Azure Local Disconnected Operations allows an unauthorized at...
CVE 19 May 2026 nvd
CVE-2026-45230 (CVSS 9.1) — DumbAssets through 1.0.11 contains a path traversal vulnerability in the POST /api/delete...
CVE 19 May 2026 nvd
CVE-2026-8836 (CVSS 9.8) — A vulnerability was found in lwIP up to 2.2.1. Affected is the function snmp_parse_inbound...
CVE 18 May 2026 nvd
CVE-2018-25320 (CVSS 9.8) — ACL Analytics versions 11.x through 13.0.0.579 contain an arbitrary code execution vulner...
CVE 18 May 2026 nvd
CVE-2018-25332 (CVSS 9.8) — GitBucket 4.23.1 contains an unauthenticated remote code execution vulnerability that all...
CVE 18 May 2026 nvd
CVE-2018-25335 (CVSS 9.8) — WordPress Plugin Peugeot Music 1.0 contains an arbitrary file upload vulnerability that a...
CVE 17 May 2026 nvd
CVE-2020-37228 (CVSS 9.8) — iDS6 DSSPro Digital Signage System 6.2 contains a CAPTCHA security bypass vulnerability t...
A critical vulnerability, CVE-2020-37228, has been published with a CVSS score of 9.8, indicating a severe security flaw in the iDS6 DSSPro Digital Signage System version 6.2. The issue allows an a...
Read analysis →
CVE 17 May 2026 nvd
CVE-2020-37239 (CVSS 9.8) — libbabl 0.1.62 contains a broken double free detection vulnerability that allows attacker...
A critical vulnerability has been published under CVE-2020-37239, affecting libbabl version 0.1.62, a library used in image processing and graphics software. The flaw carries a CVSS score of 9.8, i...
Read analysis →
CVE 17 May 2026 nvd
CVE-2021-47952 (CVSS 9.8) — python jsonpickle 2.0.0 contains a remote code execution vulnerability that allows attack...
A critical vulnerability has been published in the Python library jsonpickle, version 2.0.0, identified as CVE-2021-47952 with a CVSS score of 9.8. This flaw allows remote attackers to execute arbi...
Read analysis →
CVE 16 May 2026 nvd
CVE-2021-47965 (CVSS 9.8) — WordPress Plugin WP Super Edit 2.5.4 and earlier contains an unrestricted file upload vul...
CVE 16 May 2026 nvd
CVE-2026-46364 (CVSS 9.8) — phpMyFAQ before 4.1.2 contains an unauthenticated SQL injection vulnerability in BuiltinC...
CVE 16 May 2026 kev
KEV: CVE-2026-42897 — Microsoft Microsoft (Microsoft Exchange Server Cross-Site Scripting Vulnerability)
CVE 15 May 2026 nvd
CVE-2020-37168 (CVSS 9.8) — Ecommerce Systempay 1.0 contains a weak cryptographic implementation vulnerability that a...
CVE 15 May 2026 nvd
CVE-2026-41225 (CVSS 9.1) — A vulnerability exists in iControl REST where a highly privileged, authenticated attacker...
CVE 15 May 2026 nvd
CVE-2026-8181 (CVSS 9.8) — The Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative)...
CVE 15 May 2026 nvd
CVE-2026-6271 (CVSS 9.8) — The Career Section plugin for WordPress is vulnerable to Arbitrary File Upload in all vers...
CVE 15 May 2026 nvd
CVE-2026-6510 (CVSS 9.8) — The InfusedWoo Pro plugin for WordPress is vulnerable to privilege escalation via missing ...
CVE 15 May 2026 nvd
CVE-2026-6512 (CVSS 9.1) — The InfusedWoo Pro plugin for WordPress is vulnerable to authorization bypass in all versi...
CVE 15 May 2026 nvd
CVE-2025-11024 (CVSS 9.8) — Improper neutralization of special elements used in an SQL command ('SQL injection') vuln...