Instituto Nacional de ciberseguridad. Sección Incibe
Instituto Nacional de Ciberseguridad. Sección INCIBE-CERT

Go to Calendar     Go to Press Room     Go to Newsletters subscription

Search

Vulnerabilities

With the aim of informing, warning and helping professionals with the latest security vulnerabilities in technology systems, we have made a database available for users interested in this information, which is in Spanish and includes all of the latest documented and recognised vulnerabilities.

This repository, with over 75,000 registers, is based on the information from the NVD (National Vulnerability Database) – by virtue of a partnership agreement – through which INCIBE translates the included information into Spanish.

On occasions this list will show vulnerabilities that have still not been translated, as they are added while the INCIBE team is still carrying out the translation process. The CVE  (Common Vulnerabilities and Exposures) Standard for Information Security Vulnerability Names is used with the aim to support the exchange of information between different tools and databases.

All vulnerabilities collected are linked to different information sources, as well as available patches or solutions provided by manufacturers and developers. It is possible to carry out advanced searches, as there is the option to select different criteria to narrow down the results, some examples being vulnerability types, manufacturers and impact levels, among others.

Through RSS feeds or Newsletters we can be informed daily about the latest vulnerabilities added to the repository. Below there is a list, updated daily, where you can discover the latest vulnerabilities.

CVE-2025-28162
Publication date:
27/01/2026
Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via the pngimage with AddressSanitizer (ASan), the program leaks memory in various locations, eventually leading to high memory usage and causing the program to become unresponsive
Severity CVSS v4.0: Pending analysis
Last modification:
27/01/2026

CVE-2025-28164
Publication date:
27/01/2026
Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via png_create_read_struct() function.
Severity CVSS v4.0: Pending analysis
Last modification:
27/01/2026

CVE-2025-55095
Publication date:
27/01/2026
The function _ux_host_class_storage_media_mount() is responsible for mounting partitions on a USB mass storage device. When it encounters an extended partition entry in the partition table, it recursively calls itself to mount the next logical partition.<br /> <br /> This recursion occurs in _ux_host_class_storage_partition_read(), which parses up to four partition entries. If an extended partition is found (with type UX_HOST_CLASS_STORAGE_PARTITION_EXTENDED or EXTENDED_LBA_MAPPED), the code invokes:<br /> _ux_host_class_storage_media_mount(storage, sector + _ux_utility_long_get(...));<br /> <br /> <br /> There is no limit on the recursion depth or tracking of visited sectors. As a result, a malicious or malformed disk image can include cyclic or excessively deep chains of extended partitions, causing the function to recurse until stack overflow occurs.
Severity CVSS v4.0: Pending analysis
Last modification:
27/01/2026

CVE-2021-47901
Publication date:
27/01/2026
Dirsearch 0.4.1 contains a CSV injection vulnerability when using the --csv-report flag that allows attackers to inject formulas through redirected endpoints. Attackers can craft malicious server redirects with comma-separated paths containing Excel formulas to manipulate the generated CSV report.
Severity CVSS v4.0: MEDIUM
Last modification:
27/01/2026

CVE-2021-47902
Publication date:
27/01/2026
Testa Online Test Management System 3.4.7 contains a SQL injection vulnerability that allows attackers to manipulate database queries through the &amp;#39;q&amp;#39; search parameter. Attackers can inject malicious SQL code in the search field to extract database information, potentially accessing sensitive user or system data.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026

CVE-2020-36947
Publication date:
27/01/2026
LibreNMS 1.46 contains an authenticated SQL injection vulnerability in the MAC accounting graph endpoint that allows remote attackers to extract database information. Attackers can exploit the vulnerability by manipulating the &amp;#39;sort&amp;#39; parameter with crafted SQL injection techniques to retrieve sensitive database contents through time-based blind SQL injection.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026

CVE-2020-36948
Publication date:
27/01/2026
VestaCP 0.9.8-26 contains a session token vulnerability in the LoginAs module that allows remote attackers to manipulate authentication tokens. Attackers can exploit insufficient token validation to access user accounts and perform unauthorized login requests without proper administrative permissions.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026

CVE-2020-36949
Publication date:
27/01/2026
TapinRadio 2.13.7 contains a denial of service vulnerability in the application proxy settings that allows attackers to crash the program by overflowing input fields. Attackers can paste a large buffer of 20,000 characters into the username and address fields to cause the application to become unresponsive and require reinstallation.
Severity CVSS v4.0: MEDIUM
Last modification:
27/01/2026

CVE-2020-36950
Publication date:
27/01/2026
Laravel Nova 3.7.0 contains a denial of service vulnerability that allows authenticated users to crash the application by manipulating the &amp;#39;range&amp;#39; parameter. Attackers can send simultaneous requests with an extremely high range value to overwhelm and crash the server.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026

CVE-2020-36951
Publication date:
27/01/2026
Phpscript-sgh 0.1.0 contains a time-based blind SQL injection vulnerability in the admin interface that allows attackers to manipulate database queries through the &amp;#39;id&amp;#39; parameter. Attackers can exploit this vulnerability by crafting malicious payloads that trigger time delays, enabling them to extract sensitive database information through conditional sleep techniques.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026

CVE-2021-47900
Publication date:
27/01/2026
Gila CMS versions prior to 2.0.0 contain a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands through manipulated HTTP headers. Attackers can inject PHP code in the User-Agent header with shell_exec() to run system commands by sending crafted requests to the admin endpoint.
Severity CVSS v4.0: CRITICAL
Last modification:
27/01/2026

CVE-2020-36939
Publication date:
27/01/2026
Cassandra Web 0.5.0 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating path traversal parameters. Attackers can exploit the disabled Rack::Protection module to read sensitive system files like /etc/passwd and retrieve Apache Cassandra database credentials.
Severity CVSS v4.0: HIGH
Last modification:
27/01/2026
Subscribe to Vulnerabilities