Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
CVE

EU Regulatory Changes

251 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
CVE 24 Jun 2026 nvd
CVE-2026-8646 (CVSS 7.4) — IBM WebSphere Application Server 9.0 and 8.5 and IBM WebSphere Application Server - Libert...
CVE 24 Jun 2026 nvd
CVE-2026-9006 (CVSS 7.4) — IBM WebSphere Application Server 9.0, and 8.5 is vulnerable to server-side request forgery...
CVE 24 Jun 2026 nvd
CVE-2026-9072 (CVSS 8.1) — IBM i 7.6, 7.5, 7.4, and 7.3, IBM WebSphere Application Server, and IBM WebSphere Applicat...
CVE 24 Jun 2026 nvd
CVE-2026-48509 (CVSS 9.1) — MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, the pa...
CVE 22 Jun 2026 nvd
CVE-2026-56395 (CVSS 9.6) — SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar ...
CVE 22 Jun 2026 nvd
CVE-2026-56397 (CVSS 9.6) — SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar ...
CVE 21 Jun 2026 nvd
CVE-2019-25763 (CVSS 9.8) — WordPress Ultimate Addons for Beaver Builder 1.2.4.1 contains an authentication bypass vu...
CVE 21 Jun 2026 nvd
CVE-2022-50972 (CVSS 9.8) — WooCommerce 7.1.0 contains a remote code execution vulnerability that allows attackers to...
CVE 21 Jun 2026 nvd
CVE-2024-58351 (CVSS 9.8) — Flowise before 2.1.4 allows configuration to be injected into the Chainflow during execut...
CVE 20 Jun 2026 nvd
CVE-2026-56081 (CVSS 9.1) — Cap-go before 12.128.2 contains an authentication logic flaw that lets an attacker regist...
CVE 20 Jun 2026 nvd
CVE-2026-11551 (CVSS 9.8) — The Branda plugin for WordPress is vulnerable to privilege escalation via account takeove...
CVE 20 Jun 2026 nvd
CVE-2026-8024 (CVSS 9.8) — A remote, unauthenticated attacker may exploit a deserialization of untrusted data vulnera...
CVE 20 Jun 2026 nvd
CVE-2026-54390 (CVSS 9.8) — JTL Shop versions 5.2.0 through 5.7.1 contains a server-side template injection vulnerabi...
CVE 20 Jun 2026 nvd
CVE-2026-47647 (CVSS 9.9) — Improper access control in Microsoft Dynamics 365 allows an authorized attacker to elevat...
CVE 20 Jun 2026 nvd
CVE-2026-54130 (CVSS 9.8) — Missing authentication for critical function in M365 Copilot allows an unauthorized attac...
CVE 20 Jun 2026 nvd
CVE-2026-7515 (CVSS 9.8) — The BetterDocs Pro plugin for WordPress is vulnerable to Local File Inclusion in versions ...
CVE 20 Jun 2026 nvd
CVE-2026-8713 (CVSS 9.1) — The Avada (Fusion) Builder plugin for WordPress is vulnerable to arbitrary file deletion d...
CVE 20 Jun 2026 nvd
CVE-2026-45480 (CVSS 10.0) — Improper authentication in Azure Active Directory allows an unauthorized attacker to ele...
CVE 20 Jun 2026 nvd
CVE-2026-48582 (CVSS 9.6) — Missing authorization in Microsoft Exchange Online allows an authorized attacker to eleva...
CVE 20 Jun 2026 nvd
CVE-2026-48584 (CVSS 9.9) — Execution with unnecessary privileges in Azure Synapse allows an authorized attacker to e...