Currently free during beta - premium features coming soon. Subscribe now to lock in early access.
CVE

EU Regulatory Changes

251 changes tracked across 24 compliance frameworks including DORA, NIS2, GDPR, EU AI Act, Cyber Resilience Act, and more.

All DORA NIS2 GDPR CSRD MaRisk ISO27001 EU_AI_ACT CRA DSA DMA eIDAS2 SOC2 PCI_DSS HIPAA ISO42001 AMLD6 PSD3 DATA_ACT GPSR CER EUDR CVE BREACH AI_SAFETY
CVE 6 Jun 2026 nvd
CVE-2025-71318 (CVSS 9.8) — NetMan 204 fails to enforce authentication on its administrative pages and command endpoi...
CVE 6 Jun 2026 nvd
CVE-2026-10580 (CVSS 9.8) — The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Authenticatio...
CVE 6 Jun 2026 kev
KEV: CVE-2026-28318 — SolarWinds Serv-U (SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability)
CVE 5 Jun 2026 nvd
CVE-2026-5241 (CVSS 9.6) — A vulnerability in the LightGlue model loading path of huggingface/transformers version 5....
CVE 5 Jun 2026 nvd
CVE-2026-49185 (CVSS 9.8) — The FieldX MDM adb messaging topic passes unverified payloads directly into Runtime.exec(...
CVE 5 Jun 2026 nvd
CVE-2026-49186 (CVSS 9.8) — The local MQTT broker does not enforce topic-level Access Control Lists (ACLs). This allo...
CVE 5 Jun 2026 nvd
CVE-2026-49188 (CVSS 9.8) — The ai_cmd utility executes with full root permissions. It pipes socket inputs directly t...
CVE 5 Jun 2026 nvd
CVE-2026-49191 (CVSS 9.8) — The production build of the M3WebServer hard-codes its backend API keys, which can be eas...
CVE 5 Jun 2026 nvd
CVE-2026-50208 (CVSS 9.4) — High-risk TrustAllCerts routines disable standard TLS certificate validation. Combined wi...
CVE 5 Jun 2026 nvd
CVE-2026-50211 (CVSS 9.8) — Leftover engineering diagnostics and factory-level diagnostic software remain exposed on ...
CVE 5 Jun 2026 nvd
CVE-2026-4104 (CVSS 9.8) — Authorization bypass through User-Controlled SQL primary key vulnerability in Akmer Inform...
CVE 5 Jun 2026 nvd
CVE-2019-25727 (CVSS 9.8) — WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file download vulnerability t...
CVE 5 Jun 2026 nvd
CVE-2019-25729 (CVSS 9.8) — PDF Signer 3.0 contains a server-side template injection vulnerability that allows unauth...
CVE 5 Jun 2026 nvd
CVE-2019-25738 (CVSS 9.8) — WordPress Hybrid Composer 1.4.6 contains an unauthenticated settings change vulnerability...
CVE 5 Jun 2026 nvd
CVE-2019-25741 (CVSS 9.8) — Mobatek MobaXterm 12.1 contains a structured exception handling (SEH) based buffer overfl...
CVE 5 Jun 2026 nvd
CVE-2026-25550 (CVSS 9.8) — Seagull Software BarTender 2010, 2016, and 2019 contain an unauthenticated remote code ex...
CVE 5 Jun 2026 nvd
CVE-2026-48567 (CVSS 10.0) — Authentication bypass by spoofing in Azure HorizonDB allows an unauthorized attacker to ...
CVE 5 Jun 2026 nvd
CVE-2026-48579 (CVSS 9.1) — Improper authorization in Microsoft Exchange Online allows an unauthorized attacker to di...
CVE 4 Jun 2026 nvd
CVE-2026-35075 (CVSS 9.8) — An unauthenticated remote attacker can recover a default, hard coded password from a firm...
CVE 4 Jun 2026 kev
KEV: CVE-2026-45247 — Mirasvit Mirasvit Full Page Cache Warmer (Mirasvit Full Page Cache Warmer Deserialization of Un...