Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-9002 |
|
Vulnerability in dos (CVE-2026-9002)
vulnerability in dos (CVE-2026-9002). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10129 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-10129)
SSRF in ssrf (CVE-2026-10129). Confidential information can be exposed externally.
|
| CVE-2026-58138 |
|
Code Injection in CVE-2026-58138 (CVE-2026-58138)
code injection in CVE-2026-58138 (CVE-2026-58138). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10109 |
|
Code Injection in ibm (CVE-2026-10109)
code injection in ibm (CVE-2026-10109). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10513 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-10513)
cross-site scripting in wordpress (CVE-2026-10513). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58376 |
|
SQL Injection in sqli (CVE-2026-58376)
SQL injection in sqli (CVE-2026-58376). Confidential information can be exposed externally.
|
| CVE-2026-58372 |
|
Path Traversal in path-traversal (CVE-2026-58372)
path traversal in path-traversal (CVE-2026-58372). Data can be tampered with by attackers.
|
| CVE-2026-58173 |
|
Path Traversal in path-traversal (CVE-2026-58173)
path traversal in path-traversal (CVE-2026-58173). Data can be tampered with by attackers.
|
| CVE-2026-58169 |
|
Vulnerability in CVE-2026-58169 (CVE-2026-58169)
vulnerability in CVE-2026-58169 (CVE-2026-58169). Successful exploitation can lead to full system takeover. Exploitable via `Host header`.
|
| CVE-2026-58165 |
|
Vulnerability in privilege-escalation (CVE-2026-58165)
vulnerability in privilege-escalation (CVE-2026-58165). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58166 |
|
Path Traversal in path-traversal (CVE-2026-58166)
path traversal in path-traversal (CVE-2026-58166). Data can be tampered with by attackers.
|
| CVE-2026-58170 |
|
Path Traversal in path-traversal (CVE-2026-58170)
path traversal in path-traversal (CVE-2026-58170). Data can be tampered with by attackers.
|
| CVE-2026-48314 |
|
Path Traversal in path-traversal (CVE-2026-48314)
path traversal in path-traversal (CVE-2026-48314). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48285 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-48285)
SSRF in ssrf (CVE-2026-48285). Confidential information can be exposed externally.
|
| CVE-2026-48307 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-48307)
cross-site scripting in adobe (CVE-2026-48307). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48313 |
|
Path Traversal in path-traversal (CVE-2026-48313)
path traversal in path-traversal (CVE-2026-48313). Confidential information can be exposed externally.
|
| CVE-2026-48282 KEV |
|
[KEV] Path Traversal in Adobe path-traversal (CVE-2026-48282)
path traversal in Adobe path-traversal (CVE-2026-48282). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-9263 |
|
Out-of-Bounds Read in c (CVE-2026-9263)
vulnerability in c (CVE-2026-9263). Confidential information can be exposed externally.
|
| CVE-2026-10652 |
|
Out-of-Bounds Read in c (CVE-2026-10652)
vulnerability in c (CVE-2026-10652). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10655 |
|
Use-After-Free in c (CVE-2026-10655)
vulnerability in c (CVE-2026-10655). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44948 |
|
Vulnerability in path-traversal (CVE-2026-44948)
vulnerability in path-traversal (CVE-2026-44948). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35096 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-35096)
vulnerability in csrf (CVE-2026-35096). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8655 |
|
Buffer Overflow in dos (CVE-2026-8655)
vulnerability in dos (CVE-2026-8655). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8452 |
|
Buffer Overflow in dos (CVE-2026-8452)
vulnerability in dos (CVE-2026-8452). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58014 |
|
Vulnerability in c (CVE-2026-58014)
vulnerability in c (CVE-2026-58014). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58013 |
|
Vulnerability in c (CVE-2026-58013)
vulnerability in c (CVE-2026-58013). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58011 |
|
Out-of-Bounds Read in c (CVE-2026-58011)
vulnerability in c (CVE-2026-58011). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58374 |
|
Vulnerability in c (CVE-2026-58374)
vulnerability in c (CVE-2026-58374). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58016 |
|
Vulnerability in c (CVE-2026-58016)
vulnerability in c (CVE-2026-58016). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58012 |
|
Vulnerability in dos (CVE-2026-58012)
vulnerability in dos (CVE-2026-58012). Risk of unauthorized operations or information disclosure. Exploitable via ``G_REGEX_RAW``.
|
| CVE-2026-58116 |
|
Code Injection in hiyouga (CVE-2026-58116)
code injection in hiyouga (CVE-2026-58116). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8403 |
|
Cross-Site Scripting (XSS) in CVE-2026-8403 (CVE-2026-8403)
cross-site scripting in CVE-2026-8403 (CVE-2026-8403). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58015 |
|
Path Traversal in path-traversal (CVE-2026-58015)
path traversal in path-traversal (CVE-2026-58015). Confidential information can be exposed externally.
|
| CVE-2026-4629 |
|
Vulnerability in privilege-escalation (CVE-2026-4629)
vulnerability in privilege-escalation (CVE-2026-4629). Confidential information can be exposed externally.
|
| CVE-2026-58010 |
|
Vulnerability in c (CVE-2026-58010)
vulnerability in c (CVE-2026-58010). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13474 |
|
Vulnerability in dos (CVE-2026-13474)
vulnerability in dos (CVE-2026-13474). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53433 |
|
Vulnerability in dos (CVE-2026-53433)
vulnerability in dos (CVE-2026-53433). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8402 |
|
SQL Injection in sqli (CVE-2026-8402)
SQL injection in sqli (CVE-2026-8402). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53690 |
|
SQL Injection in sqli (CVE-2026-53690)
SQL injection in sqli (CVE-2026-53690). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53691 |
|
Unrestricted File Upload in CVE-2026-53691 (CVE-2026-53691)
vulnerability in CVE-2026-53691 (CVE-2026-53691). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57079 |
|
Path Traversal in path-traversal (CVE-2026-57079)
path traversal in path-traversal (CVE-2026-57079). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13766 |
|
SQL Injection in sqli (CVE-2026-13766)
SQL injection in sqli (CVE-2026-13766). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13316 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-13316)
SSRF in ssrf (CVE-2026-13316). Confidential information can be exposed externally.
|
| CVE-2026-52760 |
|
Cross-Site Scripting (XSS) in apache (CVE-2026-52760)
cross-site scripting in apache (CVE-2026-52760). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50734 |
|
Vulnerability in apache (CVE-2026-50734)
vulnerability in apache (CVE-2026-50734). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50750 |
|
Vulnerability in apache (CVE-2026-50750)
vulnerability in apache (CVE-2026-50750). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53917 |
|
Vulnerability in apache (CVE-2026-53917)
vulnerability in apache (CVE-2026-53917). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9711 |
|
SQL Injection in wordpress (CVE-2026-9711)
SQL injection in wordpress (CVE-2026-9711). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12610 |
|
Vulnerability in privilege-escalation (CVE-2026-12610)
vulnerability in privilege-escalation (CVE-2026-12610). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8141 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.
|