Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-9002 Vulnerability in dos (CVE-2026-9002)
vulnerability in dos (CVE-2026-9002). Risk of unauthorized operations or information disclosure.
CVE-2026-10129 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-10129)
SSRF in ssrf (CVE-2026-10129). Confidential information can be exposed externally.
CVE-2026-58138 Code Injection in CVE-2026-58138 (CVE-2026-58138)
code injection in CVE-2026-58138 (CVE-2026-58138). Successful exploitation can lead to full system takeover.
CVE-2026-10109 Code Injection in ibm (CVE-2026-10109)
code injection in ibm (CVE-2026-10109). Successful exploitation can lead to full system takeover.
CVE-2026-10513 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10513)
cross-site scripting in wordpress (CVE-2026-10513). Risk of unauthorized operations or information disclosure.
CVE-2026-58376 SQL Injection in sqli (CVE-2026-58376)
SQL injection in sqli (CVE-2026-58376). Confidential information can be exposed externally.
CVE-2026-58372 Path Traversal in path-traversal (CVE-2026-58372)
path traversal in path-traversal (CVE-2026-58372). Data can be tampered with by attackers.
CVE-2026-58173 Path Traversal in path-traversal (CVE-2026-58173)
path traversal in path-traversal (CVE-2026-58173). Data can be tampered with by attackers.
CVE-2026-58169 Vulnerability in CVE-2026-58169 (CVE-2026-58169)
vulnerability in CVE-2026-58169 (CVE-2026-58169). Successful exploitation can lead to full system takeover. Exploitable via `Host header`.
CVE-2026-58165 Vulnerability in privilege-escalation (CVE-2026-58165)
vulnerability in privilege-escalation (CVE-2026-58165). Successful exploitation can lead to full system takeover.
CVE-2026-58166 Path Traversal in path-traversal (CVE-2026-58166)
path traversal in path-traversal (CVE-2026-58166). Data can be tampered with by attackers.
CVE-2026-58170 Path Traversal in path-traversal (CVE-2026-58170)
path traversal in path-traversal (CVE-2026-58170). Data can be tampered with by attackers.
CVE-2026-48314 Path Traversal in path-traversal (CVE-2026-48314)
path traversal in path-traversal (CVE-2026-48314). Risk of unauthorized operations or information disclosure.
CVE-2026-48285 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-48285)
SSRF in ssrf (CVE-2026-48285). Confidential information can be exposed externally.
CVE-2026-48307 Cross-Site Scripting (XSS) in adobe (CVE-2026-48307)
cross-site scripting in adobe (CVE-2026-48307). Successful exploitation can lead to full system takeover.
CVE-2026-48313 Path Traversal in path-traversal (CVE-2026-48313)
path traversal in path-traversal (CVE-2026-48313). Confidential information can be exposed externally.
CVE-2026-48282 KEV [KEV] Path Traversal in Adobe path-traversal (CVE-2026-48282)
path traversal in Adobe path-traversal (CVE-2026-48282). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-9263 Out-of-Bounds Read in c (CVE-2026-9263)
vulnerability in c (CVE-2026-9263). Confidential information can be exposed externally.
CVE-2026-10652 Out-of-Bounds Read in c (CVE-2026-10652)
vulnerability in c (CVE-2026-10652). Risk of unauthorized operations or information disclosure.
CVE-2026-10655 Use-After-Free in c (CVE-2026-10655)
vulnerability in c (CVE-2026-10655). Risk of unauthorized operations or information disclosure.
CVE-2026-44948 Vulnerability in path-traversal (CVE-2026-44948)
vulnerability in path-traversal (CVE-2026-44948). Risk of unauthorized operations or information disclosure.
CVE-2026-35096 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-35096)
vulnerability in csrf (CVE-2026-35096). Risk of unauthorized operations or information disclosure.
CVE-2026-8655 Buffer Overflow in dos (CVE-2026-8655)
vulnerability in dos (CVE-2026-8655). Successful exploitation can lead to full system takeover.
CVE-2026-8452 Buffer Overflow in dos (CVE-2026-8452)
vulnerability in dos (CVE-2026-8452). Successful exploitation can lead to full system takeover.
CVE-2026-58014 Vulnerability in c (CVE-2026-58014)
vulnerability in c (CVE-2026-58014). Risk of unauthorized operations or information disclosure.
CVE-2026-58013 Vulnerability in c (CVE-2026-58013)
vulnerability in c (CVE-2026-58013). Risk of unauthorized operations or information disclosure.
CVE-2026-58011 Out-of-Bounds Read in c (CVE-2026-58011)
vulnerability in c (CVE-2026-58011). Risk of unauthorized operations or information disclosure.
CVE-2026-58374 Vulnerability in c (CVE-2026-58374)
vulnerability in c (CVE-2026-58374). Risk of unauthorized operations or information disclosure.
CVE-2026-58016 Vulnerability in c (CVE-2026-58016)
vulnerability in c (CVE-2026-58016). Risk of unauthorized operations or information disclosure.
CVE-2026-58012 Vulnerability in dos (CVE-2026-58012)
vulnerability in dos (CVE-2026-58012). Risk of unauthorized operations or information disclosure. Exploitable via ``G_REGEX_RAW``.
CVE-2026-58116 Code Injection in hiyouga (CVE-2026-58116)
code injection in hiyouga (CVE-2026-58116). Successful exploitation can lead to full system takeover.
CVE-2026-8403 Cross-Site Scripting (XSS) in CVE-2026-8403 (CVE-2026-8403)
cross-site scripting in CVE-2026-8403 (CVE-2026-8403). Risk of unauthorized operations or information disclosure.
CVE-2026-58015 Path Traversal in path-traversal (CVE-2026-58015)
path traversal in path-traversal (CVE-2026-58015). Confidential information can be exposed externally.
CVE-2026-4629 Vulnerability in privilege-escalation (CVE-2026-4629)
vulnerability in privilege-escalation (CVE-2026-4629). Confidential information can be exposed externally.
CVE-2026-58010 Vulnerability in c (CVE-2026-58010)
vulnerability in c (CVE-2026-58010). Risk of unauthorized operations or information disclosure.
CVE-2026-13474 Vulnerability in dos (CVE-2026-13474)
vulnerability in dos (CVE-2026-13474). Risk of unauthorized operations or information disclosure.
CVE-2026-53433 Vulnerability in dos (CVE-2026-53433)
vulnerability in dos (CVE-2026-53433). Risk of unauthorized operations or information disclosure.
CVE-2026-8402 SQL Injection in sqli (CVE-2026-8402)
SQL injection in sqli (CVE-2026-8402). Successful exploitation can lead to full system takeover.
CVE-2026-53690 SQL Injection in sqli (CVE-2026-53690)
SQL injection in sqli (CVE-2026-53690). Risk of unauthorized operations or information disclosure.
CVE-2026-53691 Unrestricted File Upload in CVE-2026-53691 (CVE-2026-53691)
vulnerability in CVE-2026-53691 (CVE-2026-53691). Risk of unauthorized operations or information disclosure.
CVE-2026-57079 Path Traversal in path-traversal (CVE-2026-57079)
path traversal in path-traversal (CVE-2026-57079). Risk of unauthorized operations or information disclosure.
CVE-2026-13766 SQL Injection in sqli (CVE-2026-13766)
SQL injection in sqli (CVE-2026-13766). Successful exploitation can lead to full system takeover.
CVE-2026-13316 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-13316)
SSRF in ssrf (CVE-2026-13316). Confidential information can be exposed externally.
CVE-2026-52760 Cross-Site Scripting (XSS) in apache (CVE-2026-52760)
cross-site scripting in apache (CVE-2026-52760). Risk of unauthorized operations or information disclosure.
CVE-2026-50734 Vulnerability in apache (CVE-2026-50734)
vulnerability in apache (CVE-2026-50734). Risk of unauthorized operations or information disclosure.
CVE-2026-50750 Vulnerability in apache (CVE-2026-50750)
vulnerability in apache (CVE-2026-50750). Risk of unauthorized operations or information disclosure.
CVE-2026-53917 Vulnerability in apache (CVE-2026-53917)
vulnerability in apache (CVE-2026-53917). Risk of unauthorized operations or information disclosure.
CVE-2026-9711 SQL Injection in wordpress (CVE-2026-9711)
SQL injection in wordpress (CVE-2026-9711). Successful exploitation can lead to full system takeover.
CVE-2026-12610 Vulnerability in privilege-escalation (CVE-2026-12610)
vulnerability in privilege-escalation (CVE-2026-12610). Successful exploitation can lead to full system takeover.
CVE-2026-8141 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →