Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-58011 |
|
Out-of-Bounds Read in c (CVE-2026-58011)
vulnerability in c (CVE-2026-58011). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58374 |
|
Vulnerability in c (CVE-2026-58374)
vulnerability in c (CVE-2026-58374). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58016 |
|
Vulnerability in c (CVE-2026-58016)
vulnerability in c (CVE-2026-58016). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58012 |
|
Vulnerability in dos (CVE-2026-58012)
vulnerability in dos (CVE-2026-58012). Risk of unauthorized operations or information disclosure. Exploitable via ``G_REGEX_RAW``.
|
| CVE-2026-58015 |
|
Path Traversal in path-traversal (CVE-2026-58015)
path traversal in path-traversal (CVE-2026-58015). Confidential information can be exposed externally.
|
| CVE-2026-58116 |
|
Code Injection in hiyouga (CVE-2026-58116)
code injection in hiyouga (CVE-2026-58116). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8403 |
|
Cross-Site Scripting (XSS) in CVE-2026-8403 (CVE-2026-8403)
cross-site scripting in CVE-2026-8403 (CVE-2026-8403). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4629 |
|
Vulnerability in privilege-escalation (CVE-2026-4629)
vulnerability in privilege-escalation (CVE-2026-4629). Confidential information can be exposed externally.
|
| CVE-2026-58010 |
|
Vulnerability in c (CVE-2026-58010)
vulnerability in c (CVE-2026-58010). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13474 |
|
Vulnerability in dos (CVE-2026-13474)
vulnerability in dos (CVE-2026-13474). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53433 |
|
Vulnerability in dos (CVE-2026-53433)
vulnerability in dos (CVE-2026-53433). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57079 |
|
Path Traversal in path-traversal (CVE-2026-57079)
path traversal in path-traversal (CVE-2026-57079). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8402 |
|
SQL Injection in sqli (CVE-2026-8402)
SQL injection in sqli (CVE-2026-8402). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53690 |
|
SQL Injection in sqli (CVE-2026-53690)
SQL injection in sqli (CVE-2026-53690). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53691 |
|
Unrestricted File Upload in CVE-2026-53691 (CVE-2026-53691)
vulnerability in CVE-2026-53691 (CVE-2026-53691). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13766 |
|
SQL Injection in sqli (CVE-2026-13766)
SQL injection in sqli (CVE-2026-13766). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13316 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-13316)
SSRF in ssrf (CVE-2026-13316). Confidential information can be exposed externally.
|
| CVE-2026-52760 |
|
Cross-Site Scripting (XSS) in apache (CVE-2026-52760)
cross-site scripting in apache (CVE-2026-52760). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50734 |
|
Vulnerability in apache (CVE-2026-50734)
vulnerability in apache (CVE-2026-50734). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50750 |
|
Vulnerability in apache (CVE-2026-50750)
vulnerability in apache (CVE-2026-50750). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53917 |
|
Vulnerability in apache (CVE-2026-53917)
vulnerability in apache (CVE-2026-53917). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9711 |
|
SQL Injection in wordpress (CVE-2026-9711)
SQL injection in wordpress (CVE-2026-9711). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12610 |
|
Vulnerability in privilege-escalation (CVE-2026-12610)
vulnerability in privilege-escalation (CVE-2026-12610). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6954 |
|
Cross-Site Scripting (XSS) in CVE-2026-6954 (CVE-2026-6954)
cross-site scripting in CVE-2026-6954 (CVE-2026-6954). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8141 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12076 |
|
SQL Injection in sqli (CVE-2026-12076)
SQL injection in sqli (CVE-2026-12076). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7406 |
|
Privilege Escalation in privilege-escalation (CVE-2025-7406)
vulnerability in privilege-escalation (CVE-2025-7406). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13149 |
|
Vulnerability in dos (CVE-2026-13149)
vulnerability in dos (CVE-2026-13149). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14164 |
|
Vulnerability in dos (CVE-2026-14164)
vulnerability in dos (CVE-2026-14164). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11590 |
|
Vulnerability in wordpress (CVE-2026-11590)
vulnerability in wordpress (CVE-2026-11590). Confidential information can be exposed externally.
|
| CVE-2026-12240 |
|
Unsafe Deserialization in wordpress (CVE-2026-12240)
vulnerability in wordpress (CVE-2026-12240). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11589 |
|
Vulnerability in wordpress (CVE-2026-11589)
vulnerability in wordpress (CVE-2026-11589). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45822 |
|
Vulnerability in dos (CVE-2026-45822)
vulnerability in dos (CVE-2026-45822). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56809 |
|
Cross-Site Scripting (XSS) in jvn (CVE-2026-56809)
cross-site scripting in jvn (CVE-2026-56809). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12560 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-12560)
cross-site scripting in wordpress (CVE-2026-12560). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11367 |
|
Path Traversal in wordpress (CVE-2026-11367)
path traversal in wordpress (CVE-2026-11367). Confidential information can be exposed externally.
|
| CVE-2026-12073 |
|
Vulnerability in wordpress (CVE-2026-12073)
vulnerability in wordpress (CVE-2026-12073). Successful exploitation can lead to full system takeover. Exploitable via ``user_login``.
|
| CVE-2026-58302 |
|
Path Traversal in path-traversal (CVE-2026-58302)
path traversal in path-traversal (CVE-2026-58302). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12114 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-12114)
cross-site scripting in wordpress (CVE-2026-12114). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12243 |
|
Path Traversal in path-traversal (CVE-2026-12243)
path traversal in path-traversal (CVE-2026-12243). Confidential information can be exposed externally. Exploitable via ``_UNSAFE_NO_PROTOCOL_RE``.
|
| CVE-2026-51219 |
|
Vulnerability in dos (CVE-2026-51219)
vulnerability in dos (CVE-2026-51219). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-51218 |
|
Vulnerability in cpp (CVE-2026-51218)
vulnerability in cpp (CVE-2026-51218). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7656 |
|
Vulnerability in c (CVE-2026-7656)
vulnerability in c (CVE-2026-7656). Data can be tampered with by attackers.
|
| CVE-2026-10648 |
|
Vulnerability in c (CVE-2026-10648)
vulnerability in c (CVE-2026-10648). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-51221 |
|
Vulnerability in dos (CVE-2026-51221)
vulnerability in dos (CVE-2026-51221). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50229 |
|
Vulnerability in apache (CVE-2026-50229)
vulnerability in apache (CVE-2026-50229). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34597 |
|
OS Command Injection in CVE-2026-34597 (CVE-2026-34597)
OS command injection in CVE-2026-34597 (CVE-2026-34597). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.0.0-beta.470` or later.
|
| CVE-2026-34594 |
|
OS Command Injection in CVE-2026-34594 (CVE-2026-34594)
OS command injection in CVE-2026-34594 (CVE-2026-34594). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.0.0-beta.471` or later.
|
| CVE-2026-57919 |
|
Vulnerability in privilege-escalation (CVE-2026-57919)
vulnerability in privilege-escalation (CVE-2026-57919). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54889 |
|
Cross-Site Scripting (XSS) in CVE-2026-54889 (CVE-2026-54889)
cross-site scripting in CVE-2026-54889 (CVE-2026-54889). Risk of unauthorized operations or information disclosure.
|