Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-54822 Subscriber SQL Injection in SALESmanago & Leadoo <= 3.11.2 versions.
Subscriber SQL Injection in SALESmanago & Leadoo <= 3.11.2 versions.
CVE-2026-41120 Vulnerability in dell (CVE-2026-41120)
vulnerability in dell (CVE-2026-41120). Successful exploitation can lead to full system takeover.
CVE-2026-54823 Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
CVE-2026-49506 Path Traversal in path-traversal (CVE-2026-49506)
path traversal in path-traversal (CVE-2026-49506). Successful exploitation can lead to full system takeover.
CVE-2026-40211 Vulnerability in dos (CVE-2026-40211)
vulnerability in dos (CVE-2026-40211). Risk of unauthorized operations or information disclosure.
CVE-2026-40209 Vulnerability in dos (CVE-2026-40209)
vulnerability in dos (CVE-2026-40209). Risk of unauthorized operations or information disclosure.
CVE-2026-57234 Vulnerability in ssrf (CVE-2026-57234)
vulnerability in ssrf (CVE-2026-57234). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.19.4` or later.
CVE-2026-42005 Vulnerability in dos (CVE-2026-42005)
vulnerability in dos (CVE-2026-42005). Risk of unauthorized operations or information disclosure.
CVE-2026-53274 Vulnerability in dos (CVE-2026-53274)
vulnerability in dos (CVE-2026-53274). Risk of unauthorized operations or information disclosure.
CVE-2026-56091 Vulnerability in apache (CVE-2026-56091)
vulnerability in apache (CVE-2026-56091). Risk of unauthorized operations or information disclosure.
CVE-2026-53181 Vulnerability in c (CVE-2026-53181)
vulnerability in c (CVE-2026-53181). Risk of unauthorized operations or information disclosure.
CVE-2026-12937 SQL Injection in wordpress (CVE-2026-12937)
SQL injection in wordpress (CVE-2026-12937). Confidential information can be exposed externally.
CVE-2026-45188 Vulnerability in apache (CVE-2026-45188)
vulnerability in apache (CVE-2026-45188). Risk of unauthorized operations or information disclosure.
CVE-2026-5305 Vulnerability in wordpress (CVE-2026-5305)
vulnerability in wordpress (CVE-2026-5305). Successful exploitation can lead to full system takeover.
CVE-2026-12244 Vulnerability in nlnetlabs (CVE-2026-12244)
vulnerability in nlnetlabs (CVE-2026-12244). Successful exploitation can lead to full system takeover.
CVE-2026-2508 SQL Injection in wordpress (CVE-2026-2508)
SQL injection in wordpress (CVE-2026-2508). Confidential information can be exposed externally.
CVE-2026-12079 SQL Injection in wordpress (CVE-2026-12079)
SQL injection in wordpress (CVE-2026-12079). Confidential information can be exposed externally.
CVE-2026-12077 SQL Injection in wordpress (CVE-2026-12077)
SQL injection in wordpress (CVE-2026-12077). Confidential information can be exposed externally.
CVE-2026-10833 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10833)
cross-site scripting in wordpress (CVE-2026-10833). Risk of unauthorized operations or information disclosure.
CVE-2026-13311 Vulnerability in dos (CVE-2026-13311)
vulnerability in dos (CVE-2026-13311). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.5` or later.
CVE-2026-8662 Path Traversal in path-traversal (CVE-2026-8662)
path traversal in path-traversal (CVE-2026-8662). Risk of unauthorized operations or information disclosure.
CVE-2026-57589 Use-After-Free in c (CVE-2026-57589)
vulnerability in c (CVE-2026-57589). Successful exploitation can lead to full system takeover.
CVE-2026-9783 SQL Injection in sqli (CVE-2026-9783)
SQL injection in sqli (CVE-2026-9783). Successful exploitation can lead to full system takeover.
CVE-2026-9786 SQL Injection in sqli (CVE-2026-9786)
SQL injection in sqli (CVE-2026-9786). Successful exploitation can lead to full system takeover.
CVE-2026-9785 SQL Injection in sqli (CVE-2026-9785)
SQL injection in sqli (CVE-2026-9785). Successful exploitation can lead to full system takeover.
CVE-2026-9787 OS Command Injection in quest (CVE-2026-9787)
OS command injection in quest (CVE-2026-9787). Successful exploitation can lead to full system takeover.
CVE-2026-9784 SQL Injection in sqli (CVE-2026-9784)
SQL injection in sqli (CVE-2026-9784). Successful exploitation can lead to full system takeover.
CVE-2026-7569 Cross-Site Scripting (XSS) in quest (CVE-2026-7569)
cross-site scripting in quest (CVE-2026-7569). Successful exploitation can lead to full system takeover.
CVE-2026-9780 Cross-Site Scripting (XSS) in quest (CVE-2026-9780)
cross-site scripting in quest (CVE-2026-9780). Successful exploitation can lead to full system takeover.
CVE-2026-9774 Path Traversal in path-traversal (CVE-2026-9774)
path traversal in path-traversal (CVE-2026-9774). Data can be tampered with by attackers.
CVE-2026-9775 Path Traversal in path-traversal (CVE-2026-9775)
path traversal in path-traversal (CVE-2026-9775). Data can be tampered with by attackers.
CVE-2026-9776 Path Traversal in path-traversal (CVE-2026-9776)
path traversal in path-traversal (CVE-2026-9776). Confidential information can be exposed externally.
CVE-2026-9773 OS Command Injection in unraid (CVE-2026-9773)
OS command injection in unraid (CVE-2026-9773). Successful exploitation can lead to full system takeover.
CVE-2026-9777 Path Traversal in path-traversal (CVE-2026-9777)
path traversal in path-traversal (CVE-2026-9777). Successful exploitation can lead to full system takeover.
CVE-2026-9772 OS Command Injection in unraid (CVE-2026-9772)
OS command injection in unraid (CVE-2026-9772). Successful exploitation can lead to full system takeover.
CVE-2026-7570 SQL Injection in sqli (CVE-2026-7570)
SQL injection in sqli (CVE-2026-7570). Successful exploitation can lead to full system takeover.
CVE-2026-9778 Path Traversal in path-traversal (CVE-2026-9778)
path traversal in path-traversal (CVE-2026-9778). Successful exploitation can lead to full system takeover.
CVE-2026-9779 Vulnerability in aten (CVE-2026-9779)
vulnerability in aten (CVE-2026-9779). Successful exploitation can lead to full system takeover.
CVE-2026-9782 SQL Injection in sqli (CVE-2026-9782)
SQL injection in sqli (CVE-2026-9782). Successful exploitation can lead to full system takeover.
CVE-2026-9781 SQL Injection in sqli (CVE-2026-9781)
SQL injection in sqli (CVE-2026-9781). Successful exploitation can lead to full system takeover.
CVE-2025-60467 Use-After-Free in c (CVE-2025-60467)
vulnerability in c (CVE-2025-60467). Risk of unauthorized operations or information disclosure.
CVE-2025-60466 Use-After-Free in c (CVE-2025-60466)
vulnerability in c (CVE-2025-60466). Risk of unauthorized operations or information disclosure.
CVE-2025-60473 Vulnerability in c (CVE-2025-60473)
vulnerability in c (CVE-2025-60473). Risk of unauthorized operations or information disclosure.
CVE-2025-60474 Vulnerability in c (CVE-2025-60474)
vulnerability in c (CVE-2025-60474). Risk of unauthorized operations or information disclosure.
CVE-2026-47110 Vulnerability in dos (CVE-2026-47110)
vulnerability in dos (CVE-2026-47110). Risk of unauthorized operations or information disclosure.
CVE-2025-60468 Vulnerability in c (CVE-2025-60468)
vulnerability in c (CVE-2025-60468). Risk of unauthorized operations or information disclosure.
CVE-2026-2050 Vulnerability in gimp (CVE-2026-2050)
vulnerability in gimp (CVE-2026-2050). Successful exploitation can lead to full system takeover.
CVE-2026-10043 Unsafe Deserialization in deserialization (CVE-2026-10043)
vulnerability in deserialization (CVE-2026-10043). Successful exploitation can lead to full system takeover.
CVE-2026-39951 SQL Injection in sqli (CVE-2026-39951)
SQL injection in sqli (CVE-2026-39951). Confidential information can be exposed externally.
CVE-2026-39899 Path Traversal in path-traversal (CVE-2026-39899)
path traversal in path-traversal (CVE-2026-39899). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →