Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-57571 Path Traversal in kidocode (CVE-2026-57571)
path traversal in kidocode (CVE-2026-57571). Successful exploitation can lead to full system takeover.
CVE-2026-54234 Vulnerability in dos (CVE-2026-54234)
vulnerability in dos (CVE-2026-54234). Risk of unauthorized operations or information disclosure.
CVE-2026-33734 SQL Injection in sqli (CVE-2026-33734)
SQL injection in sqli (CVE-2026-33734). Risk of unauthorized operations or information disclosure. Exploitable via ``Massmailer``.
CVE-2026-34038 OS Command Injection in CVE-2026-34038 (CVE-2026-34038)
OS command injection in CVE-2026-34038 (CVE-2026-34038). Successful exploitation can lead to full system takeover.
CVE-2026-55434 Vulnerability in github.com/coder/coder/v2 (CVE-2026-55434)
vulnerability in github.com/coder/coder/v2 (CVE-2026-55434). Risk of unauthorized operations or information disclosure. Exploitable via ``io.ReadAll``. Mitigation: upgrade to `2.33.8` or later.
CVE-2026-55078 Vulnerability in github.com/coder/coder/v2 (CVE-2026-55078)
vulnerability in github.com/coder/coder/v2 (CVE-2026-55078). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/v2/files`. Mitigation: upgrade to `2.29.17` or later.
CVE-2026-59089 Vulnerability in dos (CVE-2026-59089)
vulnerability in dos (CVE-2026-59089). Risk of unauthorized operations or information disclosure.
CVE-2026-9181 Path Traversal in path-traversal (CVE-2026-9181)
path traversal in path-traversal (CVE-2026-9181). Successful exploitation can lead to full system takeover.
CVE-2026-48614 Code Injection in privilege-escalation (CVE-2026-48614)
code injection in privilege-escalation (CVE-2026-48614). Successful exploitation can lead to full system takeover.
CVE-2026-12154 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12154)
cross-site scripting in wordpress (CVE-2026-12154). Risk of unauthorized operations or information disclosure.
CVE-2026-43825 Unsafe Deserialization in apache (CVE-2026-43825)
vulnerability in apache (CVE-2026-43825). Risk of unauthorized operations or information disclosure.
CVE-2025-53831 Cross-Site Scripting (XSS) in CVE-2025-53831 (CVE-2025-53831)
cross-site scripting in CVE-2025-53831 (CVE-2025-53831). Confidential information can be exposed externally.
CVE-2026-5268 Vulnerability in CVE-2026-5268 (CVE-2026-5268)
vulnerability in CVE-2026-5268 (CVE-2026-5268). Confidential information can be exposed externally.
CVE-2026-13122 Vulnerability in dos (CVE-2026-13122)
vulnerability in dos (CVE-2026-13122). Risk of unauthorized operations or information disclosure.
CVE-2025-53830 SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-53830)
SSRF in ssrf (CVE-2025-53830). Successful exploitation can lead to full system takeover.
CVE-2025-53829 Vulnerability in path-traversal (CVE-2025-53829)
vulnerability in path-traversal (CVE-2025-53829). Successful exploitation can lead to full system takeover.
CVE-2025-53828 SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-53828)
SSRF in ssrf (CVE-2025-53828). Successful exploitation can lead to full system takeover.
CVE-2026-13698 Vulnerability in dos (CVE-2026-13698)
vulnerability in dos (CVE-2026-13698). Risk of unauthorized operations or information disclosure.
CVE-2026-58380 Vulnerability in dos (CVE-2026-58380)
vulnerability in dos (CVE-2026-58380). Successful exploitation can lead to full system takeover.
CVE-2026-13708 Vulnerability in dos (CVE-2026-13708)
vulnerability in dos (CVE-2026-13708). Risk of unauthorized operations or information disclosure.
CVE-2026-4249 Vulnerability in dos (CVE-2026-4249)
vulnerability in dos (CVE-2026-4249). Risk of unauthorized operations or information disclosure.
CVE-2026-56810 Vulnerability in dos (CVE-2026-56810)
vulnerability in dos (CVE-2026-56810). Risk of unauthorized operations or information disclosure.
CVE-2026-9165 Vulnerability in dos (CVE-2026-9165)
vulnerability in dos (CVE-2026-9165). Risk of unauthorized operations or information disclosure.
CVE-2026-55994 Vulnerability in apache (CVE-2026-55994)
vulnerability in apache (CVE-2026-55994). Confidential information can be exposed externally.
CVE-2026-55993 Vulnerability in apache (CVE-2026-55993)
vulnerability in apache (CVE-2026-55993). Confidential information can be exposed externally.
CVE-2026-48205 Vulnerability in apache (CVE-2026-48205)
vulnerability in apache (CVE-2026-48205). Confidential information can be exposed externally.
CVE-2026-53913 Authentication Bypass in apache (CVE-2026-53913)
authentication bypass in apache (CVE-2026-53913). Successful exploitation can lead to full system takeover.
CVE-2026-48203 Vulnerability in apache (CVE-2026-48203)
vulnerability in apache (CVE-2026-48203). Confidential information can be exposed externally.
CVE-2026-46726 Vulnerability in apache (CVE-2026-46726)
vulnerability in apache (CVE-2026-46726). Confidential information can be exposed externally.
CVE-2026-46590 Unsafe Deserialization in apache (CVE-2026-46590)
vulnerability in apache (CVE-2026-46590). Successful exploitation can lead to full system takeover.
CVE-2026-43866 Unsafe Deserialization in apache (CVE-2026-43866)
vulnerability in apache (CVE-2026-43866). Risk of unauthorized operations or information disclosure.
CVE-2026-43867 Unsafe Deserialization in apache (CVE-2026-43867)
vulnerability in apache (CVE-2026-43867). Successful exploitation can lead to full system takeover.
CVE-2026-42527 Unsafe Deserialization in csharp (CVE-2026-42527)
vulnerability in csharp (CVE-2026-42527). Successful exploitation can lead to full system takeover.
CVE-2026-14809 SQL Injection in sqli (CVE-2026-14809)
SQL injection in sqli (CVE-2026-14809). Confidential information can be exposed externally.
CVE-2026-24013 Vulnerability in apache (CVE-2026-24013)
vulnerability in apache (CVE-2026-24013). Confidential information can be exposed externally.
CVE-2026-24014 Vulnerability in apache (CVE-2026-24014)
vulnerability in apache (CVE-2026-24014). Successful exploitation can lead to full system takeover.
CVE-2026-40047 Vulnerability in apache (CVE-2026-40047)
vulnerability in apache (CVE-2026-40047). Confidential information can be exposed externally. Exploitable via ``docling``.
CVE-2026-40859 Unsafe Deserialization in apache (CVE-2026-40859)
vulnerability in apache (CVE-2026-40859). Successful exploitation can lead to full system takeover.
CVE-2026-43865 Unsafe Deserialization in csharp (CVE-2026-43865)
vulnerability in csharp (CVE-2026-43865). Successful exploitation can lead to full system takeover.
CVE-2026-11962 Vulnerability in wordpress (CVE-2026-11962)
vulnerability in wordpress (CVE-2026-11962). Successful exploitation can lead to full system takeover.
CVE-2026-14802 A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
CVE-2026-14796 Vulnerability in sqli (CVE-2026-14796)
vulnerability in sqli (CVE-2026-14796). Risk of unauthorized operations or information disclosure.
CVE-2026-14797 Vulnerability in sqli (CVE-2026-14797)
vulnerability in sqli (CVE-2026-14797). Risk of unauthorized operations or information disclosure.
CVE-2026-14799 Vulnerability in sqli (CVE-2026-14799)
vulnerability in sqli (CVE-2026-14799). Risk of unauthorized operations or information disclosure.
CVE-2026-14798 Vulnerability in sqli (CVE-2026-14798)
vulnerability in sqli (CVE-2026-14798). Risk of unauthorized operations or information disclosure.
CVE-2026-14795 Vulnerability in sqli (CVE-2026-14795)
vulnerability in sqli (CVE-2026-14795). Risk of unauthorized operations or information disclosure.
CVE-2026-14791 Cross-Site Scripting (XSS) in CVE-2026-14791 (CVE-2026-14791)
cross-site scripting in CVE-2026-14791 (CVE-2026-14791). Risk of unauthorized operations or information disclosure.
CVE-2026-14803 Vulnerability in c (CVE-2026-14803)
vulnerability in c (CVE-2026-14803). Risk of unauthorized operations or information disclosure. Exploitable via ``_decode_value``.
CVE-2026-14774 Vulnerability in sqli (CVE-2026-14774)
vulnerability in sqli (CVE-2026-14774). Risk of unauthorized operations or information disclosure.
CVE-2026-14773 Vulnerability in sqli (CVE-2026-14773)
vulnerability in sqli (CVE-2026-14773). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →