Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-39555 |
|
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection.
...
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection.
...
|
| CVE-2026-32250 |
|
Cross-Site Scripting (XSS) in CVE-2026-32250 (CVE-2026-32250)
cross-site scripting in CVE-2026-32250 (CVE-2026-32250). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28116 |
|
Cross-Site Scripting (XSS) in CVE-2026-28116 (CVE-2026-28116)
cross-site scripting in CVE-2026-28116 (CVE-2026-28116). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32685 |
|
Path Traversal in path-traversal (CVE-2026-32685)
path traversal in path-traversal (CVE-2026-32685). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10621 |
|
Vulnerability in path-traversal (CVE-2026-10621)
vulnerability in path-traversal (CVE-2026-10621). Data can be tampered with by attackers.
|
| CVE-2026-10611 |
|
Authentication Bypass in misp (CVE-2026-10611)
authentication bypass in misp (CVE-2026-10611). Successful exploitation can lead to full system takeover.
|
| CVE-2025-68886 |
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
|
| CVE-2025-69369 |
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
|
| CVE-2019-25719 |
|
Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors running software...
Dräger Infinity Acute Care System and Standalone Infinity M540 patient monitors running software...
|
| CVE-2026-39550 |
|
Unsafe Deserialization in deserialization (CVE-2026-39550)
vulnerability in deserialization (CVE-2026-39550). Successful exploitation can lead to full system takeover.
|
| CVE-2026-39551 |
|
Unsafe Deserialization in deserialization (CVE-2026-39551)
vulnerability in deserialization (CVE-2026-39551). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8993 |
|
Vulnerability in ssrf (CVE-2026-8993)
vulnerability in ssrf (CVE-2026-8993). Confidential information can be exposed externally.
|
| CVE-2026-42684 |
|
SQL Injection in sqli (CVE-2026-42684)
SQL injection in sqli (CVE-2026-42684). Confidential information can be exposed externally.
|
| CVE-2026-42685 |
|
Cross-Site Scripting (XSS) in CVE-2026-42685 (CVE-2026-42685)
cross-site scripting in CVE-2026-42685 (CVE-2026-42685). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5422 |
|
Vulnerability in path-traversal (CVE-2026-5422)
vulnerability in path-traversal (CVE-2026-5422). Confidential information can be exposed externally.
|
| CVE-2026-5191 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-5191)
cross-site scripting in wordpress (CVE-2026-5191). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34907 |
|
Cross-Site Scripting (XSS) in CVE-2026-34907 (CVE-2026-34907)
cross-site scripting in CVE-2026-34907 (CVE-2026-34907). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34906 |
|
Vulnerability in CVE-2026-34906 (CVE-2026-34906)
vulnerability in CVE-2026-34906 (CVE-2026-34906). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53209 |
|
Vulnerability in privilege-escalation (CVE-2025-53209)
vulnerability in privilege-escalation (CVE-2025-53209). Successful exploitation can lead to full system takeover.
|
| CVE-2025-52759 |
|
Cross-Site Scripting (XSS) in CVE-2025-52759 (CVE-2025-52759)
cross-site scripting in CVE-2025-52759 (CVE-2025-52759). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4081 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4081)
cross-site scripting in wordpress (CVE-2026-4081). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4080 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4080)
cross-site scripting in wordpress (CVE-2026-4080). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3620 |
|
Vulnerability in wordpress (CVE-2026-3620)
vulnerability in wordpress (CVE-2026-3620). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2425 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2425)
cross-site scripting in wordpress (CVE-2026-2425). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2382 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2382)
cross-site scripting in wordpress (CVE-2026-2382). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1450 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-1450)
cross-site scripting in wordpress (CVE-2026-1450). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1451 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-1451)
cross-site scripting in wordpress (CVE-2026-1451). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-5085 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2025-5085)
cross-site scripting in wordpress (CVE-2025-5085). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8885 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8885)
cross-site scripting in wordpress (CVE-2026-8885). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3514 |
|
Authorization Flaw in prefect (CVE-2026-3514)
vulnerability in prefect (CVE-2026-3514). Confidential information can be exposed externally.
|
| CVE-2026-8206 |
|
Privilege Escalation in wordpress (CVE-2026-8206)
vulnerability in wordpress (CVE-2026-8206). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3722 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3722)
cross-site scripting in wordpress (CVE-2026-3722). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3871 |
|
Vulnerability in dos (CVE-2026-3871)
vulnerability in dos (CVE-2026-3871). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3870 |
|
Vulnerability in dos (CVE-2026-3870)
vulnerability in dos (CVE-2026-3870). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10566 |
|
Vulnerability in deserialization (CVE-2026-10566)
vulnerability in deserialization (CVE-2026-10566). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10568 |
|
Vulnerability in sqli (CVE-2026-10568)
vulnerability in sqli (CVE-2026-10568). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10567 |
|
Cross-Site Scripting (XSS) in CVE-2026-10567 (CVE-2026-10567)
cross-site scripting in CVE-2026-10567 (CVE-2026-10567). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10100 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-10100)
cross-site scripting in wordpress (CVE-2026-10100). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10510 |
|
Cross-Site Scripting (XSS) in CVE-2026-10510 (CVE-2026-10510)
cross-site scripting in CVE-2026-10510 (CVE-2026-10510). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10529 |
|
Cross-Site Scripting (XSS) in CVE-2026-10529 (CVE-2026-10529)
cross-site scripting in CVE-2026-10529 (CVE-2026-10529). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10296 |
|
Vulnerability in sqli (CVE-2026-10296)
vulnerability in sqli (CVE-2026-10296). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10295 |
|
Vulnerability in dos (CVE-2026-10295)
vulnerability in dos (CVE-2026-10295). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25718 |
|
Vulnerability in privilege-escalation (CVE-2019-25718)
vulnerability in privilege-escalation (CVE-2019-25718). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10302 |
|
Vulnerability in sqli (CVE-2026-10302)
vulnerability in sqli (CVE-2026-10302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10514 |
|
Cross-Site Scripting (XSS) in CVE-2026-10514 (CVE-2026-10514)
cross-site scripting in CVE-2026-10514 (CVE-2026-10514). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10301 |
|
Cross-Site Scripting (XSS) in CVE-2026-10301 (CVE-2026-10301)
cross-site scripting in CVE-2026-10301 (CVE-2026-10301). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24782 |
|
SQL Injection in sqli (CVE-2026-24782)
SQL injection in sqli (CVE-2026-24782). Data can be tampered with by attackers.
|
| CVE-2026-24754 |
|
Cross-Site Scripting (XSS) in accellion (CVE-2026-24754)
cross-site scripting in accellion (CVE-2026-24754). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24752 |
|
Cross-Site Scripting (XSS) in accellion (CVE-2026-24752)
cross-site scripting in accellion (CVE-2026-24752). Confidential information can be exposed externally.
|
| CVE-2026-10297 |
|
Vulnerability in sqli (CVE-2026-10297)
vulnerability in sqli (CVE-2026-10297). Risk of unauthorized operations or information disclosure.
|