Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-41013 |
|
Vulnerability in privilege-escalation (CVE-2026-41013)
vulnerability in privilege-escalation (CVE-2026-41013). Confidential information can be exposed externally.
|
| CVE-2026-10278 |
|
Path Traversal in path-traversal (CVE-2026-10278)
path traversal in path-traversal (CVE-2026-10278). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42679 |
|
Path Traversal in path-traversal (CVE-2026-42679)
path traversal in path-traversal (CVE-2026-42679). Confidential information can be exposed externally.
|
| CVE-2026-42678 |
|
Cross-Site Scripting (XSS) in CVE-2026-42678 (CVE-2026-42678)
cross-site scripting in CVE-2026-42678 (CVE-2026-42678). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42676 |
|
Cross-Site Scripting (XSS) in CVE-2026-42676 (CVE-2026-42676)
cross-site scripting in CVE-2026-42676 (CVE-2026-42676). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42672 |
|
SQL Injection in sqli (CVE-2026-42672)
SQL injection in sqli (CVE-2026-42672). Confidential information can be exposed externally.
|
| CVE-2026-42674 |
|
Vulnerability in CVE-2026-42674 (CVE-2026-42674)
vulnerability in CVE-2026-42674 (CVE-2026-42674). Data can be tampered with by attackers.
|
| CVE-2026-38950 |
|
Unsafe Deserialization in deserialization (CVE-2026-38950)
vulnerability in deserialization (CVE-2026-38950). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10118 |
|
Vulnerability in dos (CVE-2026-10118)
vulnerability in dos (CVE-2026-10118). Successful exploitation can lead to full system takeover. Exploitable via ``tilingPatternFill``.
|
| CVE-2026-10265 |
|
Vulnerability in sqli (CVE-2026-10265)
vulnerability in sqli (CVE-2026-10265). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48879 |
|
Vulnerability in privilege-escalation (CVE-2026-48879)
vulnerability in privilege-escalation (CVE-2026-48879). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42680 |
|
Vulnerability in privilege-escalation (CVE-2026-42680)
vulnerability in privilege-escalation (CVE-2026-42680). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48866 |
|
Path Traversal in path-traversal (CVE-2026-48866)
path traversal in path-traversal (CVE-2026-48866). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48865 |
|
Cross-Site Scripting (XSS) in CVE-2026-48865 (CVE-2026-48865)
cross-site scripting in CVE-2026-48865 (CVE-2026-48865). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48559 |
|
Cross-Site Scripting (XSS) in cpp (CVE-2026-48559)
cross-site scripting in cpp (CVE-2026-48559). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42681 |
|
Cross-Site Scripting (XSS) in CVE-2026-42681 (CVE-2026-42681)
cross-site scripting in CVE-2026-42681 (CVE-2026-42681). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48839 |
|
Cross-Site Scripting (XSS) in CVE-2026-48839 (CVE-2026-48839)
cross-site scripting in CVE-2026-48839 (CVE-2026-48839). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42683 |
|
Cross-Site Scripting (XSS) in CVE-2026-42683 (CVE-2026-42683)
cross-site scripting in CVE-2026-42683 (CVE-2026-42683). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8931 |
|
Code Injection in CVE-2026-8931 (CVE-2026-8931)
code injection in CVE-2026-8931 (CVE-2026-8931). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10261 |
|
Vulnerability in sqli (CVE-2026-10261)
vulnerability in sqli (CVE-2026-10261). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10262 |
|
Vulnerability in sqli (CVE-2026-10262)
vulnerability in sqli (CVE-2026-10262). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10263 |
|
Vulnerability in sqli (CVE-2026-10263)
vulnerability in sqli (CVE-2026-10263). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10260 |
|
Vulnerability in sqli (CVE-2026-10260)
vulnerability in sqli (CVE-2026-10260). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10264 |
|
Path Traversal in path-traversal (CVE-2026-10264)
path traversal in path-traversal (CVE-2026-10264). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0826 |
|
Vulnerability in CVE-2026-0826 (CVE-2026-0826)
vulnerability in CVE-2026-0826 (CVE-2026-0826). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60483 |
|
Vulnerability in c (CVE-2025-60483)
vulnerability in c (CVE-2025-60483). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-55664 |
|
Vulnerability in c (CVE-2025-55664)
vulnerability in c (CVE-2025-55664). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60495 |
|
Vulnerability in c (CVE-2025-60495)
vulnerability in c (CVE-2025-60495). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60486 |
|
Use-After-Free in c (CVE-2025-60486)
vulnerability in c (CVE-2025-60486). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60485 |
|
Vulnerability in c (CVE-2025-60485)
vulnerability in c (CVE-2025-60485). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60481 |
|
Vulnerability in c (CVE-2025-60481)
vulnerability in c (CVE-2025-60481). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-12914 |
|
Cross-Site Scripting (XSS) in CVE-2024-12914 (CVE-2024-12914)
cross-site scripting in CVE-2024-12914 (CVE-2024-12914). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-40646 |
|
Path Traversal in path-traversal (CVE-2024-40646)
path traversal in path-traversal (CVE-2024-40646). Confidential information can be exposed externally.
|
| CVE-2026-10257 |
|
Vulnerability in sqli (CVE-2026-10257)
vulnerability in sqli (CVE-2026-10257). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10258 |
|
Vulnerability in sqli (CVE-2026-10258)
vulnerability in sqli (CVE-2026-10258). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10532 |
|
Unsafe Deserialization in ch.qos.logback:logback-core (CVE-2026-10532)
vulnerability in ch.qos.logback:logback-core (CVE-2026-10532). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.5.35` or later.
|
| CVE-2026-10251 |
|
Vulnerability in sqli (CVE-2026-10251)
vulnerability in sqli (CVE-2026-10251). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10252 |
|
Vulnerability in sqli (CVE-2026-10252)
vulnerability in sqli (CVE-2026-10252). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10253 |
|
Vulnerability in sqli (CVE-2026-10253)
vulnerability in sqli (CVE-2026-10253). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10256 |
|
Vulnerability in sqli (CVE-2026-10256)
vulnerability in sqli (CVE-2026-10256). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49328 |
|
SSRF (Server-Side Request Forgery) in org.apache.fesod:fesod-sheet (CVE-2026-49328)
SSRF in org.apache.fesod:fesod-sheet (CVE-2026-49328). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.0.2-incubating` or later.
|
| CVE-2026-10249 |
|
Vulnerability in sqli (CVE-2026-10249)
vulnerability in sqli (CVE-2026-10249). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10250 |
|
Vulnerability in sqli (CVE-2026-10250)
vulnerability in sqli (CVE-2026-10250). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25599 |
|
Cross-Site Scripting (XSS) in CVE-2026-25599 (CVE-2026-25599)
cross-site scripting in CVE-2026-25599 (CVE-2026-25599). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10247 |
|
Cross-Site Scripting (XSS) in CVE-2026-10247 (CVE-2026-10247)
cross-site scripting in CVE-2026-10247 (CVE-2026-10247). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10246 |
|
Cross-Site Scripting (XSS) in CVE-2026-10246 (CVE-2026-10246)
cross-site scripting in CVE-2026-10246 (CVE-2026-10246). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10245 |
|
Cross-Site Scripting (XSS) in CVE-2026-10245 (CVE-2026-10245)
cross-site scripting in CVE-2026-10245 (CVE-2026-10245). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10244 |
|
Cross-Site Scripting (XSS) in CVE-2026-10244 (CVE-2026-10244)
cross-site scripting in CVE-2026-10244 (CVE-2026-10244). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48827 |
|
Path Traversal in apache (CVE-2026-48827)
path traversal in apache (CVE-2026-48827). Confidential information can be exposed externally.
|
| CVE-2026-8474 |
|
Cross-Site Scripting (XSS) in CVE-2026-8474 (CVE-2026-8474)
cross-site scripting in CVE-2026-8474 (CVE-2026-8474). Risk of unauthorized operations or information disclosure.
|