Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-9024 |
|
Cross-Site Scripting (XSS) in CVE-2026-9024 (CVE-2026-9024)
cross-site scripting in CVE-2026-9024 (CVE-2026-9024). Confidential information can be exposed externally.
|
| CVE-2026-7858 |
|
Unsafe Deserialization in deserialization (CVE-2026-7858)
vulnerability in deserialization (CVE-2026-7858). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49361 |
|
Vulnerability in org.apache.fluss:fluss-common (CVE-2026-49361)
vulnerability in org.apache.fluss:fluss-common (CVE-2026-49361). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.1-incubating` or later.
|
| CVE-2026-42253 |
|
Cross-Site Scripting (XSS) in activemq (CVE-2026-42253)
cross-site scripting in activemq (CVE-2026-42253). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.19.7, 6.2.6` or later.
|
| CVE-2026-42359 |
|
Unsafe Deserialization in apache-airflow (CVE-2026-42359)
vulnerability in apache-airflow (CVE-2026-42359). Successful exploitation can lead to full system takeover. Exploitable via `PATCH /api/v2/xcomEntries/{key}`. Mitigation: upgrade to `3.2.2` or later.
|
| CVE-2026-40546 |
|
SQL Injection in sqli (CVE-2026-40546)
SQL injection in sqli (CVE-2026-40546). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40549 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-40549)
vulnerability in csrf (CVE-2026-40549). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40547 |
|
Path Traversal in path-traversal (CVE-2026-40547)
path traversal in path-traversal (CVE-2026-40547). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40548 |
|
Unrestricted File Upload in path-traversal (CVE-2026-40548)
vulnerability in path-traversal (CVE-2026-40548). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40545 |
|
Cross-Site Scripting (XSS) in CVE-2026-40545 (CVE-2026-40545)
cross-site scripting in CVE-2026-40545 (CVE-2026-40545). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40544 |
|
Cross-Site Scripting (XSS) in CVE-2026-40544 (CVE-2026-40544)
cross-site scripting in CVE-2026-40544 (CVE-2026-40544). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10517 |
|
SSRF (Server-Side Request Forgery) in github.com/quay/claircore (CVE-2026-10517)
SSRF in github.com/quay/claircore (CVE-2026-10517). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10237 |
|
Vulnerability in sqli (CVE-2026-10237)
vulnerability in sqli (CVE-2026-10237). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10242 |
|
Vulnerability in sqli (CVE-2026-10242)
vulnerability in sqli (CVE-2026-10242). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10235 |
|
Vulnerability in sqli (CVE-2026-10235)
vulnerability in sqli (CVE-2026-10235). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10234 |
|
Cross-Site Scripting (XSS) in CVE-2026-10234 (CVE-2026-10234)
cross-site scripting in CVE-2026-10234 (CVE-2026-10234). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10228 |
|
Cross-Site Scripting (XSS) in CVE-2026-10228 (CVE-2026-10228)
cross-site scripting in CVE-2026-10228 (CVE-2026-10228). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10227 |
|
Vulnerability in sqli (CVE-2026-10227)
vulnerability in sqli (CVE-2026-10227). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10225 |
|
Vulnerability in sqli (CVE-2026-10225)
vulnerability in sqli (CVE-2026-10225). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10226 |
|
Vulnerability in sqli (CVE-2026-10226)
vulnerability in sqli (CVE-2026-10226). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48209 |
|
Cross-Site Scripting (XSS) in c (CVE-2026-48209)
cross-site scripting in c (CVE-2026-48209). Data can be tampered with by attackers.
|
| CVE-2026-48208 |
|
Vulnerability in dos (CVE-2026-48208)
vulnerability in dos (CVE-2026-48208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20456 |
|
Out-of-Bounds Write in dos (CVE-2026-20456)
out-of-bounds write in dos (CVE-2026-20456). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48188 |
|
Vulnerability in sqli (CVE-2026-48188)
vulnerability in sqli (CVE-2026-48188). Confidential information can be exposed externally.
|
| CVE-2026-10209 |
|
Vulnerability in sqli (CVE-2026-10209)
vulnerability in sqli (CVE-2026-10209). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10213 |
|
Path Traversal in path-traversal (CVE-2026-10213)
path traversal in path-traversal (CVE-2026-10213). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10208 |
|
Vulnerability in sqli (CVE-2026-10208)
vulnerability in sqli (CVE-2026-10208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10202 |
|
Vulnerability in sqli (CVE-2026-10202)
vulnerability in sqli (CVE-2026-10202). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10204 |
|
Vulnerability in sqli (CVE-2026-10204)
vulnerability in sqli (CVE-2026-10204). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10203 |
|
Vulnerability in sqli (CVE-2026-10203)
vulnerability in sqli (CVE-2026-10203). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-21182 KEV |
|
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core)...
|
| CVE-2026-10193 |
|
Vulnerability in sqli (CVE-2026-10193)
vulnerability in sqli (CVE-2026-10193). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10192 |
|
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
A vulnerability was identified in Tenda W12 3.0.0.7(4763). The affected element is the function...
|
| CVE-2026-10190 |
|
Vulnerability in dos (CVE-2026-10190)
vulnerability in dos (CVE-2026-10190). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10189 |
|
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
A vulnerability has been found in Tenda W12 3.0.0.7(4763). This vulnerability affects the...
|
| CVE-2026-10191 |
|
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
A vulnerability was determined in Tenda W12 3.0.0.7(4763). Impacted is the function...
|
| CVE-2026-10186 |
|
Vulnerability in sqli (CVE-2026-10186)
vulnerability in sqli (CVE-2026-10186). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10184 |
|
Vulnerability in sqli (CVE-2026-10184)
vulnerability in sqli (CVE-2026-10184). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10185 |
|
Vulnerability in sqli (CVE-2026-10185)
vulnerability in sqli (CVE-2026-10185). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49489 |
|
SQL Injection in sqli (CVE-2026-49489)
SQL injection in sqli (CVE-2026-49489). Confidential information can be exposed externally.
|
| CVE-2026-49490 |
|
SQL Injection in sqli (CVE-2026-49490)
SQL injection in sqli (CVE-2026-49490). Confidential information can be exposed externally.
|
| CVE-2026-10178 |
|
Vulnerability in sqli (CVE-2026-10178)
vulnerability in sqli (CVE-2026-10178). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10176 |
|
Vulnerability in sqli (CVE-2026-10176)
vulnerability in sqli (CVE-2026-10176). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10173 |
|
Cross-Site Scripting (XSS) in vue (CVE-2026-10173)
cross-site scripting in vue (CVE-2026-10173). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10171 |
|
Vulnerability in sqli (CVE-2026-10171)
vulnerability in sqli (CVE-2026-10171). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10170 |
|
Vulnerability in sqli (CVE-2026-10170)
vulnerability in sqli (CVE-2026-10170). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10155 |
|
Vulnerability in sqli (CVE-2026-10155)
vulnerability in sqli (CVE-2026-10155). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10153 |
|
Cross-Site Scripting (XSS) in CVE-2026-10153 (CVE-2026-10153)
cross-site scripting in CVE-2026-10153 (CVE-2026-10153). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8594 |
|
Vulnerability in dos (CVE-2026-8594)
vulnerability in dos (CVE-2026-8594). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25423 |
|
Vulnerability in dos (CVE-2018-25423)
vulnerability in dos (CVE-2018-25423). Risk of unauthorized operations or information disclosure.
|