Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-58379 |
|
Vulnerability in dos (CVE-2026-58379)
vulnerability in dos (CVE-2026-58379). Successful exploitation can lead to full system takeover.
|
| CVE-2026-14612 |
|
Out-of-Bounds Write in dos (CVE-2026-14612)
out-of-bounds write in dos (CVE-2026-14612). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46465 |
|
Vulnerability in dos (CVE-2026-46465)
vulnerability in dos (CVE-2026-46465). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46463 |
|
Vulnerability in dos (CVE-2026-46463)
vulnerability in dos (CVE-2026-46463). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41124 |
|
Path Traversal in path-traversal (CVE-2026-41124)
path traversal in path-traversal (CVE-2026-41124). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4321 |
|
SQL Injection in sqli (CVE-2026-4321)
SQL injection in sqli (CVE-2026-4321). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4322 |
|
Cross-Site Scripting (XSS) in CVE-2026-4322 (CVE-2026-4322)
cross-site scripting in CVE-2026-4322 (CVE-2026-4322). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47896 |
|
Path Traversal in csharp (CVE-2026-47896)
path traversal in csharp (CVE-2026-47896). Confidential information can be exposed externally.
|
| CVE-2026-35159 |
|
Vulnerability in CVE-2026-35159 (CVE-2026-35159)
vulnerability in CVE-2026-35159 (CVE-2026-35159). Data can be tampered with by attackers.
|
| CVE-2026-9756 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9756)
cross-site scripting in wordpress (CVE-2026-9756). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4804 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4804)
cross-site scripting in wordpress (CVE-2026-4804). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9148 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9148)
cross-site scripting in wordpress (CVE-2026-9148). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8351 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8351)
cross-site scripting in wordpress (CVE-2026-8351). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47897 |
|
Path Traversal in csharp (CVE-2026-47897)
path traversal in csharp (CVE-2026-47897). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4967 |
|
Vulnerability in dos (CVE-2026-4967)
vulnerability in dos (CVE-2026-4967). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11352 |
|
Vulnerability in dos (CVE-2026-11352)
vulnerability in dos (CVE-2026-11352). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9725 |
|
Path Traversal in wordpress (CVE-2026-9725)
path traversal in wordpress (CVE-2026-9725). Data can be tampered with by attackers.
|
| CVE-2026-9626 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9626)
cross-site scripting in wordpress (CVE-2026-9626). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8892 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8892)
cross-site scripting in wordpress (CVE-2026-8892). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8489 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8489)
cross-site scripting in wordpress (CVE-2026-8489). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14352 |
|
Path Traversal in wordpress (CVE-2026-14352)
path traversal in wordpress (CVE-2026-14352). Confidential information can be exposed externally. Exploitable via `Referer header`.
|
| CVE-2026-13040 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-13040)
cross-site scripting in wordpress (CVE-2026-13040). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11397 |
|
SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-11397)
SSRF in wordpress (CVE-2026-11397). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14327 |
|
Path Traversal in wordpress (CVE-2026-14327)
path traversal in wordpress (CVE-2026-14327). Confidential information can be exposed externally.
|
| CVE-2022-4990 |
|
Vulnerability in privilege-escalation (CVE-2022-4990)
vulnerability in privilege-escalation (CVE-2022-4990). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-4989 |
|
Vulnerability in privilege-escalation (CVE-2022-4989)
vulnerability in privilege-escalation (CVE-2022-4989). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12920 |
|
SQL Injection in wordpress (CVE-2026-12920)
SQL injection in wordpress (CVE-2026-12920). Confidential information can be exposed externally.
|
| CVE-2026-12731 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-12731)
cross-site scripting in wordpress (CVE-2026-12731). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12734 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-12734)
cross-site scripting in wordpress (CVE-2026-12734). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54477 |
|
Vulnerability in CVE-2026-54477 (CVE-2026-54477)
vulnerability in CVE-2026-54477 (CVE-2026-54477). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13377 |
|
Cross-Site Scripting (XSS) in CVE-2026-13377 (CVE-2026-13377)
cross-site scripting in CVE-2026-13377 (CVE-2026-13377). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13374 |
|
Cross-Site Scripting (XSS) in CVE-2026-13374 (CVE-2026-13374)
cross-site scripting in CVE-2026-13374 (CVE-2026-13374). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13373 |
|
Cross-Site Scripting (XSS) in CVE-2026-13373 (CVE-2026-13373)
cross-site scripting in CVE-2026-13373 (CVE-2026-13373). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13376 |
|
Cross-Site Scripting (XSS) in CVE-2026-13376 (CVE-2026-13376)
cross-site scripting in CVE-2026-13376 (CVE-2026-13376). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13375 |
|
Cross-Site Scripting (XSS) in CVE-2026-13375 (CVE-2026-13375)
cross-site scripting in CVE-2026-13375 (CVE-2026-13375). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13371 |
|
Unsafe Deserialization in deserialization (CVE-2026-13371)
vulnerability in deserialization (CVE-2026-13371). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13084 |
|
Vulnerability in dos (CVE-2026-13084)
vulnerability in dos (CVE-2026-13084). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13054 |
|
Path Traversal in path-traversal (CVE-2026-13054)
path traversal in path-traversal (CVE-2026-13054). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13079 |
|
Vulnerability in privilege-escalation (CVE-2026-13079)
vulnerability in privilege-escalation (CVE-2026-13079). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57100 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-57100)
SSRF in ssrf (CVE-2026-57100). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45499 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45499)
SSRF in ssrf (CVE-2026-45499). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54998 |
|
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate...
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate...
|
| CVE-2026-50722 |
|
Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly...
Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly...
|
| CVE-2026-50721 |
|
Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify...
Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify...
|
| CVE-2026-12413 |
|
An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart....
An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart....
|
| CVE-2026-58460 |
|
Path Traversal in react (CVE-2026-58460)
path traversal in react (CVE-2026-58460). Data can be tampered with by attackers.
|
| CVE-2026-52191 |
|
Vulnerability in dos (CVE-2026-52191)
vulnerability in dos (CVE-2026-52191). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52188 |
|
Buffer Overflow in dos (CVE-2026-52188)
vulnerability in dos (CVE-2026-52188). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52189 |
|
Vulnerability in dos (CVE-2026-52189)
vulnerability in dos (CVE-2026-52189). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52192 |
|
Vulnerability in dos (CVE-2026-52192)
vulnerability in dos (CVE-2026-52192). Risk of unauthorized operations or information disclosure.
|