Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2025-36148 Cross-Site Scripting (XSS) in ibm (CVE-2025-36148)
cross-site scripting in ibm (CVE-2025-36148). Risk of unauthorized operations or information disclosure.
CVE-2025-36220 SQL Injection in sqli (CVE-2025-36220)
SQL injection in sqli (CVE-2025-36220). Risk of unauthorized operations or information disclosure.
CVE-2026-24162 Unsafe Deserialization in deserialization (CVE-2026-24162)
vulnerability in deserialization (CVE-2026-24162). Successful exploitation can lead to full system takeover.
CVE-2025-36126 Cross-Site Scripting (XSS) in ibm (CVE-2025-36126)
cross-site scripting in ibm (CVE-2025-36126). Risk of unauthorized operations or information disclosure.
CVE-2025-14290 SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-14290)
SSRF in ssrf (CVE-2025-14290). Risk of unauthorized operations or information disclosure.
CVE-2026-48692 Vulnerability in cpp (CVE-2026-48692)
vulnerability in cpp (CVE-2026-48692). Confidential information can be exposed externally.
CVE-2026-46620 Vulnerability in csrf (CVE-2026-46620)
vulnerability in csrf (CVE-2026-46620). Data can be tampered with by attackers. Mitigation: upgrade to `2.3.5` or later.
CVE-2026-40564 Vulnerability in apache (CVE-2026-40564)
vulnerability in apache (CVE-2026-40564). Confidential information can be exposed externally.
CVE-2026-25112 Vulnerability in privilege-escalation (CVE-2026-25112)
vulnerability in privilege-escalation (CVE-2026-25112). Successful exploitation can lead to full system takeover.
CVE-2026-9552 Vulnerability in sqli (CVE-2026-9552)
vulnerability in sqli (CVE-2026-9552). Risk of unauthorized operations or information disclosure.
CVE-2026-9551 Vulnerability in sqli (CVE-2026-9551)
vulnerability in sqli (CVE-2026-9551). Risk of unauthorized operations or information disclosure.
CVE-2026-9550 Path Traversal in path-traversal (CVE-2026-9550)
path traversal in path-traversal (CVE-2026-9550). Risk of unauthorized operations or information disclosure.
CVE-2026-4480 OS Command Injection in redhat (CVE-2026-4480)
OS command injection in redhat (CVE-2026-4480). Successful exploitation can lead to full system takeover.
CVE-2026-45247 KEV [KEV] Unsafe Deserialization in Mirasvit full-page-cache-warmer (CVE-2026-45247)
vulnerability in Mirasvit full-page-cache-warmer (CVE-2026-45247). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-42785 Code Injection in CVE-2026-42785 (CVE-2026-42785)
code injection in CVE-2026-42785 (CVE-2026-42785). Successful exploitation can lead to full system takeover.
CVE-2026-45082 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45082)
SSRF in ssrf (CVE-2026-45082). Confidential information can be exposed externally.
CVE-2026-40034 Command Injection in gix (CVE-2026-40034)
command injection in gix (CVE-2026-40034). Successful exploitation can lead to full system takeover. Exploitable via ``update``. Mitigation: upgrade to `0.83.0` or later.
CVE-2026-40033 Vulnerability in freerdp (CVE-2026-40033)
vulnerability in freerdp (CVE-2026-40033). Successful exploitation can lead to full system takeover.
CVE-2026-9542 Vulnerability in sqli (CVE-2026-9542)
vulnerability in sqli (CVE-2026-9542). Risk of unauthorized operations or information disclosure.
CVE-2026-9544 Vulnerability in sqli (CVE-2026-9544)
vulnerability in sqli (CVE-2026-9544). Risk of unauthorized operations or information disclosure.
CVE-2026-9540 Vulnerability in vllm (CVE-2026-9540)
vulnerability in vllm (CVE-2026-9540). Risk of unauthorized operations or information disclosure.
CVE-2026-8479 Vulnerability in dos (CVE-2026-8479)
vulnerability in dos (CVE-2026-8479). Risk of unauthorized operations or information disclosure.
CVE-2026-8174 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8174)
vulnerability in wordpress (CVE-2026-8174). Data can be tampered with by attackers.
CVE-2026-7310 Vulnerability in dos (CVE-2026-7310)
vulnerability in dos (CVE-2026-7310). Risk of unauthorized operations or information disclosure.
CVE-2026-48131 Vulnerability in dos (CVE-2026-48131)
vulnerability in dos (CVE-2026-48131). Successful exploitation can lead to full system takeover.
CVE-2026-48132 Out-of-Bounds Read in dos (CVE-2026-48132)
vulnerability in dos (CVE-2026-48132). Successful exploitation can lead to full system takeover.
CVE-2026-8047 Vulnerability in dos (CVE-2026-8047)
vulnerability in dos (CVE-2026-8047). Risk of unauthorized operations or information disclosure.
CVE-2026-39642 Vulnerability in CVE-2026-39642 (CVE-2026-39642)
vulnerability in CVE-2026-39642 (CVE-2026-39642). Risk of unauthorized operations or information disclosure.
CVE-2026-27427 Cross-Site Scripting (XSS) in CVE-2026-27427 (CVE-2026-27427)
cross-site scripting in CVE-2026-27427 (CVE-2026-27427). Risk of unauthorized operations or information disclosure.
CVE-2026-44468 Vulnerability in privilege-escalation (CVE-2026-44468)
vulnerability in privilege-escalation (CVE-2026-44468). Successful exploitation can lead to full system takeover.
CVE-2026-44469 Vulnerability in privilege-escalation (CVE-2026-44469)
vulnerability in privilege-escalation (CVE-2026-44469). Successful exploitation can lead to full system takeover.
CVE-2026-9496 Vulnerability in dos (CVE-2026-9496)
vulnerability in dos (CVE-2026-9496). Risk of unauthorized operations or information disclosure.
CVE-2026-9519 Cross-Site Scripting (XSS) in CVE-2026-9519 (CVE-2026-9519)
cross-site scripting in CVE-2026-9519 (CVE-2026-9519). Risk of unauthorized operations or information disclosure.
CVE-2026-9518 Cross-Site Scripting (XSS) in CVE-2026-9518 (CVE-2026-9518)
cross-site scripting in CVE-2026-9518 (CVE-2026-9518). Risk of unauthorized operations or information disclosure.
CVE-2025-71310 Vulnerability in CVE-2025-71310 (CVE-2025-71310)
vulnerability in CVE-2025-71310 (CVE-2025-71310). Risk of unauthorized operations or information disclosure.
CVE-2026-9527 Cross-Site Scripting (XSS) in c (CVE-2026-9527)
cross-site scripting in c (CVE-2026-9527). Risk of unauthorized operations or information disclosure.
CVE-2026-9520 Cross-Site Scripting (XSS) in blitz (CVE-2026-9520)
cross-site scripting in blitz (CVE-2026-9520). Risk of unauthorized operations or information disclosure.
CVE-2026-9526 Vulnerability in sqli (CVE-2026-9526)
vulnerability in sqli (CVE-2026-9526). Risk of unauthorized operations or information disclosure.
CVE-2026-9528 Vulnerability in sqli (CVE-2026-9528)
vulnerability in sqli (CVE-2026-9528). Risk of unauthorized operations or information disclosure.
CVE-2026-9525 Vulnerability in sqli (CVE-2026-9525)
vulnerability in sqli (CVE-2026-9525). Risk of unauthorized operations or information disclosure.
CVE-2026-9524 Vulnerability in sqli (CVE-2026-9524)
vulnerability in sqli (CVE-2026-9524). Risk of unauthorized operations or information disclosure.
CVE-2026-9523 Vulnerability in sqli (CVE-2026-9523)
vulnerability in sqli (CVE-2026-9523). Risk of unauthorized operations or information disclosure.
CVE-2026-45435 Cross-Site Scripting (XSS) in CVE-2026-45435 (CVE-2026-45435)
cross-site scripting in CVE-2026-45435 (CVE-2026-45435). Risk of unauthorized operations or information disclosure.
CVE-2026-45216 Vulnerability in privilege-escalation (CVE-2026-45216)
vulnerability in privilege-escalation (CVE-2026-45216). Successful exploitation can lead to full system takeover.
CVE-2026-45217 Vulnerability in CVE-2026-45217 (CVE-2026-45217)
vulnerability in CVE-2026-45217 (CVE-2026-45217). Risk of unauthorized operations or information disclosure.
CVE-2026-39436 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-39436)
vulnerability in csrf (CVE-2026-39436). Risk of unauthorized operations or information disclosure.
CVE-2026-48837 SQL Injection in sqli (CVE-2026-48837)
SQL injection in sqli (CVE-2026-48837). Confidential information can be exposed externally.
CVE-2026-42774 SQL Injection in sqli (CVE-2026-42774)
SQL injection in sqli (CVE-2026-42774). Confidential information can be exposed externally.
CVE-2026-42773 SQL Injection in sqli (CVE-2026-42773)
SQL injection in sqli (CVE-2026-42773). Confidential information can be exposed externally.
CVE-2025-62745 Cross-Site Scripting (XSS) in CVE-2025-62745 (CVE-2025-62745)
cross-site scripting in CVE-2025-62745 (CVE-2025-62745). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →