Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-45498 KEV Microsoft Defender Denial of Service Vulnerability
Microsoft Defender Denial of Service Vulnerability
CVE-2026-42383 SQL Injection in sqli (CVE-2026-42383)
SQL injection in sqli (CVE-2026-42383). Confidential information can be exposed externally.
CVE-2026-29518 Vulnerability in privilege-escalation (CVE-2026-29518)
vulnerability in privilege-escalation (CVE-2026-29518). Successful exploitation can lead to full system takeover.
CVE-2026-24573 Cross-Site Scripting (XSS) in CVE-2026-24573 (CVE-2026-24573)
cross-site scripting in CVE-2026-24573 (CVE-2026-24573). Risk of unauthorized operations or information disclosure.
CVE-2025-11954 Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-11954)
vulnerability in csrf (CVE-2025-11954). Successful exploitation can lead to full system takeover.
CVE-2026-44390 Vulnerability in dos (CVE-2026-44390)
vulnerability in dos (CVE-2026-44390). Risk of unauthorized operations or information disclosure.
CVE-2026-9064 Vulnerability in dos (CVE-2026-9064)
vulnerability in dos (CVE-2026-9064). Risk of unauthorized operations or information disclosure.
CVE-2026-41292 Vulnerability in dos (CVE-2026-41292)
vulnerability in dos (CVE-2026-41292). Risk of unauthorized operations or information disclosure.
CVE-2026-42923 Vulnerability in dos (CVE-2026-42923)
vulnerability in dos (CVE-2026-42923). Risk of unauthorized operations or information disclosure.
CVE-2026-42959 Vulnerability in c (CVE-2026-42959)
vulnerability in c (CVE-2026-42959). Risk of unauthorized operations or information disclosure.
CVE-2026-32792 Out-of-Bounds Read in dos (CVE-2026-32792)
vulnerability in dos (CVE-2026-32792). Risk of unauthorized operations or information disclosure.
CVE-2026-33278 Use-After-Free in dos (CVE-2026-33278)
vulnerability in dos (CVE-2026-33278). Successful exploitation can lead to full system takeover.
CVE-2026-9065 SQL Injection in wordpress (CVE-2026-9065)
SQL injection in wordpress (CVE-2026-9065). Risk of unauthorized operations or information disclosure.
CVE-2026-9059 SQL Injection in sqli (CVE-2026-9059)
SQL injection in sqli (CVE-2026-9059). Risk of unauthorized operations or information disclosure.
CVE-2026-6405 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6405)
vulnerability in wordpress (CVE-2026-6405). Risk of unauthorized operations or information disclosure.
CVE-2026-5776 Vulnerability in wordpress (CVE-2026-5776)
vulnerability in wordpress (CVE-2026-5776). Risk of unauthorized operations or information disclosure.
CVE-2026-2955 Cross-Site Scripting (XSS) in wordpress (CVE-2026-2955)
cross-site scripting in wordpress (CVE-2026-2955). Risk of unauthorized operations or information disclosure.
CVE-2026-9056 Vulnerability in CVE-2026-9056 (CVE-2026-9056)
vulnerability in CVE-2026-9056 (CVE-2026-9056). Risk of unauthorized operations or information disclosure.
CVE-2026-9003 SQL Injection in sqli (CVE-2026-9003)
SQL injection in sqli (CVE-2026-9003). Confidential information can be exposed externally.
CVE-2026-9010 SQL Injection in wordpress (CVE-2026-9010)
SQL injection in wordpress (CVE-2026-9010). Confidential information can be exposed externally.
CVE-2026-7460 Cross-Site Scripting (XSS) in CVE-2026-7460 (CVE-2026-7460)
cross-site scripting in CVE-2026-7460 (CVE-2026-7460). Risk of unauthorized operations or information disclosure.
CVE-2026-7637 Unsafe Deserialization in wordpress (CVE-2026-7637)
vulnerability in wordpress (CVE-2026-7637). Successful exploitation can lead to full system takeover.
CVE-2026-24214 Vulnerability in dos (CVE-2026-24214)
vulnerability in dos (CVE-2026-24214). Successful exploitation can lead to full system takeover.
CVE-2026-24215 Vulnerability in dos (CVE-2026-24215)
vulnerability in dos (CVE-2026-24215). Risk of unauthorized operations or information disclosure.
CVE-2026-24210 Vulnerability in dos (CVE-2026-24210)
vulnerability in dos (CVE-2026-24210). Risk of unauthorized operations or information disclosure.
CVE-2026-24213 Out-of-Bounds Read in dos (CVE-2026-24213)
vulnerability in dos (CVE-2026-24213). Successful exploitation can lead to full system takeover.
CVE-2026-24209 Path Traversal in path-traversal (CVE-2026-24209)
path traversal in path-traversal (CVE-2026-24209). Risk of unauthorized operations or information disclosure.
CVE-2026-24208 Path Traversal in path-traversal (CVE-2026-24208)
path traversal in path-traversal (CVE-2026-24208). Risk of unauthorized operations or information disclosure.
CVE-2026-24207 Vulnerability in dos (CVE-2026-24207)
vulnerability in dos (CVE-2026-24207). Successful exploitation can lead to full system takeover.
CVE-2026-24206 Vulnerability in dos (CVE-2026-24206)
vulnerability in dos (CVE-2026-24206). Risk of unauthorized operations or information disclosure.
CVE-2026-24160 Vulnerability in dos (CVE-2026-24160)
vulnerability in dos (CVE-2026-24160). Risk of unauthorized operations or information disclosure.
CVE-2026-24163 Unsafe Deserialization in dos (CVE-2026-24163)
vulnerability in dos (CVE-2026-24163). Successful exploitation can lead to full system takeover.
CVE-2026-24142 Unsafe Deserialization in deserialization (CVE-2026-24142)
vulnerability in deserialization (CVE-2026-24142). Risk of unauthorized operations or information disclosure.
CVE-2025-33255 Unsafe Deserialization in dos (CVE-2025-33255)
vulnerability in dos (CVE-2025-33255). Successful exploitation can lead to full system takeover.
CVE-2026-8685 SQL Injection in wordpress (CVE-2026-8685)
SQL injection in wordpress (CVE-2026-8685). Confidential information can be exposed externally.
CVE-2026-8624 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8624)
cross-site scripting in wordpress (CVE-2026-8624). Risk of unauthorized operations or information disclosure.
CVE-2026-8626 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8626)
cross-site scripting in wordpress (CVE-2026-8626). Risk of unauthorized operations or information disclosure.
CVE-2026-8627 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8627)
cross-site scripting in wordpress (CVE-2026-8627). Risk of unauthorized operations or information disclosure.
CVE-2026-7462 Cross-Site Scripting (XSS) in wordpress (CVE-2026-7462)
cross-site scripting in wordpress (CVE-2026-7462). Risk of unauthorized operations or information disclosure. Exploitable via ``page``.
CVE-2026-8038 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8038)
cross-site scripting in wordpress (CVE-2026-8038). Risk of unauthorized operations or information disclosure.
CVE-2026-7467 Privilege Escalation in wordpress (CVE-2026-7467)
vulnerability in wordpress (CVE-2026-7467). Successful exploitation can lead to full system takeover.
CVE-2026-7284 Privilege Escalation in wordpress (CVE-2026-7284)
vulnerability in wordpress (CVE-2026-7284). Successful exploitation can lead to full system takeover.
CVE-2026-7472 SQL Injection in wordpress (CVE-2026-7472)
SQL injection in wordpress (CVE-2026-7472). Confidential information can be exposed externally.
CVE-2026-6404 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6404)
cross-site scripting in wordpress (CVE-2026-6404). Risk of unauthorized operations or information disclosure.
CVE-2026-6549 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6549)
cross-site scripting in wordpress (CVE-2026-6549). Risk of unauthorized operations or information disclosure. Exploitable via ``vc_enamad_namad``.
CVE-2026-6555 Unrestricted File Upload in wordpress (CVE-2026-6555)
vulnerability in wordpress (CVE-2026-6555). Successful exploitation can lead to full system takeover.
CVE-2026-6456 Authentication Bypass in wordpress (CVE-2026-6456)
authentication bypass in wordpress (CVE-2026-6456). Successful exploitation can lead to full system takeover. Exploitable via ``rememberLogin``.
CVE-2026-5293 Cross-Site Scripting (XSS) in wordpress (CVE-2026-5293)
cross-site scripting in wordpress (CVE-2026-5293). Risk of unauthorized operations or information disclosure.
CVE-2026-6395 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6395)
vulnerability in wordpress (CVE-2026-6395). Risk of unauthorized operations or information disclosure.
CVE-2026-6397 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6397)
cross-site scripting in wordpress (CVE-2026-6397). Risk of unauthorized operations or information disclosure. Exploitable via ``readmoretext``.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →