Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-45498 KEV |
|
Microsoft Defender Denial of Service Vulnerability
Microsoft Defender Denial of Service Vulnerability
|
| CVE-2026-42383 |
|
SQL Injection in sqli (CVE-2026-42383)
SQL injection in sqli (CVE-2026-42383). Confidential information can be exposed externally.
|
| CVE-2026-29518 |
|
Vulnerability in privilege-escalation (CVE-2026-29518)
vulnerability in privilege-escalation (CVE-2026-29518). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24573 |
|
Cross-Site Scripting (XSS) in CVE-2026-24573 (CVE-2026-24573)
cross-site scripting in CVE-2026-24573 (CVE-2026-24573). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-11954 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-11954)
vulnerability in csrf (CVE-2025-11954). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44390 |
|
Vulnerability in dos (CVE-2026-44390)
vulnerability in dos (CVE-2026-44390). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9064 |
|
Vulnerability in dos (CVE-2026-9064)
vulnerability in dos (CVE-2026-9064). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41292 |
|
Vulnerability in dos (CVE-2026-41292)
vulnerability in dos (CVE-2026-41292). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42923 |
|
Vulnerability in dos (CVE-2026-42923)
vulnerability in dos (CVE-2026-42923). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42959 |
|
Vulnerability in c (CVE-2026-42959)
vulnerability in c (CVE-2026-42959). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32792 |
|
Out-of-Bounds Read in dos (CVE-2026-32792)
vulnerability in dos (CVE-2026-32792). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33278 |
|
Use-After-Free in dos (CVE-2026-33278)
vulnerability in dos (CVE-2026-33278). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9065 |
|
SQL Injection in wordpress (CVE-2026-9065)
SQL injection in wordpress (CVE-2026-9065). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9059 |
|
SQL Injection in sqli (CVE-2026-9059)
SQL injection in sqli (CVE-2026-9059). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6405 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6405)
vulnerability in wordpress (CVE-2026-6405). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5776 |
|
Vulnerability in wordpress (CVE-2026-5776)
vulnerability in wordpress (CVE-2026-5776). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2955 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-2955)
cross-site scripting in wordpress (CVE-2026-2955). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9056 |
|
Vulnerability in CVE-2026-9056 (CVE-2026-9056)
vulnerability in CVE-2026-9056 (CVE-2026-9056). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9003 |
|
SQL Injection in sqli (CVE-2026-9003)
SQL injection in sqli (CVE-2026-9003). Confidential information can be exposed externally.
|
| CVE-2026-9010 |
|
SQL Injection in wordpress (CVE-2026-9010)
SQL injection in wordpress (CVE-2026-9010). Confidential information can be exposed externally.
|
| CVE-2026-7460 |
|
Cross-Site Scripting (XSS) in CVE-2026-7460 (CVE-2026-7460)
cross-site scripting in CVE-2026-7460 (CVE-2026-7460). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7637 |
|
Unsafe Deserialization in wordpress (CVE-2026-7637)
vulnerability in wordpress (CVE-2026-7637). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24214 |
|
Vulnerability in dos (CVE-2026-24214)
vulnerability in dos (CVE-2026-24214). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24215 |
|
Vulnerability in dos (CVE-2026-24215)
vulnerability in dos (CVE-2026-24215). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24210 |
|
Vulnerability in dos (CVE-2026-24210)
vulnerability in dos (CVE-2026-24210). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24213 |
|
Out-of-Bounds Read in dos (CVE-2026-24213)
vulnerability in dos (CVE-2026-24213). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24209 |
|
Path Traversal in path-traversal (CVE-2026-24209)
path traversal in path-traversal (CVE-2026-24209). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24208 |
|
Path Traversal in path-traversal (CVE-2026-24208)
path traversal in path-traversal (CVE-2026-24208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24207 |
|
Vulnerability in dos (CVE-2026-24207)
vulnerability in dos (CVE-2026-24207). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24206 |
|
Vulnerability in dos (CVE-2026-24206)
vulnerability in dos (CVE-2026-24206). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24160 |
|
Vulnerability in dos (CVE-2026-24160)
vulnerability in dos (CVE-2026-24160). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24163 |
|
Unsafe Deserialization in dos (CVE-2026-24163)
vulnerability in dos (CVE-2026-24163). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24142 |
|
Unsafe Deserialization in deserialization (CVE-2026-24142)
vulnerability in deserialization (CVE-2026-24142). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-33255 |
|
Unsafe Deserialization in dos (CVE-2025-33255)
vulnerability in dos (CVE-2025-33255). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8685 |
|
SQL Injection in wordpress (CVE-2026-8685)
SQL injection in wordpress (CVE-2026-8685). Confidential information can be exposed externally.
|
| CVE-2026-8624 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8624)
cross-site scripting in wordpress (CVE-2026-8624). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8626 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8626)
cross-site scripting in wordpress (CVE-2026-8626). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8627 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8627)
cross-site scripting in wordpress (CVE-2026-8627). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7462 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7462)
cross-site scripting in wordpress (CVE-2026-7462). Risk of unauthorized operations or information disclosure. Exploitable via ``page``.
|
| CVE-2026-8038 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8038)
cross-site scripting in wordpress (CVE-2026-8038). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7467 |
|
Privilege Escalation in wordpress (CVE-2026-7467)
vulnerability in wordpress (CVE-2026-7467). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7284 |
|
Privilege Escalation in wordpress (CVE-2026-7284)
vulnerability in wordpress (CVE-2026-7284). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7472 |
|
SQL Injection in wordpress (CVE-2026-7472)
SQL injection in wordpress (CVE-2026-7472). Confidential information can be exposed externally.
|
| CVE-2026-6404 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6404)
cross-site scripting in wordpress (CVE-2026-6404). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6549 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6549)
cross-site scripting in wordpress (CVE-2026-6549). Risk of unauthorized operations or information disclosure. Exploitable via ``vc_enamad_namad``.
|
| CVE-2026-6555 |
|
Unrestricted File Upload in wordpress (CVE-2026-6555)
vulnerability in wordpress (CVE-2026-6555). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6456 |
|
Authentication Bypass in wordpress (CVE-2026-6456)
authentication bypass in wordpress (CVE-2026-6456). Successful exploitation can lead to full system takeover. Exploitable via ``rememberLogin``.
|
| CVE-2026-5293 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-5293)
cross-site scripting in wordpress (CVE-2026-5293). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6395 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6395)
vulnerability in wordpress (CVE-2026-6395). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6397 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6397)
cross-site scripting in wordpress (CVE-2026-6397). Risk of unauthorized operations or information disclosure. Exploitable via ``readmoretext``.
|