Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2026-8125 Vulnerability in sqli (CVE-2026-8125)
vulnerability in sqli (CVE-2026-8125). Risk of unauthorized operations or information disclosure.
CVE-2026-8123 Vulnerability in c (CVE-2026-8123)
vulnerability in c (CVE-2026-8123). Risk of unauthorized operations or information disclosure.
CVE-2026-8122 Vulnerability in c (CVE-2026-8122)
vulnerability in c (CVE-2026-8122). Risk of unauthorized operations or information disclosure.
CVE-2026-8121 Vulnerability in c (CVE-2026-8121)
vulnerability in c (CVE-2026-8121). Risk of unauthorized operations or information disclosure.
CVE-2026-8120 Vulnerability in c (CVE-2026-8120)
vulnerability in c (CVE-2026-8120). Risk of unauthorized operations or information disclosure.
CVE-2026-8119 Vulnerability in c (CVE-2026-8119)
vulnerability in c (CVE-2026-8119). Risk of unauthorized operations or information disclosure.
CVE-2026-8117 Cross-Site Scripting (XSS) in CVE-2026-8117 (CVE-2026-8117)
cross-site scripting in CVE-2026-8117 (CVE-2026-8117). Risk of unauthorized operations or information disclosure.
CVE-2026-8116 Path Traversal in path-traversal (CVE-2026-8116)
path traversal in path-traversal (CVE-2026-8116). Risk of unauthorized operations or information disclosure.
CVE-2026-8115 Path Traversal in short-video-maker (CVE-2026-8115)
path traversal in short-video-maker (CVE-2026-8115). Risk of unauthorized operations or information disclosure.
CVE-2026-42880 Information Disclosure in argo-cd (CVE-2026-42880)
vulnerability in argo-cd (CVE-2026-42880). Confidential information can be exposed externally.
CVE-2026-8114 Vulnerability in sqli (CVE-2026-8114)
vulnerability in sqli (CVE-2026-8114). Risk of unauthorized operations or information disclosure.
CVE-2026-8113 Path Traversal in path-traversal (CVE-2026-8113)
path traversal in path-traversal (CVE-2026-8113). Risk of unauthorized operations or information disclosure.
CVE-2026-8034 Vulnerability in ssrf (CVE-2026-8034)
vulnerability in ssrf (CVE-2026-8034). Successful exploitation can lead to full system takeover.
CVE-2026-7541 Vulnerability in dos (CVE-2026-7541)
vulnerability in dos (CVE-2026-7541). Risk of unauthorized operations or information disclosure.
CVE-2026-6736 Vulnerability in github (CVE-2026-6736)
vulnerability in github (CVE-2026-6736). Risk of unauthorized operations or information disclosure.
CVE-2026-40214 Vulnerability in openstack-cyborg (CVE-2026-40214)
vulnerability in openstack-cyborg (CVE-2026-40214). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `16.0.1` or later.
CVE-2026-41105 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-41105)
SSRF in ssrf (CVE-2026-41105). Confidential information can be exposed externally.
CVE-2026-41929 Cross-Site Scripting (XSS) in CVE-2026-41929 (CVE-2026-41929)
cross-site scripting in CVE-2026-41929 (CVE-2026-41929). Risk of unauthorized operations or information disclosure.
CVE-2026-33109 Vulnerability in apache (CVE-2026-33109)
vulnerability in apache (CVE-2026-33109). Successful exploitation can lead to full system takeover.
CVE-2026-33844 Vulnerability in apache (CVE-2026-33844)
vulnerability in apache (CVE-2026-33844). Successful exploitation can lead to full system takeover.
CVE-2026-33823 Vulnerability in microsoft (CVE-2026-33823)
vulnerability in microsoft (CVE-2026-33823). Confidential information can be exposed externally.
CVE-2026-35428 Command Injection in microsoft (CVE-2026-35428)
command injection in microsoft (CVE-2026-35428). Successful exploitation can lead to full system takeover.
CVE-2026-32207 Cross-Site Scripting (XSS) in microsoft (CVE-2026-32207)
cross-site scripting in microsoft (CVE-2026-32207). Successful exploitation can lead to full system takeover.
CVE-2026-8097 Vulnerability in sqli (CVE-2026-8097)
vulnerability in sqli (CVE-2026-8097). Risk of unauthorized operations or information disclosure.
CVE-2026-8098 Vulnerability in sqli (CVE-2026-8098)
vulnerability in sqli (CVE-2026-8098). Risk of unauthorized operations or information disclosure.
CVE-2026-42449 SSRF (Server-Side Request Forgery) in n8n-mcp (CVE-2026-42449)
SSRF in n8n-mcp (CVE-2026-42449). Confidential information can be exposed externally. Exploitable via ``N8NDocumentationMCPServer``. Mitigation: upgrade to `2.47.14` or later.
CVE-2026-41691 Path Traversal in i18next-http-backend (CVE-2026-41691)
path traversal in i18next-http-backend (CVE-2026-41691). Risk of unauthorized operations or information disclosure. Exploitable via ``lng``. Mitigation: upgrade to `3.0.5` or later.
CVE-2026-42499 Vulnerability in golang (CVE-2026-42499)
vulnerability in golang (CVE-2026-42499). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.25.10, 1.26.3` or later.
CVE-2026-39823 Cross-Site Scripting (XSS) in golang (CVE-2026-39823)
cross-site scripting in golang (CVE-2026-39823). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.25.10, 1.26.3` or later.
CVE-2026-41902 Vulnerability in laravel (CVE-2026-41902)
vulnerability in laravel (CVE-2026-41902). Confidential information can be exposed externally. Exploitable via `Referer header`.
CVE-2026-36387 Unrestricted File Upload in CVE-2026-36387 (CVE-2026-36387)
vulnerability in CVE-2026-36387 (CVE-2026-36387). Risk of unauthorized operations or information disclosure.
CVE-2026-36388 Cross-Site Scripting (XSS) in CVE-2026-36388 (CVE-2026-36388)
cross-site scripting in CVE-2026-36388 (CVE-2026-36388). Risk of unauthorized operations or information disclosure.
CVE-2025-63703 Vulnerability in npm (CVE-2025-63703)
vulnerability in npm (CVE-2025-63703). Successful exploitation can lead to full system takeover.
CVE-2025-63704 Vulnerability in prototype-pollution (CVE-2025-63704)
vulnerability in prototype-pollution (CVE-2025-63704). Successful exploitation can lead to full system takeover.
CVE-2026-32686 Vulnerability in decimal (CVE-2026-32686)
vulnerability in decimal (CVE-2026-32686). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.0` or later.
CVE-2026-36458 Code Injection in sqli (CVE-2026-36458)
code injection in sqli (CVE-2026-36458). Successful exploitation can lead to full system takeover.
CVE-2025-63706 Code Injection in npm (CVE-2025-63706)
code injection in npm (CVE-2025-63706). Successful exploitation can lead to full system takeover.
CVE-2025-67202 Cross-Site Scripting (XSS) in sidekiq-cron (CVE-2025-67202)
cross-site scripting in sidekiq-cron (CVE-2025-67202). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.4.0` or later.
CVE-2026-8094 Code Injection in firefox (CVE-2026-8094)
code injection in firefox (CVE-2026-8094). Successful exploitation can lead to full system takeover.
CVE-2026-8091 Vulnerability in firefox (CVE-2026-8091)
vulnerability in firefox (CVE-2026-8091). Successful exploitation can lead to full system takeover.
CVE-2026-5791 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-5791)
vulnerability in csrf (CVE-2026-5791). Data can be tampered with by attackers.
CVE-2026-8080 Cross-Site Scripting (XSS) in misp (CVE-2026-8080)
cross-site scripting in misp (CVE-2026-8080). Risk of unauthorized operations or information disclosure.
CVE-2026-42010 Vulnerability in gnu (CVE-2026-42010)
vulnerability in gnu (CVE-2026-42010). Confidential information can be exposed externally.
SUSE-SU-2026:1749-1 Vulnerability in SUSE-SU-2026:1749-1 (SUSE-SU-2026:1749-1)
vulnerability in SUSE-SU-2026:1749-1 (SUSE-SU-2026:1749-1). Risk of unauthorized operations or information disclosure.
CVE-2026-44407 Vulnerability in dos (CVE-2026-44407)
vulnerability in dos (CVE-2026-44407). Risk of unauthorized operations or information disclosure.
CVE-2025-1978 Code Injection in hitachi (CVE-2025-1978)
code injection in hitachi (CVE-2025-1978). Risk of unauthorized operations or information disclosure.
CVE-2026-44406 Vulnerability in privilege-escalation (CVE-2026-44406)
vulnerability in privilege-escalation (CVE-2026-44406). Risk of unauthorized operations or information disclosure.
SUSE-SU-2026:1745-1 Vulnerability in dos (SUSE-SU-2026:1745-1)
vulnerability in dos (SUSE-SU-2026:1745-1). Risk of unauthorized operations or information disclosure. Exploitable via ``header_rules``.
SUSE-SU-2026:1744-1 Vulnerability in dos (SUSE-SU-2026:1744-1)
vulnerability in dos (SUSE-SU-2026:1744-1). Risk of unauthorized operations or information disclosure.
SUSE-SU-2026:1743-1 Vulnerability in dos (SUSE-SU-2026:1743-1)
vulnerability in dos (SUSE-SU-2026:1743-1). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →