Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-59924 |
|
Path Traversal in CVE-2026-59924 (CVE-2026-59924)
path traversal in CVE-2026-59924 (CVE-2026-59924). Confidential information can be exposed externally.
|
| CVE-2026-59926 |
|
Cross-Site Scripting (XSS) in CVE-2026-59926 (CVE-2026-59926)
cross-site scripting in CVE-2026-59926 (CVE-2026-59926). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-60102 |
|
OS Command Injection in c (CVE-2026-60102)
OS command injection in c (CVE-2026-60102). Successful exploitation can lead to full system takeover.
|
| CVE-2026-59929 |
|
Cross-Site Scripting (XSS) in CVE-2026-59929 (CVE-2026-59929)
cross-site scripting in CVE-2026-59929 (CVE-2026-59929). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59927 |
|
Vulnerability in CVE-2026-59927 (CVE-2026-59927)
vulnerability in CVE-2026-59927 (CVE-2026-59927). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59890 |
|
Vulnerability in CVE-2026-59890 (CVE-2026-59890)
vulnerability in CVE-2026-59890 (CVE-2026-59890). Confidential information can be exposed externally.
|
| CVE-2026-59896 |
|
Vulnerability in CVE-2026-59896 (CVE-2026-59896)
vulnerability in CVE-2026-59896 (CVE-2026-59896). Confidential information can be exposed externally.
|
| CVE-2026-59895 |
|
Cross-Site Scripting (XSS) in CVE-2026-59895 (CVE-2026-59895)
cross-site scripting in CVE-2026-59895 (CVE-2026-59895). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59923 |
|
Cross-Site Scripting (XSS) in CVE-2026-59923 (CVE-2026-59923)
cross-site scripting in CVE-2026-59923 (CVE-2026-59923). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59882 |
|
Vulnerability in CVE-2026-59882 (CVE-2026-59882)
vulnerability in CVE-2026-59882 (CVE-2026-59882). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59879 |
|
Vulnerability in CVE-2026-59879 (CVE-2026-59879)
vulnerability in CVE-2026-59879 (CVE-2026-59879). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59261 |
|
Vulnerability in CVE-2026-59261 (CVE-2026-59261)
vulnerability in CVE-2026-59261 (CVE-2026-59261). Confidential information can be exposed externally.
|
| CVE-2026-59731 |
|
Vulnerability in CVE-2026-59731 (CVE-2026-59731)
vulnerability in CVE-2026-59731 (CVE-2026-59731). Confidential information can be exposed externally.
|
| CVE-2026-29008 |
|
Vulnerability in c (CVE-2026-29008)
vulnerability in c (CVE-2026-29008). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29009 |
|
Vulnerability in c (CVE-2026-29009)
vulnerability in c (CVE-2026-29009). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29007 |
|
Out-of-Bounds Read in c (CVE-2026-29007)
vulnerability in c (CVE-2026-29007). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-3110 |
|
Vulnerability in CVE-2025-3110 (CVE-2025-3110)
vulnerability in CVE-2025-3110 (CVE-2025-3110). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9074 |
|
SQL Injection in sqli (CVE-2026-9074)
SQL injection in sqli (CVE-2026-9074). Confidential information can be exposed externally.
|
| CVE-2026-59877 |
|
Vulnerability in c (CVE-2026-59877)
vulnerability in c (CVE-2026-59877). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59876 |
|
Vulnerability in CVE-2026-59876 (CVE-2026-59876)
vulnerability in CVE-2026-59876 (CVE-2026-59876). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59871 |
|
Vulnerability in CVE-2026-59871 (CVE-2026-59871)
vulnerability in CVE-2026-59871 (CVE-2026-59871). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59874 |
|
Vulnerability in CVE-2026-59874 (CVE-2026-59874)
vulnerability in CVE-2026-59874 (CVE-2026-59874). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59725 |
|
Vulnerability in CVE-2026-59725 (CVE-2026-59725)
vulnerability in CVE-2026-59725 (CVE-2026-59725). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59873 |
|
Vulnerability in CVE-2026-59873 (CVE-2026-59873)
vulnerability in CVE-2026-59873 (CVE-2026-59873). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59724 |
|
Vulnerability in dos (CVE-2026-59724)
vulnerability in dos (CVE-2026-59724). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55761 |
|
Authentication Bypass in CVE-2026-55761 (CVE-2026-55761)
authentication bypass in CVE-2026-55761 (CVE-2026-55761). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59702 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-59702 (CVE-2026-59702)
SSRF in CVE-2026-59702 (CVE-2026-59702). Confidential information can be exposed externally. Exploitable via `POST /api/pack`.
|
| CVE-2026-57439 |
|
Cross-Site Scripting (XSS) in CVE-2026-57439 (CVE-2026-57439)
cross-site scripting in CVE-2026-57439 (CVE-2026-57439). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59262 |
|
Vulnerability in CVE-2026-59262 (CVE-2026-59262)
vulnerability in CVE-2026-59262 (CVE-2026-59262). Confidential information can be exposed externally.
|
| CVE-2026-53951 |
|
Path Traversal in CVE-2026-53951 (CVE-2026-53951)
path traversal in CVE-2026-53951 (CVE-2026-53951). Risk of unauthorized operations or information disclosure. Exploitable via ``trust``.
|
| CVE-2026-54344 |
|
OS Command Injection in CVE-2026-54344 (CVE-2026-54344)
OS command injection in CVE-2026-54344 (CVE-2026-54344). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-15063 |
|
Vulnerability in CVE-2026-15063 (CVE-2026-15063)
vulnerability in CVE-2026-15063 (CVE-2026-15063). Confidential information can be exposed externally.
|
| CVE-2026-14966 |
|
Vulnerability in dos (CVE-2026-14966)
vulnerability in dos (CVE-2026-14966). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14967 |
|
Path Traversal in CVE-2026-14967 (CVE-2026-14967)
path traversal in CVE-2026-14967 (CVE-2026-14967). Risk of unauthorized operations or information disclosure. Exploitable via ``github_workflows``.
|
| CVE-2026-49145 |
|
Vulnerability in CVE-2026-49145 (CVE-2026-49145)
vulnerability in CVE-2026-49145 (CVE-2026-49145). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56359 |
|
Cross-Site Scripting (XSS) in CVE-2026-56359 (CVE-2026-56359)
cross-site scripting in CVE-2026-56359 (CVE-2026-56359). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56362 |
|
Out-of-Bounds Read in CVE-2026-56362 (CVE-2026-56362)
vulnerability in CVE-2026-56362 (CVE-2026-56362). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56360 |
|
Vulnerability in CVE-2026-56360 (CVE-2026-56360)
vulnerability in CVE-2026-56360 (CVE-2026-56360). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56776 |
|
Authorization Flaw in CVE-2026-56776 (CVE-2026-56776)
vulnerability in CVE-2026-56776 (CVE-2026-56776). Risk of unauthorized operations or information disclosure. Exploitable via `POST /workflows/{workflowId}/test-runs/new`.
|
| CVE-2026-56374 |
|
Out-of-Bounds Read in dos (CVE-2026-56374)
vulnerability in dos (CVE-2026-56374). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56086 |
|
Authorization Flaw in CVE-2026-56086 (CVE-2026-56086)
vulnerability in CVE-2026-56086 (CVE-2026-56086). Successful exploitation can lead to full system takeover.
|
| CVE-2026-15034 |
|
Cross-Site Request Forgery (CSRF) in flask (CVE-2026-15034)
vulnerability in flask (CVE-2026-15034). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-15035 |
|
Vulnerability in CVE-2026-15035 (CVE-2026-15035)
vulnerability in CVE-2026-15035 (CVE-2026-15035). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56250 |
|
Vulnerability in dos (CVE-2026-56250)
vulnerability in dos (CVE-2026-56250). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41122 |
|
Cross-Site Scripting (XSS) in CVE-2026-41122 (CVE-2026-41122)
cross-site scripting in CVE-2026-41122 (CVE-2026-41122). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56297 |
|
Vulnerability in dos (CVE-2026-56297)
vulnerability in dos (CVE-2026-56297). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56283 |
|
Cross-Site Scripting (XSS) in CVE-2026-56283 (CVE-2026-56283)
cross-site scripting in CVE-2026-56283 (CVE-2026-56283). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56220 |
|
Authorization Flaw in CVE-2026-56220 (CVE-2026-56220)
vulnerability in CVE-2026-56220 (CVE-2026-56220). Data can be tampered with by attackers.
|
| CVE-2026-15033 |
|
Command Injection in CVE-2026-15033 (CVE-2026-15033)
command injection in CVE-2026-15033 (CVE-2026-15033). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53480 |
|
Path Traversal in path-traversal (CVE-2026-53480)
path traversal in path-traversal (CVE-2026-53480). Risk of unauthorized operations or information disclosure.
|