Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-12212 |
|
Vulnerability in CVE-2026-12212 (CVE-2026-12212)
vulnerability in CVE-2026-12212 (CVE-2026-12212). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12214 |
|
Vulnerability in CVE-2026-12214 (CVE-2026-12214)
vulnerability in CVE-2026-12214 (CVE-2026-12214). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12204 |
|
Vulnerability in CVE-2026-12204 (CVE-2026-12204)
vulnerability in CVE-2026-12204 (CVE-2026-12204). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12203 |
|
Information Disclosure in CVE-2026-12203 (CVE-2026-12203)
vulnerability in CVE-2026-12203 (CVE-2026-12203). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12211 |
|
Path Traversal in path-traversal (CVE-2026-12211)
path traversal in path-traversal (CVE-2026-12211). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12210 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-12210 (CVE-2026-12210)
SSRF in CVE-2026-12210 (CVE-2026-12210). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12208 |
|
Code Injection in CVE-2026-12208 (CVE-2026-12208)
code injection in CVE-2026-12208 (CVE-2026-12208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12209 |
|
Code Injection in CVE-2026-12209 (CVE-2026-12209)
code injection in CVE-2026-12209 (CVE-2026-12209). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12206 |
|
Vulnerability in sqli (CVE-2026-12206)
vulnerability in sqli (CVE-2026-12206). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12202 |
|
Cross-Site Scripting (XSS) in CVE-2026-12202 (CVE-2026-12202)
cross-site scripting in CVE-2026-12202 (CVE-2026-12202). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12200 |
|
Buffer Overflow in CVE-2026-12200 (CVE-2026-12200)
vulnerability in CVE-2026-12200 (CVE-2026-12200). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12192 |
|
Buffer Overflow in CVE-2026-12192 (CVE-2026-12192)
vulnerability in CVE-2026-12192 (CVE-2026-12192). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12193 |
|
Buffer Overflow in CVE-2026-12193 (CVE-2026-12193)
vulnerability in CVE-2026-12193 (CVE-2026-12193). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12198 |
|
Path Traversal in path-traversal (CVE-2026-12198)
path traversal in path-traversal (CVE-2026-12198). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12197 |
|
Vulnerability in CVE-2026-12197 (CVE-2026-12197)
vulnerability in CVE-2026-12197 (CVE-2026-12197). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12188 |
|
Vulnerability in sqli (CVE-2026-12188)
vulnerability in sqli (CVE-2026-12188). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12191 |
|
Vulnerability in deserialization (CVE-2026-12191)
vulnerability in deserialization (CVE-2026-12191). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12190 |
|
Vulnerability in CVE-2026-12190 (CVE-2026-12190)
vulnerability in CVE-2026-12190 (CVE-2026-12190). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12189 |
|
Vulnerability in CVE-2026-12189 (CVE-2026-12189)
vulnerability in CVE-2026-12189 (CVE-2026-12189). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12187 |
|
Vulnerability in CVE-2026-12187 (CVE-2026-12187)
vulnerability in CVE-2026-12187 (CVE-2026-12187). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12186 |
|
Vulnerability in CVE-2026-12186 (CVE-2026-12186)
vulnerability in CVE-2026-12186 (CVE-2026-12186). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54412 |
|
Out-of-Bounds Read in c (CVE-2026-54412)
vulnerability in c (CVE-2026-54412). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54413 |
|
Out-of-Bounds Read in c (CVE-2026-54413)
vulnerability in c (CVE-2026-54413). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54411 |
|
Vulnerability in c (CVE-2026-54411)
vulnerability in c (CVE-2026-54411). Confidential information can be exposed externally.
|
| CVE-2026-54410 |
|
Vulnerability in dos (CVE-2026-54410)
vulnerability in dos (CVE-2026-54410). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11527 |
|
Vulnerability in CVE-2026-11527 (CVE-2026-11527)
vulnerability in CVE-2026-11527 (CVE-2026-11527). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11526 |
|
Vulnerability in CVE-2026-11526 (CVE-2026-11526)
vulnerability in CVE-2026-11526 (CVE-2026-11526). Successful exploitation can lead to full system takeover.
|
| CVE-2025-15546 |
|
Vulnerability in wordpress (CVE-2025-15546)
vulnerability in wordpress (CVE-2025-15546). Data can be tampered with by attackers.
|
| CVE-2026-12175 |
|
Vulnerability in sqli (CVE-2026-12175)
vulnerability in sqli (CVE-2026-12175). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12176 |
|
Cross-Site Scripting (XSS) in CVE-2026-12176 (CVE-2026-12176)
cross-site scripting in CVE-2026-12176 (CVE-2026-12176). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12174 |
|
Buffer Overflow in dlink (CVE-2026-12174)
vulnerability in dlink (CVE-2026-12174). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12183 |
|
Authentication Bypass in CVE-2026-12183 (CVE-2026-12183)
authentication bypass in CVE-2026-12183 (CVE-2026-12183). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6428 |
|
SQL Injection in sqli (CVE-2026-6428)
SQL injection in sqli (CVE-2026-6428). Confidential information can be exposed externally. Exploitable via `GET /cgi-bin/koha/reports/catalogue_out.pl`.
|
| CVE-2026-5513 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-5513)
cross-site scripting in wordpress (CVE-2026-5513). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9629 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9629)
cross-site scripting in wordpress (CVE-2026-9629). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3297 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3297)
cross-site scripting in wordpress (CVE-2026-3297). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2470 |
|
Authorization Flaw in wordpress (CVE-2026-2470)
vulnerability in wordpress (CVE-2026-2470). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9134 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9134)
cross-site scripting in wordpress (CVE-2026-9134). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9109 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9109)
cross-site scripting in wordpress (CVE-2026-9109). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9061 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9061)
cross-site scripting in wordpress (CVE-2026-9061). Risk of unauthorized operations or information disclosure. Exploitable via ``unfiltered_html``.
|
| CVE-2026-9062 |
|
Path Traversal in wordpress (CVE-2026-9062)
path traversal in wordpress (CVE-2026-9062). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11769 |
|
Path Traversal in github.com/grafana/grafana-operator (CVE-2026-11769)
path traversal in github.com/grafana/grafana-operator (CVE-2026-11769). Successful exploitation can lead to full system takeover. Exploitable via ``Dashboard``. Mitigation: upgrade to `5.24.0` or later.
|
| CVE-2026-9848 |
|
SQL Injection in wordpress (CVE-2026-9848)
SQL injection in wordpress (CVE-2026-9848). Confidential information can be exposed externally. Exploitable via ``posts_request``.
|
| CVE-2026-54229 |
|
Vulnerability in CVE-2026-54229 (CVE-2026-54229)
vulnerability in CVE-2026-54229 (CVE-2026-54229). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12089 |
|
Path Traversal in wordpress (CVE-2026-12089)
path traversal in wordpress (CVE-2026-12089). Confidential information can be exposed externally.
|
| CVE-2026-54231 |
|
Vulnerability in abrt-project (CVE-2026-54231)
vulnerability in abrt-project (CVE-2026-54231). Data can be tampered with by attackers.
|
| CVE-2026-54228 |
|
Vulnerability in CVE-2026-54228 (CVE-2026-54228)
vulnerability in CVE-2026-54228 (CVE-2026-54228). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54230 |
|
Vulnerability in abrt-project (CVE-2026-54230)
vulnerability in abrt-project (CVE-2026-54230). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12068 |
|
Vulnerability in CVE-2026-12068 (CVE-2026-12068)
vulnerability in CVE-2026-12068 (CVE-2026-12068). Confidential information can be exposed externally.
|
| CVE-2025-14098 |
|
Vulnerability in dos (CVE-2025-14098)
vulnerability in dos (CVE-2025-14098). Successful exploitation can lead to full system takeover.
|