Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-53787 |
|
Unrestricted File Upload in path-traversal (CVE-2026-53787)
vulnerability in path-traversal (CVE-2026-53787). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54133 |
|
Vulnerability in jmespath (CVE-2026-54133)
vulnerability in jmespath (CVE-2026-54133). Successful exploitation can lead to full system takeover. Exploitable via ``JP_PHP_COMPILE``. Mitigation: upgrade to `2.9.1` or later.
|
| CVE-2026-53722 |
|
Cross-Site Scripting (XSS) in nuxt (CVE-2026-53722)
cross-site scripting in nuxt (CVE-2026-53722). Risk of unauthorized operations or information disclosure. Exploitable via ``href``. Mitigation: upgrade to `3.21.7` or later.
|
| CVE-2026-53721 |
|
Vulnerability in nuxt (CVE-2026-53721)
vulnerability in nuxt (CVE-2026-53721). Confidential information can be exposed externally. Exploitable via ``routeRules``. Mitigation: upgrade to `3.21.7` or later.
|
| CVE-2026-47739 |
|
Cross-Site Scripting (XSS) in CVE-2026-47739 (CVE-2026-47739)
cross-site scripting in CVE-2026-47739 (CVE-2026-47739). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41581 |
|
SQL Injection in sqli (CVE-2026-41581)
SQL injection in sqli (CVE-2026-41581). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44205 |
|
Cross-Site Scripting (XSS) in CVE-2026-44205 (CVE-2026-44205)
cross-site scripting in CVE-2026-44205 (CVE-2026-44205). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28898 |
|
Vulnerability in github.com/apple/swift-nio-http2 (CVE-2026-28898)
vulnerability in github.com/apple/swift-nio-http2 (CVE-2026-28898). Risk of unauthorized operations or information disclosure. Exploitable via ``HTTP2FramePayloadToHTTP1ServerCodec``. Mitigation: upgrade to `1.44.1` or later.
|
| CVE-2026-49993 |
|
Vulnerability in @nuxt/webpack-builder (CVE-2026-49993)
vulnerability in @nuxt/webpack-builder (CVE-2026-49993). Confidential information can be exposed externally. Exploitable via ``Origin``. Mitigation: upgrade to `3.21.7` or later.
|
| CVE-2026-1836 |
|
Vulnerability in CVE-2026-1836 (CVE-2026-1836)
vulnerability in CVE-2026-1836 (CVE-2026-1836). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12065 |
|
Vulnerability in CVE-2026-12065 (CVE-2026-12065)
vulnerability in CVE-2026-12065 (CVE-2026-12065). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11967 |
|
Vulnerability in CVE-2026-11967 (CVE-2026-11967)
vulnerability in CVE-2026-11967 (CVE-2026-11967). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11879 |
|
Vulnerability in CVE-2026-11879 (CVE-2026-11879)
vulnerability in CVE-2026-11879 (CVE-2026-11879). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-20240 |
|
Vulnerability in CVE-2017-20240 (CVE-2017-20240)
vulnerability in CVE-2017-20240 (CVE-2017-20240). Confidential information can be exposed externally.
|
| CVE-2026-49347 |
|
Vulnerability in CVE-2026-49347 (CVE-2026-49347)
vulnerability in CVE-2026-49347 (CVE-2026-49347). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47197 |
|
Vulnerability in CVE-2026-47197 (CVE-2026-47197)
vulnerability in CVE-2026-47197 (CVE-2026-47197). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47196 |
|
Vulnerability in CVE-2026-47196 (CVE-2026-47196)
vulnerability in CVE-2026-47196 (CVE-2026-47196). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48485 |
|
Vulnerability in CVE-2026-48485 (CVE-2026-48485)
vulnerability in CVE-2026-48485 (CVE-2026-48485). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47195 |
|
Authorization Flaw in CVE-2026-47195 (CVE-2026-47195)
vulnerability in CVE-2026-47195 (CVE-2026-47195). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11848 |
|
Vulnerability in CVE-2026-11848 (CVE-2026-11848)
vulnerability in CVE-2026-11848 (CVE-2026-11848). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11849 |
|
Vulnerability in CVE-2026-11849 (CVE-2026-11849)
vulnerability in CVE-2026-11849 (CVE-2026-11849). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50634 |
|
Vulnerability in apache (CVE-2026-50634)
vulnerability in apache (CVE-2026-50634). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50631 |
|
Vulnerability in apache (CVE-2026-50631)
vulnerability in apache (CVE-2026-50631). Confidential information can be exposed externally.
|
| CVE-2026-50645 |
|
Vulnerability in apache (CVE-2026-50645)
vulnerability in apache (CVE-2026-50645). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50632 |
|
Vulnerability in apache (CVE-2026-50632)
vulnerability in apache (CVE-2026-50632). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50633 |
|
Vulnerability in apache (CVE-2026-50633)
vulnerability in apache (CVE-2026-50633). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50628 |
|
Vulnerability in apache (CVE-2026-50628)
vulnerability in apache (CVE-2026-50628). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49875 |
|
XXE (XML External Entity) in apache (CVE-2026-49875)
vulnerability in apache (CVE-2026-49875). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50629 |
|
Vulnerability in apache (CVE-2026-50629)
vulnerability in apache (CVE-2026-50629). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48914 |
|
Vulnerability in c (CVE-2026-48914)
vulnerability in c (CVE-2026-48914). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50623 |
|
Authentication Bypass in apache (CVE-2026-50623)
authentication bypass in apache (CVE-2026-50623). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50627 |
|
Vulnerability in apache (CVE-2026-50627)
vulnerability in apache (CVE-2026-50627). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11847 |
|
Path Traversal in path-traversal (CVE-2026-11847)
path traversal in path-traversal (CVE-2026-11847). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11846 |
|
Path Traversal in CVE-2026-11846 (CVE-2026-11846)
path traversal in CVE-2026-11846 (CVE-2026-11846). Data can be tampered with by attackers.
|
| CVE-2026-11844 |
|
Path Traversal in CVE-2026-11844 (CVE-2026-11844)
path traversal in CVE-2026-11844 (CVE-2026-11844). Confidential information can be exposed externally.
|
| CVE-2026-11845 |
|
OS Command Injection in CVE-2026-11845 (CVE-2026-11845)
OS command injection in CVE-2026-11845 (CVE-2026-11845). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11535 |
|
Vulnerability in CVE-2026-11535 (CVE-2026-11535)
vulnerability in CVE-2026-11535 (CVE-2026-11535). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12058 |
|
The connection confirmation pop-up of a specific feature in the PcSuite can be bypassed.
The connection confirmation pop-up of a specific feature in the PcSuite can be bypassed.
|
| CVE-2026-12060 |
|
Vulnerability in CVE-2026-12060 (CVE-2026-12060)
vulnerability in CVE-2026-12060 (CVE-2026-12060). Confidential information can be exposed externally.
|
| CVE-2026-45169 |
|
Vulnerability in dos (CVE-2026-45169)
vulnerability in dos (CVE-2026-45169). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48613 |
|
SQL Injection in sqli (CVE-2026-48613)
SQL injection in sqli (CVE-2026-48613). Confidential information can be exposed externally.
|
| CVE-2026-48612 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-48612 (CVE-2026-48612)
vulnerability in CVE-2026-48612 (CVE-2026-48612). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48611 |
|
Authentication Bypass in CVE-2026-48611 (CVE-2026-48611)
authentication bypass in CVE-2026-48611 (CVE-2026-48611). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48610 |
|
Vulnerability in CVE-2026-48610 (CVE-2026-48610)
vulnerability in CVE-2026-48610 (CVE-2026-48610). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47368 |
|
Path Traversal in path-traversal (CVE-2026-47368)
path traversal in path-traversal (CVE-2026-47368). Confidential information can be exposed externally.
|
| CVE-2026-47367 |
|
Vulnerability in CVE-2026-47367 (CVE-2026-47367)
vulnerability in CVE-2026-47367 (CVE-2026-47367). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47369 |
|
Vulnerability in CVE-2026-47369 (CVE-2026-47369)
vulnerability in CVE-2026-47369 (CVE-2026-47369). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47370 |
|
Vulnerability in CVE-2026-47370 (CVE-2026-47370)
vulnerability in CVE-2026-47370 (CVE-2026-47370). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47365 |
|
Vulnerability in wordpress (CVE-2026-47365)
vulnerability in wordpress (CVE-2026-47365). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47366 |
|
Vulnerability in privilege-escalation (CVE-2026-47366)
vulnerability in privilege-escalation (CVE-2026-47366). Successful exploitation can lead to full system takeover.
|