Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-20746 |
|
Vulnerability in CVE-2026-20746 (CVE-2026-20746)
vulnerability in CVE-2026-20746 (CVE-2026-20746). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7737 |
|
Vulnerability in jvn (CVE-2025-7737)
vulnerability in jvn (CVE-2025-7737). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45170 |
|
Vulnerability in paloaltonetworks (CVE-2026-45170)
vulnerability in paloaltonetworks (CVE-2026-45170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9125 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9125)
cross-site scripting in wordpress (CVE-2026-9125). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11933 |
|
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
|
| CVE-2026-47238 |
|
Vulnerability in CVE-2026-47238 (CVE-2026-47238)
vulnerability in CVE-2026-47238 (CVE-2026-47238). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45060 |
|
SQL Injection in sqli (CVE-2026-45060)
SQL injection in sqli (CVE-2026-45060). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45418 |
|
SQL Injection in sqli (CVE-2026-45418)
SQL injection in sqli (CVE-2026-45418). Successful exploitation can lead to full system takeover. Exploitable via `POST /actions/subtitle_edit.php`.
|
| CVE-2026-42846 |
|
OS Command Injection in CVE-2026-42846 (CVE-2026-42846)
OS command injection in CVE-2026-42846 (CVE-2026-42846). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45172 |
|
OS Command Injection in paloaltonetworks (CVE-2026-45172)
OS command injection in paloaltonetworks (CVE-2026-45172). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45171 |
|
Path Traversal in paloaltonetworks (CVE-2026-45171)
path traversal in paloaltonetworks (CVE-2026-45171). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45174 |
|
Vulnerability in paloaltonetworks (CVE-2026-45174)
vulnerability in paloaltonetworks (CVE-2026-45174). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6250 |
|
Vulnerability in tp-link (CVE-2026-6250)
vulnerability in tp-link (CVE-2026-6250). Data can be tampered with by attackers.
|
| CVE-2026-12035 |
|
Use-After-Free in google (CVE-2026-12035)
vulnerability in google (CVE-2026-12035). Successful exploitation can lead to full system takeover.
|
| CVE-2026-39494 |
|
SQL Injection in sqli (CVE-2026-39494)
SQL injection in sqli (CVE-2026-39494). Confidential information can be exposed externally.
|
| CVE-2026-42647 |
|
SQL Injection in sqli (CVE-2026-42647)
SQL injection in sqli (CVE-2026-42647). Confidential information can be exposed externally.
|
| CVE-2026-42653 |
|
Cross-Site Scripting (XSS) in CVE-2026-42653 (CVE-2026-42653)
cross-site scripting in CVE-2026-42653 (CVE-2026-42653). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12029 |
|
Use-After-Free in google (CVE-2026-12029)
vulnerability in google (CVE-2026-12029). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12028 |
|
Use-After-Free in google (CVE-2026-12028)
vulnerability in google (CVE-2026-12028). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12033 |
|
Out-of-Bounds Read in google (CVE-2026-12033)
vulnerability in google (CVE-2026-12033). Confidential information can be exposed externally.
|
| CVE-2026-12026 |
|
Out-of-Bounds Read in google (CVE-2026-12026)
vulnerability in google (CVE-2026-12026). Confidential information can be exposed externally.
|
| CVE-2026-12025 |
|
Vulnerability in google (CVE-2026-12025)
vulnerability in google (CVE-2026-12025). Confidential information can be exposed externally.
|
| CVE-2026-12034 |
|
Vulnerability in Google chrome (CVE-2026-12034)
vulnerability in Google chrome (CVE-2026-12034). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12030 |
|
Vulnerability in google (CVE-2026-12030)
vulnerability in google (CVE-2026-12030). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12027 |
|
Vulnerability in google (CVE-2026-12027)
vulnerability in google (CVE-2026-12027). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12031 |
|
Vulnerability in google (CVE-2026-12031)
vulnerability in google (CVE-2026-12031). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12022 |
|
Vulnerability in google (CVE-2026-12022)
vulnerability in google (CVE-2026-12022). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12019 |
|
Out-of-Bounds Write in google (CVE-2026-12019)
out-of-bounds write in google (CVE-2026-12019). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12018 |
|
Privilege Escalation in privilege-escalation (CVE-2026-12018)
vulnerability in privilege-escalation (CVE-2026-12018). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12023 |
|
Use-After-Free in google (CVE-2026-12023)
vulnerability in google (CVE-2026-12023). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12020 |
|
Use-After-Free in google (CVE-2026-12020)
vulnerability in google (CVE-2026-12020). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12015 |
|
Use-After-Free in google (CVE-2026-12015)
vulnerability in google (CVE-2026-12015). Confidential information can be exposed externally.
|
| CVE-2026-12016 |
|
Vulnerability in google (CVE-2026-12016)
vulnerability in google (CVE-2026-12016). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12017 |
|
Vulnerability in google (CVE-2026-12017)
vulnerability in google (CVE-2026-12017). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12014 |
|
Use-After-Free in google (CVE-2026-12014)
vulnerability in google (CVE-2026-12014). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12013 |
|
Use-After-Free in google (CVE-2026-12013)
vulnerability in google (CVE-2026-12013). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12012 |
|
Use-After-Free in google (CVE-2026-12012)
vulnerability in google (CVE-2026-12012). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12011 |
|
Use-After-Free in google (CVE-2026-12011)
vulnerability in google (CVE-2026-12011). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12008 |
|
Use-After-Free in google (CVE-2026-12008)
vulnerability in google (CVE-2026-12008). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12009 |
|
Vulnerability in google (CVE-2026-12009)
vulnerability in google (CVE-2026-12009). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12010 |
|
Vulnerability in google (CVE-2026-12010)
vulnerability in google (CVE-2026-12010). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12007 |
|
Use-After-Free in Google chrome (CVE-2026-12007)
vulnerability in Google chrome (CVE-2026-12007). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53807 |
|
Authorization Flaw in openclaw (CVE-2026-53807)
vulnerability in openclaw (CVE-2026-53807). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53808 |
|
Authorization Flaw in openclaw (CVE-2026-53808)
vulnerability in openclaw (CVE-2026-53808). Data can be tampered with by attackers.
|
| CVE-2026-41005 |
|
Vulnerability in CVE-2026-41005 (CVE-2026-41005)
vulnerability in CVE-2026-41005 (CVE-2026-41005). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53819 |
|
Vulnerability in openclaw (CVE-2026-53819)
vulnerability in openclaw (CVE-2026-53819). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2026.5.27` or later.
|
| CVE-2026-53818 |
|
Vulnerability in openclaw (CVE-2026-53818)
vulnerability in openclaw (CVE-2026-53818). Data can be tampered with by attackers. Mitigation: upgrade to `2026.4.24` or later.
|
| CVE-2026-53813 |
|
Vulnerability in openclaw (CVE-2026-53813)
vulnerability in openclaw (CVE-2026-53813). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2026.4.25` or later.
|
| CVE-2026-53812 |
|
Vulnerability in openclaw (CVE-2026-53812)
vulnerability in openclaw (CVE-2026-53812). Confidential information can be exposed externally. Exploitable via ``act``. Mitigation: upgrade to `2026.5.18` or later.
|
| CVE-2026-53816 |
|
Vulnerability in openclaw (CVE-2026-53816)
vulnerability in openclaw (CVE-2026-53816). Successful exploitation can lead to full system takeover. Exploitable via ``system.run``. Mitigation: upgrade to `2026.5.18` or later.
|