Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-25089 |
|
OS Command Injection in fortinet (CVE-2026-25089)
OS command injection in fortinet (CVE-2026-25089). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24065 |
|
Vulnerability in privilege-escalation (CVE-2026-24065)
vulnerability in privilege-escalation (CVE-2026-24065). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24064 |
|
Vulnerability in privilege-escalation (CVE-2026-24064)
vulnerability in privilege-escalation (CVE-2026-24064). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10523 |
|
Vulnerability in ivanti (CVE-2026-10523)
vulnerability in ivanti (CVE-2026-10523). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10520 KEV |
|
[KEV] OS Command Injection in Ivanti standalone-sentry (CVE-2026-10520)
OS command injection in Ivanti standalone-sentry (CVE-2026-10520). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-10727 |
|
OS Command Injection in CVE-2026-10727 (CVE-2026-10727)
OS command injection in CVE-2026-10727 (CVE-2026-10727). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9277 |
|
Command Injection in shell-quote (CVE-2026-9277)
command injection in shell-quote (CVE-2026-9277). Successful exploitation can lead to full system takeover. Exploitable via ``envFn``. Mitigation: upgrade to `1.8.4` or later.
|
| CVE-2026-7486 |
|
SQL Injection in sqli (CVE-2026-7486)
SQL injection in sqli (CVE-2026-7486). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9279 |
|
OS Command Injection in CVE-2026-9279 (CVE-2026-9279)
OS command injection in CVE-2026-9279 (CVE-2026-9279). Risk of unauthorized operations or information disclosure. Exploitable via ``git``.
|
| CVE-2026-52907 |
|
Vulnerability in linux (CVE-2026-52907)
vulnerability in linux (CVE-2026-52907). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52904 |
|
Vulnerability in linux (CVE-2026-52904)
vulnerability in linux (CVE-2026-52904). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49762 |
|
Vulnerability in dos (CVE-2026-49762)
vulnerability in dos (CVE-2026-49762). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47899 |
|
Vulnerability in CVE-2026-47899 (CVE-2026-47899)
vulnerability in CVE-2026-47899 (CVE-2026-47899). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47900 |
|
Cross-Site Scripting (XSS) in CVE-2026-47900 (CVE-2026-47900)
cross-site scripting in CVE-2026-47900 (CVE-2026-47900). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47901 |
|
Cross-Site Scripting (XSS) in CVE-2026-47901 (CVE-2026-47901)
cross-site scripting in CVE-2026-47901 (CVE-2026-47901). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46330 |
|
Use-After-Free in linux (CVE-2026-46330)
vulnerability in linux (CVE-2026-46330). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46332 |
|
Vulnerability in linux (CVE-2026-46332)
vulnerability in linux (CVE-2026-46332). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11793 |
|
Vulnerability in c (CVE-2026-11793)
vulnerability in c (CVE-2026-11793). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11789 |
|
Vulnerability in redhat (CVE-2026-11789)
vulnerability in redhat (CVE-2026-11789). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11790 |
|
Vulnerability in dos (CVE-2026-11790)
vulnerability in dos (CVE-2026-11790). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11792 |
|
Vulnerability in c (CVE-2026-11792)
vulnerability in c (CVE-2026-11792). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11788 |
|
Vulnerability in redhat (CVE-2026-11788)
vulnerability in redhat (CVE-2026-11788). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11785 |
|
Vulnerability in redhat (CVE-2026-11785)
vulnerability in redhat (CVE-2026-11785). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11786 |
|
Out-of-Bounds Read in redhat (CVE-2026-11786)
vulnerability in redhat (CVE-2026-11786). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46319 |
|
Use-After-Free in csharp (CVE-2026-46319)
vulnerability in csharp (CVE-2026-46319). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46323 |
|
Vulnerability in linux (CVE-2026-46323)
vulnerability in linux (CVE-2026-46323). Successful exploitation can lead to full system takeover.
|
| CVE-2017-20251 |
|
Code Injection in wordpress (CVE-2017-20251)
code injection in wordpress (CVE-2017-20251). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2638 |
|
Vulnerability in CVE-2026-2638 (CVE-2026-2638)
vulnerability in CVE-2026-2638 (CVE-2026-2638). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11764 |
|
Vulnerability in CVE-2026-11764 (CVE-2026-11764)
vulnerability in CVE-2026-11764 (CVE-2026-11764). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-20244 |
|
SQL Injection in wordpress (CVE-2017-20244)
SQL injection in wordpress (CVE-2017-20244). Confidential information can be exposed externally.
|
| CVE-2017-20245 |
|
SQL Injection in wordpress (CVE-2017-20245)
SQL injection in wordpress (CVE-2017-20245). Confidential information can be exposed externally.
|
| CVE-2017-20246 |
|
SQL Injection in wordpress (CVE-2017-20246)
SQL injection in wordpress (CVE-2017-20246). Confidential information can be exposed externally.
|
| CVE-2017-20247 |
|
SQL Injection in wordpress (CVE-2017-20247)
SQL injection in wordpress (CVE-2017-20247). Confidential information can be exposed externally.
|
| CVE-2017-20249 |
|
SQL Injection in sqli (CVE-2017-20249)
SQL injection in sqli (CVE-2017-20249). Confidential information can be exposed externally.
|
| CVE-2017-20248 |
|
Path Traversal in path-traversal (CVE-2017-20248)
path traversal in path-traversal (CVE-2017-20248). Confidential information can be exposed externally.
|
| CVE-2017-20250 |
|
Path Traversal in wordpress (CVE-2017-20250)
path traversal in wordpress (CVE-2017-20250). Confidential information can be exposed externally.
|
| CVE-2016-20064 |
|
Vulnerability in path-traversal (CVE-2016-20064)
vulnerability in path-traversal (CVE-2016-20064). Confidential information can be exposed externally.
|
| CVE-2016-20063 |
|
SQL Injection in sqli (CVE-2016-20063)
SQL injection in sqli (CVE-2016-20063). Confidential information can be exposed externally.
|
| CVE-2016-20065 |
|
SQL Injection in wordpress (CVE-2016-20065)
SQL injection in wordpress (CVE-2016-20065). Confidential information can be exposed externally.
|
| CVE-2017-20243 |
|
SQL Injection in wordpress (CVE-2017-20243)
SQL injection in wordpress (CVE-2017-20243). Confidential information can be exposed externally.
|
| CVE-2016-20062 |
|
SQL Injection in wordpress (CVE-2016-20062)
SQL injection in wordpress (CVE-2016-20062). Confidential information can be exposed externally.
|
| CVE-2026-49741 |
|
Vulnerability in typo3/cms-core (CVE-2026-49741)
vulnerability in typo3/cms-core (CVE-2026-49741). Risk of unauthorized operations or information disclosure. Exploitable via ``form_definition``. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-47352 |
|
Vulnerability in typo3/cms-core (CVE-2026-47352)
vulnerability in typo3/cms-core (CVE-2026-47352). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-49740 |
|
Unsafe Deserialization in typo3/cms-core (CVE-2026-49740)
vulnerability in typo3/cms-core (CVE-2026-49740). Risk of unauthorized operations or information disclosure. Exploitable via ``VariableFrontend``. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-49738 |
|
Path Traversal in typo3/cms-core (CVE-2026-49738)
path traversal in typo3/cms-core (CVE-2026-49738). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-49742 |
|
Information Disclosure in typo3/cms-core (CVE-2026-49742)
vulnerability in typo3/cms-core (CVE-2026-49742). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-47343 |
|
Vulnerability in typo3/cms-core (CVE-2026-47343)
vulnerability in typo3/cms-core (CVE-2026-47343). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-47346 |
|
Vulnerability in typo3/cms-core (CVE-2026-47346)
vulnerability in typo3/cms-core (CVE-2026-47346). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-47349 |
|
Vulnerability in typo3/cms-core (CVE-2026-47349)
vulnerability in typo3/cms-core (CVE-2026-47349). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-47350 |
|
Vulnerability in typo3/cms-core (CVE-2026-47350)
vulnerability in typo3/cms-core (CVE-2026-47350). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.3.3` or later.
|