Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2019-25742 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2019-25742)
cross-site scripting in wordpress (CVE-2019-25742). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25744 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2019-25744)
cross-site scripting in wordpress (CVE-2019-25744). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25737 |
|
Cross-Site Scripting (XSS) in CVE-2019-25737 (CVE-2019-25737)
cross-site scripting in CVE-2019-25737 (CVE-2019-25737). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25739 |
|
Cross-Site Scripting (XSS) in CVE-2019-25739 (CVE-2019-25739)
cross-site scripting in CVE-2019-25739 (CVE-2019-25739). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25743 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2019-25743)
cross-site scripting in wordpress (CVE-2019-25743). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-46638 |
|
Vulnerability in dos (CVE-2025-46638)
vulnerability in dos (CVE-2025-46638). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25734 |
|
Path Traversal in csrf (CVE-2019-25734)
path traversal in csrf (CVE-2019-25734). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25740 |
|
Path Traversal in path-traversal (CVE-2019-25740)
path traversal in path-traversal (CVE-2019-25740). Confidential information can be exposed externally.
|
| CVE-2019-25738 |
|
Vulnerability in wordpress (CVE-2019-25738)
vulnerability in wordpress (CVE-2019-25738). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25733 |
|
Vulnerability in CVE-2019-25733 (CVE-2019-25733)
vulnerability in CVE-2019-25733 (CVE-2019-25733). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25741 |
|
Vulnerability in CVE-2019-25741 (CVE-2019-25741)
vulnerability in CVE-2019-25741 (CVE-2019-25741). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25735 |
|
Vulnerability in CVE-2019-25735 (CVE-2019-25735)
vulnerability in CVE-2019-25735 (CVE-2019-25735). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25736 |
|
Vulnerability in CVE-2019-25736 (CVE-2019-25736)
vulnerability in CVE-2019-25736 (CVE-2019-25736). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25730 |
|
SQL Injection in sqli (CVE-2019-25730)
SQL injection in sqli (CVE-2019-25730). Confidential information can be exposed externally.
|
| CVE-2019-25732 |
|
SQL Injection in sqli (CVE-2019-25732)
SQL injection in sqli (CVE-2019-25732). Confidential information can be exposed externally.
|
| CVE-2019-25731 |
|
Cross-Site Scripting (XSS) in CVE-2019-25731 (CVE-2019-25731)
cross-site scripting in CVE-2019-25731 (CVE-2019-25731). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-25728 |
|
SQL Injection in sqli (CVE-2019-25728)
SQL injection in sqli (CVE-2019-25728). Confidential information can be exposed externally.
|
| CVE-2019-25726 |
|
SQL Injection in sqli (CVE-2019-25726)
SQL injection in sqli (CVE-2019-25726). Confidential information can be exposed externally.
|
| CVE-2019-25729 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2019-25729)
vulnerability in csrf (CVE-2019-25729). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25727 |
|
Path Traversal in wordpress (CVE-2019-25727)
path traversal in wordpress (CVE-2019-25727). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41065 |
|
Vulnerability in CVE-2026-41065 (CVE-2026-41065)
vulnerability in CVE-2026-41065 (CVE-2026-41065). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47707 |
|
Vulnerability in strawberry-graphql (CVE-2026-47707)
vulnerability in strawberry-graphql (CVE-2026-47707). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.315.7` or later.
|
| CVE-2026-47706 |
|
Vulnerability in strawberry-graphql (CVE-2026-47706)
vulnerability in strawberry-graphql (CVE-2026-47706). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.315.7` or later.
|
| CVE-2026-44889 |
|
Open Redirect in webob (CVE-2026-44889)
vulnerability in webob (CVE-2026-44889). Risk of unauthorized operations or information disclosure. Exploitable via ``urllib.parse``. Mitigation: upgrade to `1.8.10` or later.
|
| CVE-2026-44496 |
|
Vulnerability in axios (CVE-2026-44496)
vulnerability in axios (CVE-2026-44496). Risk of unauthorized operations or information disclosure. Exploitable via ``document.cookie``. Mitigation: upgrade to `0.32.0` or later.
|
| CVE-2026-44488 |
|
Vulnerability in axios (CVE-2026-44488)
vulnerability in axios (CVE-2026-44488). Risk of unauthorized operations or information disclosure. Exploitable via ``fetch``. Mitigation: upgrade to `1.16.0` or later.
|
| CVE-2026-40605 |
|
Path Traversal in path-traversal (CVE-2026-40605)
path traversal in path-traversal (CVE-2026-40605). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44486 |
|
Information Disclosure in axios (CVE-2026-44486)
vulnerability in axios (CVE-2026-44486). Confidential information can be exposed externally. Exploitable via `GET /start`. Mitigation: upgrade to `0.32.0` or later.
|
| CVE-2026-10843 |
|
Vulnerability in CVE-2026-10843 (CVE-2026-10843)
vulnerability in CVE-2026-10843 (CVE-2026-10843). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10840 |
|
Vulnerability in CVE-2026-10840 (CVE-2026-10840)
vulnerability in CVE-2026-10840 (CVE-2026-10840). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52611 |
|
Vulnerability in hcltech (CVE-2025-52611)
vulnerability in hcltech (CVE-2025-52611). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4104 |
|
SQL Injection in sqli (CVE-2026-4104)
SQL injection in sqli (CVE-2026-4104). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45431 |
|
OS Command Injection in CVE-2026-45431 (CVE-2026-45431)
OS command injection in CVE-2026-45431 (CVE-2026-45431). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52609 |
|
Vulnerability in hcltech (CVE-2025-52609)
vulnerability in hcltech (CVE-2025-52609). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10802 |
|
Vulnerability in CVE-2026-10802 (CVE-2026-10802)
vulnerability in CVE-2026-10802 (CVE-2026-10802). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-12694 |
|
Vulnerability in privilege-escalation (CVE-2025-12694)
vulnerability in privilege-escalation (CVE-2025-12694). Successful exploitation can lead to full system takeover.
|
| CVE-2025-52606 |
|
Vulnerability in hcltech (CVE-2025-52606)
vulnerability in hcltech (CVE-2025-52606). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49077 |
|
Vulnerability in CVE-2026-49077 (CVE-2026-49077)
vulnerability in CVE-2026-49077 (CVE-2026-49077). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50224 |
|
Information Disclosure in acer (CVE-2026-50224)
vulnerability in acer (CVE-2026-50224). Confidential information can be exposed externally.
|
| CVE-2026-50225 |
|
Vulnerability in acer (CVE-2026-50225)
vulnerability in acer (CVE-2026-50225). Data can be tampered with by attackers.
|
| CVE-2026-50226 |
|
Vulnerability in acer (CVE-2026-50226)
vulnerability in acer (CVE-2026-50226). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8916 |
|
Out-of-Bounds Write in CVE-2026-8916 (CVE-2026-8916)
out-of-bounds write in CVE-2026-8916 (CVE-2026-8916). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4881 |
|
Vulnerability in octopus (CVE-2026-4881)
vulnerability in octopus (CVE-2026-4881). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47318 |
|
Vulnerability in CVE-2026-47318 (CVE-2026-47318)
vulnerability in CVE-2026-47318 (CVE-2026-47318). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47320 |
|
Vulnerability in CVE-2026-47320 (CVE-2026-47320)
vulnerability in CVE-2026-47320 (CVE-2026-47320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49771 |
|
SQL Injection in sqli (CVE-2026-49771)
SQL injection in sqli (CVE-2026-49771). Confidential information can be exposed externally.
|
| CVE-2026-49510 |
|
Vulnerability in CVE-2026-49510 (CVE-2026-49510)
vulnerability in CVE-2026-49510 (CVE-2026-49510). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10305 |
|
Out-of-Bounds Read in CVE-2026-10305 (CVE-2026-10305)
vulnerability in CVE-2026-10305 (CVE-2026-10305). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50212 |
|
Vulnerability in dos (CVE-2026-50212)
vulnerability in dos (CVE-2026-50212). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50210 |
|
Information Disclosure in acer (CVE-2026-50210)
vulnerability in acer (CVE-2026-50210). Confidential information can be exposed externally.
|