Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-8286 Vulnerability in haxx (CVE-2026-8286)
vulnerability in haxx (CVE-2026-8286). Confidential information can be exposed externally.
CVE-2026-11586 Vulnerability in haxx (CVE-2026-11586)
vulnerability in haxx (CVE-2026-11586). Risk of unauthorized operations or information disclosure.
CVE-2026-11564 Vulnerability in haxx (CVE-2026-11564)
vulnerability in haxx (CVE-2026-11564). Confidential information can be exposed externally.
CVE-2026-11856 Vulnerability in haxx (CVE-2026-11856)
vulnerability in haxx (CVE-2026-11856). Successful exploitation can lead to full system takeover. Exploitable via ``hostA``.
CVE-2026-11352 Vulnerability in dos (CVE-2026-11352)
vulnerability in dos (CVE-2026-11352). Risk of unauthorized operations or information disclosure.
CVE-2026-10536 Use-After-Free in haxx (CVE-2026-10536)
vulnerability in haxx (CVE-2026-10536). Successful exploitation can lead to full system takeover. Exploitable via ``CURLOPT_STREAM_DEPENDS``.
CVE-2026-9626 Cross-Site Scripting (XSS) in wordpress (CVE-2026-9626)
cross-site scripting in wordpress (CVE-2026-9626). Risk of unauthorized operations or information disclosure.
CVE-2026-9725 Path Traversal in wordpress (CVE-2026-9725)
path traversal in wordpress (CVE-2026-9725). Data can be tampered with by attackers.
CVE-2026-8489 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8489)
cross-site scripting in wordpress (CVE-2026-8489). Risk of unauthorized operations or information disclosure.
CVE-2026-8892 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8892)
cross-site scripting in wordpress (CVE-2026-8892). Risk of unauthorized operations or information disclosure.
CVE-2026-13040 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13040)
cross-site scripting in wordpress (CVE-2026-13040). Risk of unauthorized operations or information disclosure.
CVE-2026-12557 Vulnerability in wordpress (CVE-2026-12557)
vulnerability in wordpress (CVE-2026-12557). Risk of unauthorized operations or information disclosure.
CVE-2026-14352 Path Traversal in wordpress (CVE-2026-14352)
path traversal in wordpress (CVE-2026-14352). Confidential information can be exposed externally. Exploitable via `Referer header`.
CVE-2026-11397 SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-11397)
SSRF in wordpress (CVE-2026-11397). Risk of unauthorized operations or information disclosure.
CVE-2026-12729 Vulnerability in wordpress (CVE-2026-12729)
vulnerability in wordpress (CVE-2026-12729). Risk of unauthorized operations or information disclosure.
CVE-2026-14327 Path Traversal in wordpress (CVE-2026-14327)
path traversal in wordpress (CVE-2026-14327). Confidential information can be exposed externally.
CVE-2026-12920 SQL Injection in wordpress (CVE-2026-12920)
SQL injection in wordpress (CVE-2026-12920). Confidential information can be exposed externally.
CVE-2026-12734 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12734)
cross-site scripting in wordpress (CVE-2026-12734). Risk of unauthorized operations or information disclosure.
CVE-2026-12731 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12731)
cross-site scripting in wordpress (CVE-2026-12731). Risk of unauthorized operations or information disclosure.
CVE-2026-8921 Vulnerability in CVE-2026-8921 (CVE-2026-8921)
vulnerability in CVE-2026-8921 (CVE-2026-8921). Risk of unauthorized operations or information disclosure.
CVE-2026-13768 Vulnerability in CVE-2026-13768 (CVE-2026-13768)
vulnerability in CVE-2026-13768 (CVE-2026-13768). Confidential information can be exposed externally.
CVE-2026-8247 Vulnerability in CVE-2026-8247 (CVE-2026-8247)
vulnerability in CVE-2026-8247 (CVE-2026-8247). Risk of unauthorized operations or information disclosure.
CVE-2026-55726 Vulnerability in CVE-2026-55726 (CVE-2026-55726)
vulnerability in CVE-2026-55726 (CVE-2026-55726). Risk of unauthorized operations or information disclosure.
CVE-2026-13728 Vulnerability in CVE-2026-13728 (CVE-2026-13728)
vulnerability in CVE-2026-13728 (CVE-2026-13728). Risk of unauthorized operations or information disclosure.
CVE-2026-13371 Unsafe Deserialization in deserialization (CVE-2026-13371)
vulnerability in deserialization (CVE-2026-13371). Risk of unauthorized operations or information disclosure.
CVE-2026-13722 Vulnerability in CVE-2026-13722 (CVE-2026-13722)
vulnerability in CVE-2026-13722 (CVE-2026-13722). Risk of unauthorized operations or information disclosure.
CVE-2026-13383 Out-of-Bounds Write in CVE-2026-13383 (CVE-2026-13383)
out-of-bounds write in CVE-2026-13383 (CVE-2026-13383). Risk of unauthorized operations or information disclosure.
CVE-2026-13384 Out-of-Bounds Write in CVE-2026-13384 (CVE-2026-13384)
out-of-bounds write in CVE-2026-13384 (CVE-2026-13384). Risk of unauthorized operations or information disclosure.
CVE-2026-13368 Use-After-Free in CVE-2026-13368 (CVE-2026-13368)
vulnerability in CVE-2026-13368 (CVE-2026-13368). Risk of unauthorized operations or information disclosure.
CVE-2026-13375 Cross-Site Scripting (XSS) in CVE-2026-13375 (CVE-2026-13375)
cross-site scripting in CVE-2026-13375 (CVE-2026-13375). Risk of unauthorized operations or information disclosure.
CVE-2026-13376 Cross-Site Scripting (XSS) in CVE-2026-13376 (CVE-2026-13376)
cross-site scripting in CVE-2026-13376 (CVE-2026-13376). Risk of unauthorized operations or information disclosure.
CVE-2026-13373 Cross-Site Scripting (XSS) in CVE-2026-13373 (CVE-2026-13373)
cross-site scripting in CVE-2026-13373 (CVE-2026-13373). Risk of unauthorized operations or information disclosure.
CVE-2026-13374 Cross-Site Scripting (XSS) in CVE-2026-13374 (CVE-2026-13374)
cross-site scripting in CVE-2026-13374 (CVE-2026-13374). Risk of unauthorized operations or information disclosure.
CVE-2026-13377 Cross-Site Scripting (XSS) in CVE-2026-13377 (CVE-2026-13377)
cross-site scripting in CVE-2026-13377 (CVE-2026-13377). Risk of unauthorized operations or information disclosure.
CVE-2026-13079 Vulnerability in privilege-escalation (CVE-2026-13079)
vulnerability in privilege-escalation (CVE-2026-13079). Risk of unauthorized operations or information disclosure.
CVE-2026-13054 Path Traversal in path-traversal (CVE-2026-13054)
path traversal in path-traversal (CVE-2026-13054). Risk of unauthorized operations or information disclosure.
CVE-2026-13053 Out-of-Bounds Write in CVE-2026-13053 (CVE-2026-13053)
out-of-bounds write in CVE-2026-13053 (CVE-2026-13053). Risk of unauthorized operations or information disclosure.
CVE-2026-13050 Out-of-Bounds Write in CVE-2026-13050 (CVE-2026-13050)
out-of-bounds write in CVE-2026-13050 (CVE-2026-13050). Risk of unauthorized operations or information disclosure.
CVE-2026-13084 Vulnerability in dos (CVE-2026-13084)
vulnerability in dos (CVE-2026-13084). Risk of unauthorized operations or information disclosure.
CVE-2026-54998 Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate...
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate...
CVE-2026-45499 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45499)
SSRF in ssrf (CVE-2026-45499). Successful exploitation can lead to full system takeover.
CVE-2026-57100 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-57100)
SSRF in ssrf (CVE-2026-57100). Successful exploitation can lead to full system takeover.
CVE-2026-41106 Open Redirect in microsoft (CVE-2026-41106)
vulnerability in microsoft (CVE-2026-41106). Confidential information can be exposed externally.
CVE-2026-26145 Vulnerability in microsoft (CVE-2026-26145)
vulnerability in microsoft (CVE-2026-26145). Confidential information can be exposed externally.
CVE-2026-50722 Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly...
Libreswan, via the function RSA_authenticate_hash_signature_pkcs1_1_5_rsa(), did not correctly...
CVE-2026-50721 Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify...
Libreswan, via the function RSA_authenticate_hash_signature_raw_rsa(), did not correctly verify...
CVE-2026-12413 An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart....
An invalidly formatted IKEv2 fragment causes the Libreswan pluto daemon to crash and restart....
CVE-2026-52189 Vulnerability in dos (CVE-2026-52189)
vulnerability in dos (CVE-2026-52189). Risk of unauthorized operations or information disclosure.
CVE-2026-52191 Vulnerability in dos (CVE-2026-52191)
vulnerability in dos (CVE-2026-52191). Risk of unauthorized operations or information disclosure.
CVE-2026-38971 Out-of-Bounds Read in cpp (CVE-2026-38971)
vulnerability in cpp (CVE-2026-38971). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →