Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46111 |
|
Use-After-Free in linux (CVE-2026-46111)
vulnerability in linux (CVE-2026-46111). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46113 |
|
Use-After-Free in linux (CVE-2026-46113)
vulnerability in linux (CVE-2026-46113). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46107 |
|
Vulnerability in linux (CVE-2026-46107)
vulnerability in linux (CVE-2026-46107). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46110 |
|
Vulnerability in linux (CVE-2026-46110)
vulnerability in linux (CVE-2026-46110). Risk of unauthorized operations or information disclosure. Exploitable via ``cur_rx``.
|
| CVE-2026-46114 |
|
Vulnerability in c (CVE-2026-46114)
vulnerability in c (CVE-2026-46114). Confidential information can be exposed externally.
|
| CVE-2026-46112 |
|
Vulnerability in linux (CVE-2026-46112)
vulnerability in linux (CVE-2026-46112). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46109 |
|
Vulnerability in linux (CVE-2026-46109)
vulnerability in linux (CVE-2026-46109). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-48977 |
|
Vulnerability in org.apache.ignite:ignite-core (CVE-2025-48977)
vulnerability in org.apache.ignite:ignite-core (CVE-2025-48977). Confidential information can be exposed externally. Mitigation: upgrade to `2.18.0` or later.
|
| CVE-2026-8689 |
|
Vulnerability in c (CVE-2026-8689)
vulnerability in c (CVE-2026-8689). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6937 |
|
Vulnerability in wordpress (CVE-2026-6937)
vulnerability in wordpress (CVE-2026-6937). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9015 |
|
Vulnerability in wordpress (CVE-2026-9015)
vulnerability in wordpress (CVE-2026-9015). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9807 |
|
Authorization Flaw in gitlab (CVE-2026-9807)
vulnerability in gitlab (CVE-2026-9807). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.10.7, 18.11.4, 19.0.1` or later.
|
| CVE-2026-7048 |
|
SQL Injection in wordpress (CVE-2026-7048)
SQL injection in wordpress (CVE-2026-7048). Confidential information can be exposed externally.
|
| CVE-2026-7526 |
|
Information Disclosure in wordpress (CVE-2026-7526)
vulnerability in wordpress (CVE-2026-7526). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9804 |
|
Vulnerability in kubevirt.io/kubevirt (CVE-2026-9804)
vulnerability in kubevirt.io/kubevirt (CVE-2026-9804). Confidential information can be exposed externally.
|
| CVE-2026-6226 |
|
Privilege Escalation in wordpress (CVE-2026-6226)
vulnerability in wordpress (CVE-2026-6226). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4334 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4334)
cross-site scripting in wordpress (CVE-2026-4334). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-47096 |
|
Cross-Site Scripting (XSS) in CVE-2024-47096 (CVE-2024-47096)
cross-site scripting in CVE-2024-47096 (CVE-2024-47096). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-47097 |
|
Cross-Site Scripting (XSS) in CVE-2024-47097 (CVE-2024-47097)
cross-site scripting in CVE-2024-47097 (CVE-2024-47097). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4408 |
|
OS Command Injection in redhat (CVE-2026-4408)
OS command injection in redhat (CVE-2026-4408). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9806 |
|
Cross-Site Scripting (XSS) in CVE-2026-9806 (CVE-2026-9806)
cross-site scripting in CVE-2026-9806 (CVE-2026-9806). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7797 |
|
SQL Injection in wordpress (CVE-2026-7797)
SQL injection in wordpress (CVE-2026-7797). Confidential information can be exposed externally.
|
| CVE-2026-7660 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7660)
cross-site scripting in wordpress (CVE-2026-7660). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8682 |
|
Vulnerability in wordpress (CVE-2026-8682)
vulnerability in wordpress (CVE-2026-8682). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7862 |
|
Vulnerability in wordpress (CVE-2026-7862)
vulnerability in wordpress (CVE-2026-7862). Data can be tampered with by attackers.
|
| CVE-2026-9227 |
|
Unrestricted File Upload in wordpress (CVE-2026-9227)
vulnerability in wordpress (CVE-2026-9227). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9618 |
|
Cross-Site Request Forgery (CSRF) in csharp (CVE-2026-9618)
vulnerability in csharp (CVE-2026-9618). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6455 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6455)
vulnerability in wordpress (CVE-2026-6455). Data can be tampered with by attackers.
|
| CVE-2026-6427 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6427)
cross-site scripting in wordpress (CVE-2026-6427). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7052 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7052)
cross-site scripting in wordpress (CVE-2026-7052). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7634 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7634)
cross-site scripting in wordpress (CVE-2026-7634). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7552 |
|
Vulnerability in wordpress (CVE-2026-7552)
vulnerability in wordpress (CVE-2026-7552). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7621 |
|
Vulnerability in wordpress (CVE-2026-7621)
vulnerability in wordpress (CVE-2026-7621). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44604 |
|
OS Command Injection in CVE-2026-44604 (CVE-2026-44604)
OS command injection in CVE-2026-44604 (CVE-2026-44604). Successful exploitation can lead to full system takeover. Exploitable via ``rpmuncompress``.
|
| CVE-2026-9644 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-9644)
cross-site scripting in wordpress (CVE-2026-9644). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9803 |
|
Out-of-Bounds Read in org.keycloak:keycloak-services (CVE-2026-9803)
vulnerability in org.keycloak:keycloak-services (CVE-2026-9803). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.3` or later.
|
| CVE-2026-9798 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-9798)
vulnerability in org.keycloak:keycloak-services (CVE-2026-9798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9009 |
|
Unrestricted File Upload in wordpress (CVE-2026-9009)
vulnerability in wordpress (CVE-2026-9009). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7533 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-7533)
vulnerability in wordpress (CVE-2026-7533). Risk of unauthorized operations or information disclosure. Exploitable via ``admin_init``.
|
| CVE-2026-9796 |
|
Vulnerability in org.keycloak:keycloak-server (CVE-2026-9796)
vulnerability in org.keycloak:keycloak-server (CVE-2026-9796). Confidential information can be exposed externally. Mitigation: upgrade to `26.6.4` or later.
|
| CVE-2026-9793 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-9793)
vulnerability in org.keycloak:keycloak-services (CVE-2026-9793). Data can be tampered with by attackers.
|
| CVE-2026-9794 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-9794)
vulnerability in org.keycloak:keycloak-services (CVE-2026-9794). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.6.3` or later.
|
| CVE-2026-9792 |
|
Vulnerability in org.keycloak:keycloak-services (CVE-2026-9792)
vulnerability in org.keycloak:keycloak-services (CVE-2026-9792). Risk of unauthorized operations or information disclosure. Exploitable via ``org.keycloak.protocol.oidc``.
|
| CVE-2026-9791 |
|
Authorization Flaw in org.keycloak:keycloak-server-spi-private (CVE-2026-9791)
vulnerability in org.keycloak:keycloak-server-spi-private (CVE-2026-9791). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7802 |
|
Vulnerability in wordpress (CVE-2026-7802)
vulnerability in wordpress (CVE-2026-7802). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5737 |
|
SSRF (Server-Side Request Forgery) in wordpress (CVE-2026-5737)
SSRF in wordpress (CVE-2026-5737). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32999 |
|
Code Injection in CVE-2026-32999 (CVE-2026-32999)
code injection in CVE-2026-32999 (CVE-2026-32999). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32995 |
|
Vulnerability in CVE-2026-32995 (CVE-2026-32995)
vulnerability in CVE-2026-32995 (CVE-2026-32995). Confidential information can be exposed externally.
|
| CVE-2026-32996 |
|
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation.
This vulnerability in Veeam Agent for Microsoft Windows allows for Local Privilege Escalation.
|
| CVE-2026-32997 |
|
Vulnerability in CVE-2026-32997 (CVE-2026-32997)
vulnerability in CVE-2026-32997 (CVE-2026-32997). Risk of unauthorized operations or information disclosure.
|