Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-46280 |
|
Out-of-Bounds Read in apple (CVE-2025-46280)
vulnerability in apple (CVE-2025-46280). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-43306 |
|
Privilege Escalation in apple (CVE-2025-43306)
vulnerability in apple (CVE-2025-43306). Successful exploitation can lead to full system takeover.
|
| CVE-2025-43290 |
|
Vulnerability in apple (CVE-2025-43290)
vulnerability in apple (CVE-2025-43290). Data can be tampered with by attackers.
|
| CVE-2025-43289 |
|
Vulnerability in apple (CVE-2025-43289)
vulnerability in apple (CVE-2025-43289). Confidential information can be exposed externally.
|
| CVE-2026-9582 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9582 (CVE-2026-9582)
vulnerability in CVE-2026-9582 (CVE-2026-9582). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9580 |
|
Vulnerability in CVE-2026-9580 (CVE-2026-9580)
vulnerability in CVE-2026-9580 (CVE-2026-9580). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9581 |
|
Vulnerability in CVE-2026-9581 (CVE-2026-9581)
vulnerability in CVE-2026-9581 (CVE-2026-9581). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9583 |
|
Information Disclosure in CVE-2026-9583 (CVE-2026-9583)
vulnerability in CVE-2026-9583 (CVE-2026-9583). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9642 |
|
Vulnerability in deltaww (CVE-2026-9642)
vulnerability in deltaww (CVE-2026-9642). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8676 |
|
Vulnerability in CVE-2026-8676 (CVE-2026-8676)
vulnerability in CVE-2026-8676 (CVE-2026-8676). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9579 |
|
Vulnerability in CVE-2026-9579 (CVE-2026-9579)
vulnerability in CVE-2026-9579 (CVE-2026-9579). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48593 |
|
Vulnerability in oban_web (CVE-2026-48593)
vulnerability in oban_web (CVE-2026-48593). Risk of unauthorized operations or information disclosure. Exploitable via ``oban_web``. Mitigation: upgrade to `2.12.5` or later.
|
| CVE-2026-48592 |
|
Vulnerability in oban_web (CVE-2026-48592)
vulnerability in oban_web (CVE-2026-48592). Risk of unauthorized operations or information disclosure. Exploitable via ``oban_web``. Mitigation: upgrade to `2.12.5` or later.
|
| CVE-2026-47672 |
|
Vulnerability in com.oviva.telematik:epa4all-rest-service (CVE-2026-47672)
vulnerability in com.oviva.telematik:epa4all-rest-service (CVE-2026-47672). Data can be tampered with by attackers.
|
| CVE-2026-45412 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45412)
SSRF in ssrf (CVE-2026-45412). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.9.1` or later.
|
| CVE-2026-44847 |
|
Authentication Bypass in django (CVE-2026-44847)
authentication bypass in django (CVE-2026-44847). Data can be tampered with by attackers. Mitigation: upgrade to `2.9.0` or later.
|
| CVE-2026-44451 |
|
Vulnerability in CVE-2026-44451 (CVE-2026-44451)
vulnerability in CVE-2026-44451 (CVE-2026-44451). Confidential information can be exposed externally. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44449 |
|
Vulnerability in c (CVE-2026-44449)
vulnerability in c (CVE-2026-44449). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44450 |
|
Vulnerability in c (CVE-2026-44450)
vulnerability in c (CVE-2026-44450). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44444 |
|
OS Command Injection in CVE-2026-44444 (CVE-2026-44444)
OS command injection in CVE-2026-44444 (CVE-2026-44444). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44443 |
|
Vulnerability in CVE-2026-44443 (CVE-2026-44443)
vulnerability in CVE-2026-44443 (CVE-2026-44443). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/auth/sign-up/email`. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-42337 |
|
Vulnerability in CVE-2026-42337 (CVE-2026-42337)
vulnerability in CVE-2026-42337 (CVE-2026-42337). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.8.1` or later.
|
| CVE-2026-42335 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-42335)
SSRF in ssrf (CVE-2026-42335). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.8.1` or later.
|
| CVE-2026-42336 |
|
Vulnerability in ssrf (CVE-2026-42336)
vulnerability in ssrf (CVE-2026-42336). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.8.1` or later.
|
| CVE-2026-36239 |
|
PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality
PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality
|
| CVE-2025-68711 |
|
Vulnerability in c (CVE-2025-68711)
vulnerability in c (CVE-2025-68711). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68708 |
|
Vulnerability in c (CVE-2025-68708)
vulnerability in c (CVE-2025-68708). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-14361 |
|
Vulnerability in CVE-2025-14361 (CVE-2025-14361)
vulnerability in CVE-2025-14361 (CVE-2025-14361). Data can be tampered with by attackers.
|
| CVE-2026-9573 |
|
Vulnerability in sqli (CVE-2026-9573)
vulnerability in sqli (CVE-2026-9573). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9574 |
|
Vulnerability in sqli (CVE-2026-9574)
vulnerability in sqli (CVE-2026-9574). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9575 |
|
Vulnerability in sqli (CVE-2026-9575)
vulnerability in sqli (CVE-2026-9575). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27331 |
|
Vulnerability in CVE-2026-27331 (CVE-2026-27331)
vulnerability in CVE-2026-27331 (CVE-2026-27331). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24520 |
|
Vulnerability in CVE-2026-24520 (CVE-2026-24520)
vulnerability in CVE-2026-24520 (CVE-2026-24520). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25426 |
|
Vulnerability in CVE-2026-25426 (CVE-2026-25426)
vulnerability in CVE-2026-25426 (CVE-2026-25426). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25444 |
|
Vulnerability in CVE-2026-25444 (CVE-2026-25444)
vulnerability in CVE-2026-25444 (CVE-2026-25444). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68710 |
|
Vulnerability in c (CVE-2025-68710)
vulnerability in c (CVE-2025-68710). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68709 |
|
Cross-Site Scripting (XSS) in privilege-escalation (CVE-2025-68709)
cross-site scripting in privilege-escalation (CVE-2025-68709). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35202 |
|
Vulnerability in pterodactyl/panel (CVE-2026-35202)
vulnerability in pterodactyl/panel (CVE-2026-35202). Risk of unauthorized operations or information disclosure. Exploitable via ``DatabaseController.php``. Mitigation: upgrade to `1.12.3` or later.
|
| CVE-2026-9572 |
|
Vulnerability in c (CVE-2026-9572)
vulnerability in c (CVE-2026-9572). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9568 |
|
Vulnerability in CVE-2026-9568 (CVE-2026-9568)
vulnerability in CVE-2026-9568 (CVE-2026-9568). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48689 |
|
Out-of-Bounds Write in pavel-odintsov (CVE-2026-48689)
out-of-bounds write in pavel-odintsov (CVE-2026-48689). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4051 |
|
Vulnerability in ibm (CVE-2026-4051)
vulnerability in ibm (CVE-2026-4051). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3603 |
|
XXE (XML External Entity) in ibm (CVE-2026-3603)
vulnerability in ibm (CVE-2026-3603). Confidential information can be exposed externally.
|
| CVE-2026-3660 |
|
Authorization Flaw in ibm (CVE-2026-3660)
vulnerability in ibm (CVE-2026-3660). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9567 |
|
Vulnerability in c (CVE-2026-9567)
vulnerability in c (CVE-2026-9567). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9170 |
|
Code Injection in dos (CVE-2026-9170)
code injection in dos (CVE-2026-9170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8633 |
|
Code Injection in ibm (CVE-2026-8633)
code injection in ibm (CVE-2026-8633). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8855 |
|
Code Injection in dos (CVE-2026-8855)
code injection in dos (CVE-2026-8855). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8856 |
|
Vulnerability in dos (CVE-2026-8856)
vulnerability in dos (CVE-2026-8856). Data can be tampered with by attackers.
|
| CVE-2026-8834 |
|
Vulnerability in dos (CVE-2026-8834)
vulnerability in dos (CVE-2026-8834). Successful exploitation can lead to full system takeover.
|