Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-45435 |
|
Cross-Site Scripting (XSS) in CVE-2026-45435 (CVE-2026-45435)
cross-site scripting in CVE-2026-45435 (CVE-2026-45435). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9504 |
|
Buffer Overflow in c (CVE-2026-9504)
vulnerability in c (CVE-2026-9504). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45217 |
|
Vulnerability in CVE-2026-45217 (CVE-2026-45217)
vulnerability in CVE-2026-45217 (CVE-2026-45217). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39436 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-39436)
vulnerability in csrf (CVE-2026-39436). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24554 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24554)
vulnerability in csrf (CVE-2026-24554). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48851 |
|
Vulnerability in putty (CVE-2026-48851)
vulnerability in putty (CVE-2026-48851). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9503 |
|
Vulnerability in c (CVE-2026-9503)
vulnerability in c (CVE-2026-9503). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24582 |
|
Vulnerability in CVE-2026-24582 (CVE-2026-24582)
vulnerability in CVE-2026-24582 (CVE-2026-24582). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24586 |
|
Vulnerability in CVE-2026-24586 (CVE-2026-24586)
vulnerability in CVE-2026-24586 (CVE-2026-24586). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24592 |
|
Vulnerability in CVE-2026-24592 (CVE-2026-24592)
vulnerability in CVE-2026-24592 (CVE-2026-24592). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24527 |
|
Vulnerability in CVE-2026-24527 (CVE-2026-24527)
vulnerability in CVE-2026-24527 (CVE-2026-24527). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9502 |
|
Buffer Overflow in c (CVE-2026-9502)
vulnerability in c (CVE-2026-9502). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9500 |
|
Buffer Overflow in c (CVE-2026-9500)
vulnerability in c (CVE-2026-9500). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-62745 |
|
Cross-Site Scripting (XSS) in CVE-2025-62745 (CVE-2025-62745)
cross-site scripting in CVE-2025-62745 (CVE-2025-62745). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9497 |
|
Vulnerability in org.mengyun:tcc-transaction (CVE-2026-9497)
vulnerability in org.mengyun:tcc-transaction (CVE-2026-9497). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9485 |
|
Cross-Site Scripting (XSS) in CVE-2026-9485 (CVE-2026-9485)
cross-site scripting in CVE-2026-9485 (CVE-2026-9485). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48850 |
|
PuTTY 0.72 before 0.84 has a double free in RSA KEX.
PuTTY 0.72 before 0.84 has a double free in RSA KEX.
|
| CVE-2026-48589 |
|
Open Redirect in org.apache.shiro:shiro-jakarta-ee (CVE-2026-48589)
vulnerability in org.apache.shiro:shiro-jakarta-ee (CVE-2026-48589). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`. Mitigation: upgrade to `3.0.0-alpha-2` or later.
|
| CVE-2026-9498 |
|
Vulnerability in CVE-2026-9498 (CVE-2026-9498)
vulnerability in CVE-2026-9498 (CVE-2026-9498). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24597 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24597)
vulnerability in csrf (CVE-2026-24597). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24574 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24574)
vulnerability in csrf (CVE-2026-24574). Data can be tampered with by attackers.
|
| CVE-2026-9486 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9486 (CVE-2026-9486)
vulnerability in CVE-2026-9486 (CVE-2026-9486). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24545 |
|
Vulnerability in CVE-2026-24545 (CVE-2026-24545)
vulnerability in CVE-2026-24545 (CVE-2026-24545). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44598 |
|
Open Redirect in org.apache.shiro:shiro-jakarta-ee (CVE-2026-44598)
vulnerability in org.apache.shiro:shiro-jakarta-ee (CVE-2026-44598). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.0-alpha-2` or later.
|
| CVE-2026-9484 |
|
Vulnerability in CVE-2026-9484 (CVE-2026-9484)
vulnerability in CVE-2026-9484 (CVE-2026-9484). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24546 |
|
Vulnerability in CVE-2026-24546 (CVE-2026-24546)
vulnerability in CVE-2026-24546 (CVE-2026-24546). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48843 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-48843)
SSRF in ssrf (CVE-2026-48843). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9482 |
|
Buffer Overflow in CVE-2026-9482 (CVE-2026-9482)
vulnerability in CVE-2026-9482 (CVE-2026-9482). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9481 |
|
Buffer Overflow in CVE-2026-9481 (CVE-2026-9481)
vulnerability in CVE-2026-9481 (CVE-2026-9481). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9483 |
|
Vulnerability in CVE-2026-9483 (CVE-2026-9483)
vulnerability in CVE-2026-9483 (CVE-2026-9483). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48842 |
|
SQL Injection in sqli (CVE-2026-48842)
SQL injection in sqli (CVE-2026-48842). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48849 |
|
Cross-Site Scripting (XSS) in CVE-2026-48849 (CVE-2026-48849)
cross-site scripting in CVE-2026-48849 (CVE-2026-48849). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48848 |
|
Cross-Site Scripting (XSS) in CVE-2026-48848 (CVE-2026-48848)
cross-site scripting in CVE-2026-48848 (CVE-2026-48848). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48847 |
|
Vulnerability in CVE-2026-48847 (CVE-2026-48847)
vulnerability in CVE-2026-48847 (CVE-2026-48847). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48845 |
|
Vulnerability in privilege-escalation (CVE-2026-48845)
vulnerability in privilege-escalation (CVE-2026-48845). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48846 |
|
Vulnerability in CVE-2026-48846 (CVE-2026-48846)
vulnerability in CVE-2026-48846 (CVE-2026-48846). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48844 |
|
Vulnerability in CVE-2026-48844 (CVE-2026-48844)
vulnerability in CVE-2026-48844 (CVE-2026-48844). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9472 |
|
Path Traversal in path-traversal (CVE-2026-9472)
path traversal in path-traversal (CVE-2026-9472). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9473 |
|
Path Traversal in c (CVE-2026-9473)
path traversal in c (CVE-2026-9473). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9479 |
|
Buffer Overflow in CVE-2026-9479 (CVE-2026-9479)
vulnerability in CVE-2026-9479 (CVE-2026-9479). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9480 |
|
Buffer Overflow in CVE-2026-9480 (CVE-2026-9480)
vulnerability in CVE-2026-9480 (CVE-2026-9480). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9474 |
|
Vulnerability in sqli (CVE-2026-9474)
vulnerability in sqli (CVE-2026-9474). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9475 |
|
Command Injection in CVE-2026-9475 (CVE-2026-9475)
command injection in CVE-2026-9475 (CVE-2026-9475). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9476 |
|
Command Injection in CVE-2026-9476 (CVE-2026-9476)
command injection in CVE-2026-9476 (CVE-2026-9476). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9477 |
|
Command Injection in CVE-2026-9477 (CVE-2026-9477)
command injection in CVE-2026-9477 (CVE-2026-9477). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9478 |
|
Command Injection in CVE-2026-9478 (CVE-2026-9478)
command injection in CVE-2026-9478 (CVE-2026-9478). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9470 |
|
Vulnerability in sqli (CVE-2026-9470)
vulnerability in sqli (CVE-2026-9470). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9469 |
|
Vulnerability in sqli (CVE-2026-9469)
vulnerability in sqli (CVE-2026-9469). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27768 |
|
SQL Injection affecting the Access Manager role.
SQL Injection affecting the Access Manager role.
|
| CVE-2026-9471 |
|
Cross-Site Scripting (XSS) in CVE-2026-9471 (CVE-2026-9471)
cross-site scripting in CVE-2026-9471 (CVE-2026-9471). Risk of unauthorized operations or information disclosure.
|