Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-48832 |
|
action/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.
action/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.
|
| CVE-2026-9395 |
|
Vulnerability in CVE-2026-9395 (CVE-2026-9395)
vulnerability in CVE-2026-9395 (CVE-2026-9395). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9394 |
|
Vulnerability in CVE-2026-9394 (CVE-2026-9394)
vulnerability in CVE-2026-9394 (CVE-2026-9394). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9398 |
|
Authentication Bypass in CVE-2026-9398 (CVE-2026-9398)
authentication bypass in CVE-2026-9398 (CVE-2026-9398). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9393 |
|
Buffer Overflow in CVE-2026-9393 (CVE-2026-9393)
vulnerability in CVE-2026-9393 (CVE-2026-9393). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9399 |
|
Buffer Overflow in CVE-2026-9399 (CVE-2026-9399)
vulnerability in CVE-2026-9399 (CVE-2026-9399). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9397 |
|
Vulnerability in CVE-2026-9397 (CVE-2026-9397)
vulnerability in CVE-2026-9397 (CVE-2026-9397). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48831 |
|
Vulnerability in CVE-2026-48831 (CVE-2026-48831)
vulnerability in CVE-2026-48831 (CVE-2026-48831). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9387 |
|
Command Injection in CVE-2026-9387 (CVE-2026-9387)
command injection in CVE-2026-9387 (CVE-2026-9387). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9388 |
|
Command Injection in CVE-2026-9388 (CVE-2026-9388)
command injection in CVE-2026-9388 (CVE-2026-9388). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9384 |
|
Command Injection in CVE-2026-9384 (CVE-2026-9384)
command injection in CVE-2026-9384 (CVE-2026-9384). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9386 |
|
Command Injection in CVE-2026-9386 (CVE-2026-9386)
command injection in CVE-2026-9386 (CVE-2026-9386). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9385 |
|
Command Injection in CVE-2026-9385 (CVE-2026-9385)
command injection in CVE-2026-9385 (CVE-2026-9385). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9389 |
|
Buffer Overflow in CVE-2026-9389 (CVE-2026-9389)
vulnerability in CVE-2026-9389 (CVE-2026-9389). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4372 |
|
Unsafe Deserialization in transformers (CVE-2026-4372)
vulnerability in transformers (CVE-2026-4372). Successful exploitation can lead to full system takeover. Exploitable via ``_attn_implementation_internal``. Mitigation: upgrade to `5.3.0` or later.
|
| CVE-2026-9382 |
|
Buffer Overflow in CVE-2026-9382 (CVE-2026-9382)
vulnerability in CVE-2026-9382 (CVE-2026-9382). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9381 |
|
Buffer Overflow in CVE-2026-9381 (CVE-2026-9381)
vulnerability in CVE-2026-9381 (CVE-2026-9381). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9380 |
|
Buffer Overflow in CVE-2026-9380 (CVE-2026-9380)
vulnerability in CVE-2026-9380 (CVE-2026-9380). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9383 |
|
Vulnerability in sqli (CVE-2026-9383)
vulnerability in sqli (CVE-2026-9383). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9378 |
|
Vulnerability in CVE-2026-9378 (CVE-2026-9378)
vulnerability in CVE-2026-9378 (CVE-2026-9378). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9379 |
|
Vulnerability in CVE-2026-9379 (CVE-2026-9379)
vulnerability in CVE-2026-9379 (CVE-2026-9379). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9377 |
|
Cross-Site Scripting (XSS) in CVE-2026-9377 (CVE-2026-9377)
cross-site scripting in CVE-2026-9377 (CVE-2026-9377). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9368 |
|
Privilege Escalation in hermes-agent (CVE-2026-9368)
vulnerability in hermes-agent (CVE-2026-9368). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.11.0` or later.
|
| CVE-2026-9369 |
|
Vulnerability in hermes-agent (CVE-2026-9369)
vulnerability in hermes-agent (CVE-2026-9369). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.15.0` or later.
|
| CVE-2026-9372 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-9372 (CVE-2026-9372)
SSRF in CVE-2026-9372 (CVE-2026-9372). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9371 |
|
Authentication Bypass in CVE-2026-9371 (CVE-2026-9371)
authentication bypass in CVE-2026-9371 (CVE-2026-9371). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9373 |
|
Authentication Bypass in CVE-2026-9373 (CVE-2026-9373)
authentication bypass in CVE-2026-9373 (CVE-2026-9373). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9374 |
|
Vulnerability in vue (CVE-2026-9374)
vulnerability in vue (CVE-2026-9374). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9376 |
|
Vulnerability in CVE-2026-9376 (CVE-2026-9376)
vulnerability in CVE-2026-9376 (CVE-2026-9376). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9365 |
|
Buffer Overflow in c (CVE-2026-9365)
vulnerability in c (CVE-2026-9365). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9364 |
|
Vulnerability in sqli (CVE-2026-9364)
vulnerability in sqli (CVE-2026-9364). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9363 |
|
Vulnerability in CVE-2026-9363 (CVE-2026-9363)
vulnerability in CVE-2026-9363 (CVE-2026-9363). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9362 |
|
Vulnerability in CVE-2026-9362 (CVE-2026-9362)
vulnerability in CVE-2026-9362 (CVE-2026-9362). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9367 |
|
Command Injection in CVE-2026-9367 (CVE-2026-9367)
command injection in CVE-2026-9367 (CVE-2026-9367). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9366 |
|
Vulnerability in hermes-agent (CVE-2026-9366)
vulnerability in hermes-agent (CVE-2026-9366). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.15.0` or later.
|
| CVE-2026-9353 |
|
Vulnerability in hermes-agent (CVE-2026-9353)
vulnerability in hermes-agent (CVE-2026-9353). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.15.0` or later.
|
| CVE-2026-9354 |
|
Vulnerability in CVE-2026-9354 (CVE-2026-9354)
vulnerability in CVE-2026-9354 (CVE-2026-9354). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9358 |
|
Vulnerability in dos (CVE-2026-9358)
vulnerability in dos (CVE-2026-9358). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9360 |
|
Buffer Overflow in CVE-2026-9360 (CVE-2026-9360)
vulnerability in CVE-2026-9360 (CVE-2026-9360). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9356 |
|
Vulnerability in sqli (CVE-2026-9356)
vulnerability in sqli (CVE-2026-9356). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9355 |
|
Vulnerability in sqli (CVE-2026-9355)
vulnerability in sqli (CVE-2026-9355). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9361 |
|
Vulnerability in CVE-2026-9361 (CVE-2026-9361)
vulnerability in CVE-2026-9361 (CVE-2026-9361). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9359 |
|
Vulnerability in CVE-2026-9359 (CVE-2026-9359)
vulnerability in CVE-2026-9359 (CVE-2026-9359). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9357 |
|
Cross-Site Scripting (XSS) in CVE-2026-9357 (CVE-2026-9357)
cross-site scripting in CVE-2026-9357 (CVE-2026-9357). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3515 |
|
Vulnerability in prefect (CVE-2026-3515)
vulnerability in prefect (CVE-2026-3515). Confidential information can be exposed externally. Exploitable via ``GitHubRepository``.
|
| CVE-2026-9350 |
|
Vulnerability in CVE-2026-9350 (CVE-2026-9350)
vulnerability in CVE-2026-9350 (CVE-2026-9350). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9351 |
|
Path Traversal in path-traversal (CVE-2026-9351)
path traversal in path-traversal (CVE-2026-9351). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9352 |
|
Information Disclosure in CVE-2026-9352 (CVE-2026-9352)
vulnerability in CVE-2026-9352 (CVE-2026-9352). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9349 |
|
Information Disclosure in react (CVE-2026-9349)
vulnerability in react (CVE-2026-9349). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48829 |
|
Vulnerability in c (CVE-2026-48829)
vulnerability in c (CVE-2026-48829). Risk of unauthorized operations or information disclosure.
|