Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-9344 |
|
Buffer Overflow in CVE-2026-9344 (CVE-2026-9344)
vulnerability in CVE-2026-9344 (CVE-2026-9344). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9348 |
|
Buffer Overflow in CVE-2026-9348 (CVE-2026-9348)
vulnerability in CVE-2026-9348 (CVE-2026-9348). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9345 |
|
Buffer Overflow in CVE-2026-9345 (CVE-2026-9345)
vulnerability in CVE-2026-9345 (CVE-2026-9345). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9346 |
|
Buffer Overflow in CVE-2026-9346 (CVE-2026-9346)
vulnerability in CVE-2026-9346 (CVE-2026-9346). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9342 |
|
Vulnerability in sqli (CVE-2026-9342)
vulnerability in sqli (CVE-2026-9342). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9343 |
|
Command Injection in CVE-2026-9343 (CVE-2026-9343)
command injection in CVE-2026-9343 (CVE-2026-9343). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9347 |
|
Command Injection in CVE-2026-9347 (CVE-2026-9347)
command injection in CVE-2026-9347 (CVE-2026-9347). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25347 |
|
SQL Injection in wordpress (CVE-2018-25347)
SQL injection in wordpress (CVE-2018-25347). Confidential information can be exposed externally.
|
| CVE-2018-25348 |
|
SQL Injection in sqli (CVE-2018-25348)
SQL injection in sqli (CVE-2018-25348). Confidential information can be exposed externally.
|
| CVE-2018-25351 |
|
SQL Injection in sqli (CVE-2018-25351)
SQL injection in sqli (CVE-2018-25351). Confidential information can be exposed externally.
|
| CVE-2018-25352 |
|
SQL Injection in wordpress (CVE-2018-25352)
SQL injection in wordpress (CVE-2018-25352). Confidential information can be exposed externally.
|
| CVE-2018-25349 |
|
Cross-Site Scripting (XSS) in CVE-2018-25349 (CVE-2018-25349)
cross-site scripting in CVE-2018-25349 (CVE-2018-25349). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25358 |
|
Vulnerability in CVE-2018-25358 (CVE-2018-25358)
vulnerability in CVE-2018-25358 (CVE-2018-25358). Confidential information can be exposed externally.
|
| CVE-2018-25356 |
|
Vulnerability in cpp (CVE-2018-25356)
vulnerability in cpp (CVE-2018-25356). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25355 |
|
Vulnerability in CVE-2018-25355 (CVE-2018-25355)
vulnerability in CVE-2018-25355 (CVE-2018-25355). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25354 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25354 (CVE-2018-25354)
vulnerability in CVE-2018-25354 (CVE-2018-25354). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25357 |
|
Code Injection in dolibarr/dolibarr (CVE-2018-25357)
code injection in dolibarr/dolibarr (CVE-2018-25357). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.0.8` or later.
|
| CVE-2018-25353 |
|
Authorization Flaw in CVE-2018-25353 (CVE-2018-25353)
vulnerability in CVE-2018-25353 (CVE-2018-25353). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25346 |
|
SQL Injection in wordpress (CVE-2018-25346)
SQL injection in wordpress (CVE-2018-25346). Confidential information can be exposed externally.
|
| CVE-2018-25345 |
|
Vulnerability in CVE-2018-25345 (CVE-2018-25345)
vulnerability in CVE-2018-25345 (CVE-2018-25345). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25344 |
|
Vulnerability in CVE-2018-25344 (CVE-2018-25344)
vulnerability in CVE-2018-25344 (CVE-2018-25344). Successful exploitation can lead to full system takeover.
|
| CVE-2018-25343 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25343 (CVE-2018-25343)
vulnerability in CVE-2018-25343 (CVE-2018-25343). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9302 |
|
Vulnerability in CVE-2026-9302 (CVE-2026-9302)
vulnerability in CVE-2026-9302 (CVE-2026-9302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9303 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9303 (CVE-2026-9303)
vulnerability in CVE-2026-9303 (CVE-2026-9303). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9304 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-9304 (CVE-2026-9304)
SSRF in CVE-2026-9304 (CVE-2026-9304). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9306 |
|
Vulnerability in CVE-2026-9306 (CVE-2026-9306)
vulnerability in CVE-2026-9306 (CVE-2026-9306). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25340 |
|
SQL Injection in sqli (CVE-2018-25340)
SQL injection in sqli (CVE-2018-25340). Confidential information can be exposed externally.
|
| CVE-2026-9305 |
|
Vulnerability in sqli (CVE-2026-9305)
vulnerability in sqli (CVE-2026-9305). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25342 |
|
SQL Injection in sqli (CVE-2018-25342)
SQL injection in sqli (CVE-2018-25342). Confidential information can be exposed externally.
|
| CVE-2018-25341 |
|
SQL Injection in sqli (CVE-2018-25341)
SQL injection in sqli (CVE-2018-25341). Confidential information can be exposed externally.
|
| CVE-2026-43503 |
|
Vulnerability in c (CVE-2026-43503)
vulnerability in c (CVE-2026-43503). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9299 |
|
Buffer Overflow in github.com/omec-project/amf (CVE-2026-9299)
vulnerability in github.com/omec-project/amf (CVE-2026-9299). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.1-0.20260421213846-34bc6724acc9` or later.
|
| CVE-2026-9301 |
|
Buffer Overflow in github.com/omec-project/amf (CVE-2026-9301)
vulnerability in github.com/omec-project/amf (CVE-2026-9301). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.1-0.20260421213846-34bc6724acc9` or later.
|
| CVE-2026-9300 |
|
Buffer Overflow in github.com/omec-project/amf (CVE-2026-9300)
vulnerability in github.com/omec-project/amf (CVE-2026-9300). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.7.1-0.20260421213846-34bc6724acc9` or later.
|
| CVE-2026-9298 |
|
Buffer Overflow in CVE-2026-9298 (CVE-2026-9298)
vulnerability in CVE-2026-9298 (CVE-2026-9298). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9284 |
|
Vulnerability in wordpress (CVE-2026-9284)
vulnerability in wordpress (CVE-2026-9284). Confidential information can be exposed externally.
|
| CVE-2026-45659 KEV |
|
[KEV] Unsafe Deserialization in Microsoft deserialization (CVE-2026-45659)
vulnerability in Microsoft deserialization (CVE-2026-45659). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-47280 |
|
Authentication Bypass in microsoft (CVE-2026-47280)
authentication bypass in microsoft (CVE-2026-47280). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9295 |
|
Buffer Overflow in CVE-2026-9295 (CVE-2026-9295)
vulnerability in CVE-2026-9295 (CVE-2026-9295). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9294 |
|
Buffer Overflow in CVE-2026-9294 (CVE-2026-9294)
vulnerability in CVE-2026-9294 (CVE-2026-9294). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42827 |
|
Command Injection in microsoft (CVE-2026-42827)
command injection in microsoft (CVE-2026-42827). Confidential information can be exposed externally.
|
| CVE-2026-9296 |
|
Vulnerability in CVE-2026-9296 (CVE-2026-9296)
vulnerability in CVE-2026-9296 (CVE-2026-9296). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9297 |
|
Vulnerability in CVE-2026-9297 (CVE-2026-9297)
vulnerability in CVE-2026-9297 (CVE-2026-9297). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6898 |
|
Privilege Escalation in wordpress (CVE-2026-6898)
vulnerability in wordpress (CVE-2026-6898). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6419 |
|
Privilege Escalation in wordpress (CVE-2026-6419)
vulnerability in wordpress (CVE-2026-6419). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6895 |
|
Privilege Escalation in wordpress (CVE-2026-6895)
vulnerability in wordpress (CVE-2026-6895). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6897 |
|
Privilege Escalation in wordpress (CVE-2026-6897)
vulnerability in wordpress (CVE-2026-6897). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40412 |
|
Unrestricted File Upload in microsoft (CVE-2026-40412)
vulnerability in microsoft (CVE-2026-40412). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41104 |
|
Unsafe Deserialization in deserialization (CVE-2026-41104)
vulnerability in deserialization (CVE-2026-41104). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41090 |
|
Command Injection in microsoft (CVE-2026-41090)
command injection in microsoft (CVE-2026-41090). Confidential information can be exposed externally.
|