Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-9117 Vulnerability in google (CVE-2026-9117)
vulnerability in google (CVE-2026-9117). Successful exploitation can lead to full system takeover.
CVE-2026-9113 Out-of-Bounds Read in google (CVE-2026-9113)
vulnerability in google (CVE-2026-9113). Risk of unauthorized operations or information disclosure.
CVE-2026-9112 Use-After-Free in google (CVE-2026-9112)
vulnerability in google (CVE-2026-9112). Successful exploitation can lead to full system takeover.
CVE-2026-9114 Use-After-Free in google (CVE-2026-9114)
vulnerability in google (CVE-2026-9114). Successful exploitation can lead to full system takeover.
CVE-2026-9115 Vulnerability in google (CVE-2026-9115)
vulnerability in google (CVE-2026-9115). Risk of unauthorized operations or information disclosure.
CVE-2026-9116 Vulnerability in google (CVE-2026-9116)
vulnerability in google (CVE-2026-9116). Risk of unauthorized operations or information disclosure.
CVE-2026-9102 Path Traversal in path-traversal (CVE-2026-9102)
path traversal in path-traversal (CVE-2026-9102). Risk of unauthorized operations or information disclosure.
CVE-2026-9110 Vulnerability in google (CVE-2026-9110)
vulnerability in google (CVE-2026-9110). Risk of unauthorized operations or information disclosure.
CVE-2026-9082 KEV [KEV] SQL Injection in drupal/core (CVE-2026-9082)
SQL injection in drupal/core (CVE-2026-9082). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `10.4.10, 10.5.10, 10.6.9, 11.1.10, 11.2.12, 11.3.10` or later.
CVE-2026-9111 Use-After-Free in Google chrome (CVE-2026-9111)
vulnerability in Google chrome (CVE-2026-9111). Successful exploitation can lead to full system takeover.
CVE-2026-45444 Unrestricted File Upload in CVE-2026-45444 (CVE-2026-45444)
vulnerability in CVE-2026-45444 (CVE-2026-45444). Successful exploitation can lead to full system takeover.
CVE-2026-39352 Path Traversal in path-traversal (CVE-2026-39352)
path traversal in path-traversal (CVE-2026-39352). Risk of unauthorized operations or information disclosure.
CVE-2026-39405 Path Traversal in CVE-2026-39405 (CVE-2026-39405)
path traversal in CVE-2026-39405 (CVE-2026-39405). Risk of unauthorized operations or information disclosure.
CVE-2026-39310 Vulnerability in csrf (CVE-2026-39310)
vulnerability in csrf (CVE-2026-39310). Data can be tampered with by attackers.
CVE-2026-35016 Cross-Site Scripting (XSS) in CVE-2026-35016 (CVE-2026-35016)
cross-site scripting in CVE-2026-35016 (CVE-2026-35016). Risk of unauthorized operations or information disclosure.
CVE-2026-39311 Cross-Site Scripting (XSS) in CVE-2026-39311 (CVE-2026-39311)
cross-site scripting in CVE-2026-39311 (CVE-2026-39311). Risk of unauthorized operations or information disclosure.
CVE-2026-35009 Cross-Site Scripting (XSS) in CVE-2026-35009 (CVE-2026-35009)
cross-site scripting in CVE-2026-35009 (CVE-2026-35009). Risk of unauthorized operations or information disclosure.
CVE-2026-35010 Cross-Site Scripting (XSS) in CVE-2026-35010 (CVE-2026-35010)
cross-site scripting in CVE-2026-35010 (CVE-2026-35010). Risk of unauthorized operations or information disclosure.
CVE-2026-35011 Cross-Site Scripting (XSS) in CVE-2026-35011 (CVE-2026-35011)
cross-site scripting in CVE-2026-35011 (CVE-2026-35011). Risk of unauthorized operations or information disclosure.
CVE-2026-35012 Cross-Site Scripting (XSS) in CVE-2026-35012 (CVE-2026-35012)
cross-site scripting in CVE-2026-35012 (CVE-2026-35012). Risk of unauthorized operations or information disclosure.
CVE-2026-35013 Cross-Site Scripting (XSS) in CVE-2026-35013 (CVE-2026-35013)
cross-site scripting in CVE-2026-35013 (CVE-2026-35013). Risk of unauthorized operations or information disclosure.
CVE-2026-35014 Cross-Site Scripting (XSS) in CVE-2026-35014 (CVE-2026-35014)
cross-site scripting in CVE-2026-35014 (CVE-2026-35014). Risk of unauthorized operations or information disclosure.
CVE-2026-35015 Cross-Site Scripting (XSS) in CVE-2026-35015 (CVE-2026-35015)
cross-site scripting in CVE-2026-35015 (CVE-2026-35015). Risk of unauthorized operations or information disclosure.
CVE-2026-35007 Cross-Site Scripting (XSS) in CVE-2026-35007 (CVE-2026-35007)
cross-site scripting in CVE-2026-35007 (CVE-2026-35007). Risk of unauthorized operations or information disclosure.
CVE-2026-35008 Cross-Site Scripting (XSS) in CVE-2026-35008 (CVE-2026-35008)
cross-site scripting in CVE-2026-35008 (CVE-2026-35008). Risk of unauthorized operations or information disclosure.
CVE-2026-2813 Open Redirect in esri (CVE-2026-2813)
vulnerability in esri (CVE-2026-2813). Risk of unauthorized operations or information disclosure.
CVE-2026-33137 Vulnerability in org.xwiki.platform:xwiki-platform-rest-server (CVE-2026-33137)
vulnerability in org.xwiki.platform:xwiki-platform-rest-server (CVE-2026-33137). Risk of unauthorized operations or information disclosure. Exploitable via `POST /wikis/{wikiName}`. Mitigation: upgrade to `18.1.0-rc-1` or later.
CVE-2026-24188 Out-of-Bounds Write in CVE-2026-24188 (CVE-2026-24188)
out-of-bounds write in CVE-2026-24188 (CVE-2026-24188). Data can be tampered with by attackers.
CVE-2026-23734 Vulnerability in org.xwiki.commons:xwiki-commons-classloader-api (CVE-2026-23734)
vulnerability in org.xwiki.commons:xwiki-commons-classloader-api (CVE-2026-23734). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.0.0-rc-1` or later.
CVE-2026-24216 Unsafe Deserialization in dos (CVE-2026-24216)
vulnerability in dos (CVE-2026-24216). Successful exploitation can lead to full system takeover.
CVE-2026-2812 Authentication Bypass in esri (CVE-2026-2812)
authentication bypass in esri (CVE-2026-2812). Risk of unauthorized operations or information disclosure.
CVE-2026-26028 Vulnerability in cryptpad (CVE-2026-26028)
vulnerability in cryptpad (CVE-2026-26028). Risk of unauthorized operations or information disclosure. Exploitable via ``jscolor.js``.
CVE-2026-24218 Vulnerability in dos (CVE-2026-24218)
vulnerability in dos (CVE-2026-24218). Successful exploitation can lead to full system takeover.
CVE-2026-20239 Vulnerability in splunk (CVE-2026-20239)
vulnerability in splunk (CVE-2026-20239). Successful exploitation can lead to full system takeover. Exploitable via ``_internal``.
CVE-2026-20238 Authorization Flaw in splunk (CVE-2026-20238)
vulnerability in splunk (CVE-2026-20238). Confidential information can be exposed externally. Exploitable via ``srchFilter``.
CVE-2026-20240 Vulnerability in dos (CVE-2026-20240)
vulnerability in dos (CVE-2026-20240). Risk of unauthorized operations or information disclosure. Exploitable via ``coldToFrozen.sh``.
CVE-2026-30691 Cross-Site Scripting (XSS) in @cyntler/react-doc-viewer (CVE-2026-30691)
cross-site scripting in @cyntler/react-doc-viewer (CVE-2026-30691). Risk of unauthorized operations or information disclosure.
CVE-2026-9100 Vulnerability in c (CVE-2026-9100)
vulnerability in c (CVE-2026-9100). Risk of unauthorized operations or information disclosure.
CVE-2026-9101 Vulnerability in CVE-2026-9101 (CVE-2026-9101)
vulnerability in CVE-2026-9101 (CVE-2026-9101). Risk of unauthorized operations or information disclosure.
CVE-2026-7613 Cross-Site Scripting (XSS) in wordpress (CVE-2026-7613)
cross-site scripting in wordpress (CVE-2026-7613). Risk of unauthorized operations or information disclosure.
CVE-2026-44923 SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.
SQL injection in InfoScale VIOM before v9.1.3 allows remote attackers to escalate privileges.
CVE-2026-44924 InfoScale VIOM 9.1.3 allows XSS.
InfoScale VIOM 9.1.3 allows XSS.
CVE-2026-44926 InfoScale CmdServer before 7.4.2 mishandles access control.
InfoScale CmdServer before 7.4.2 mishandles access control.
CVE-2026-44925 Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-44925)
vulnerability in csrf (CVE-2026-44925). Successful exploitation can lead to full system takeover.
CVE-2026-9084 Authentication Bypass in CVE-2026-9084 (CVE-2026-9084)
authentication bypass in CVE-2026-9084 (CVE-2026-9084). Risk of unauthorized operations or information disclosure.
CVE-2026-8486 Vulnerability in progress (CVE-2026-8486)
vulnerability in progress (CVE-2026-8486). Risk of unauthorized operations or information disclosure.
CVE-2026-8488 Vulnerability in progress (CVE-2026-8488)
vulnerability in progress (CVE-2026-8488). Risk of unauthorized operations or information disclosure.
CVE-2026-8487 Vulnerability in progress (CVE-2026-8487)
vulnerability in progress (CVE-2026-8487). Confidential information can be exposed externally.
CVE-2026-4293 Cross-Site Scripting (XSS) in CVE-2026-4293 (CVE-2026-4293)
cross-site scripting in CVE-2026-4293 (CVE-2026-4293). Risk of unauthorized operations or information disclosure.
CVE-2026-5783 Cross-Site Scripting (XSS) in CVE-2026-5783 (CVE-2026-5783)
cross-site scripting in CVE-2026-5783 (CVE-2026-5783). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →