Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-28732 |
|
Authorization Flaw in github.com/mattermost/mattermost/server/v8 (CVE-2026-28732)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-28732). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.0-20260306123948-f5fe8ded6b63` or later.
|
| CVE-2026-6342 |
|
Authorization Flaw in mattermost (CVE-2026-6342)
vulnerability in mattermost (CVE-2026-6342). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6341 |
|
Authorization Flaw in mattermost (CVE-2026-6341)
vulnerability in mattermost (CVE-2026-6341). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6343 |
|
Authorization Flaw in github.com/mattermost/mattermost/server/v8 (CVE-2026-6343)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6343). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.11.14` or later.
|
| CVE-2026-6333 |
|
SSRF (Server-Side Request Forgery) in github.com/mattermost/mattermost/server/v8 (CVE-2026-6333)
SSRF in github.com/mattermost/mattermost/server/v8 (CVE-2026-6333). Risk of unauthorized operations or information disclosure. Exploitable via `Host header`. Mitigation: upgrade to `8.0.0-20260325160634-e738016c5920` or later.
|
| CVE-2026-4643 |
|
Vulnerability in dos (CVE-2026-4643)
vulnerability in dos (CVE-2026-4643). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6346 |
|
Information Disclosure in github.com/mattermost/mattermost/server/v8 (CVE-2026-6346)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6346). Confidential information can be exposed externally. Mitigation: upgrade to `8.0.0-20260326202606-fac92f4a71f3` or later.
|
| CVE-2026-6347 |
|
Information Disclosure in github.com/mattermost/mattermost-server (CVE-2026-6347)
vulnerability in github.com/mattermost/mattermost-server (CVE-2026-6347). Confidential information can be exposed externally. Mitigation: upgrade to `11.4.4` or later.
|
| CVE-2026-6345 |
|
Vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6345)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6345). Confidential information can be exposed externally. Mitigation: upgrade to `8.0.0-20260311102650-3057ae7e83e9` or later.
|
| CVE-2026-8788 |
|
Vulnerability in CVE-2026-8788 (CVE-2026-8788)
vulnerability in CVE-2026-8788 (CVE-2026-8788). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7498 |
|
Cross-Site Scripting (XSS) in CVE-2026-7498 (CVE-2026-7498)
cross-site scripting in CVE-2026-7498 (CVE-2026-7498). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3495 |
|
Cross-Site Scripting (XSS) in github.com/mattermost/mattermost/server/v8 (CVE-2026-3495)
cross-site scripting in github.com/mattermost/mattermost/server/v8 (CVE-2026-3495). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.0-20260310115442-5a1ea95044d` or later.
|
| CVE-2026-2325 |
|
Vulnerability in github.com/mattermost/mattermost-server (CVE-2026-2325)
vulnerability in github.com/mattermost/mattermost-server (CVE-2026-2325). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `11.4.4` or later.
|
| CVE-2026-3637 |
|
Vulnerability in github.com/mattermost/mattermost/server/public (CVE-2026-3637)
vulnerability in github.com/mattermost/mattermost/server/public (CVE-2026-3637). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.3.0` or later.
|
| CVE-2026-28759 |
|
Authorization Flaw in github.com/mattermost/mattermost/server/v8 (CVE-2026-28759)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-28759). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.0-20260216150504-8738f8c4b3d4` or later.
|
| CVE-2026-4273 |
|
Authorization Flaw in github.com/mattermost/mattermost/server/v8 (CVE-2026-4273)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-4273). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.0-20260313190740-742e0be95074` or later.
|
| CVE-2026-6334 |
|
Vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6334)
vulnerability in github.com/mattermost/mattermost/server/v8 (CVE-2026-6334). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.0.0-20260318173148-e9ae890a013b` or later.
|
| CVE-2026-6379 |
|
SQL Injection in wordpress (CVE-2026-6379)
SQL injection in wordpress (CVE-2026-6379). Confidential information can be exposed externally.
|
| CVE-2026-3220 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-3220)
cross-site scripting in wordpress (CVE-2026-3220). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6495 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6495)
cross-site scripting in wordpress (CVE-2026-6495). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1631 |
|
Vulnerability in wordpress (CVE-2026-1631)
vulnerability in wordpress (CVE-2026-1631). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6381 |
|
Path Traversal in wordpress (CVE-2026-6381)
path traversal in wordpress (CVE-2026-6381). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8786 |
|
Vulnerability in tencent (CVE-2026-8786)
vulnerability in tencent (CVE-2026-8786). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8784 |
|
Vulnerability in c (CVE-2026-8784)
vulnerability in c (CVE-2026-8784). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8785 |
|
Vulnerability in sqli (CVE-2026-8785)
vulnerability in sqli (CVE-2026-8785). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8783 |
|
Vulnerability in github.com/omec-project/amf (CVE-2026-8783)
vulnerability in github.com/omec-project/amf (CVE-2026-8783). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-8782 |
|
Vulnerability in github.com/omec-project/amf (CVE-2026-8782)
vulnerability in github.com/omec-project/amf (CVE-2026-8782). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-8781 |
|
Vulnerability in github.com/omec-project/amf (CVE-2026-8781)
vulnerability in github.com/omec-project/amf (CVE-2026-8781). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-8776 |
|
Buffer Overflow in CVE-2026-8776 (CVE-2026-8776)
vulnerability in CVE-2026-8776 (CVE-2026-8776). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8775 |
|
Buffer Overflow in CVE-2026-8775 (CVE-2026-8775)
vulnerability in CVE-2026-8775 (CVE-2026-8775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8779 |
|
Buffer Overflow in github.com/omec-project/amf (CVE-2026-8779)
vulnerability in github.com/omec-project/amf (CVE-2026-8779). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-8780 |
|
Buffer Overflow in github.com/omec-project/amf (CVE-2026-8780)
vulnerability in github.com/omec-project/amf (CVE-2026-8780). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-8777 |
|
Vulnerability in CVE-2026-8777 (CVE-2026-8777)
vulnerability in CVE-2026-8777 (CVE-2026-8777). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8774 |
|
Vulnerability in CVE-2026-8774 (CVE-2026-8774)
vulnerability in CVE-2026-8774 (CVE-2026-8774). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8771 |
|
Vulnerability in org.linlinjava:litemall-wx-api (CVE-2026-8771)
vulnerability in org.linlinjava:litemall-wx-api (CVE-2026-8771). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8772 |
|
Vulnerability in sqli (CVE-2026-8772)
vulnerability in sqli (CVE-2026-8772). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8773 |
|
Vulnerability in CVE-2026-8773 (CVE-2026-8773)
vulnerability in CVE-2026-8773 (CVE-2026-8773). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8770 |
|
Path Traversal in path-traversal (CVE-2026-8770)
path traversal in path-traversal (CVE-2026-8770). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8769 |
|
Vulnerability in @ai-sdk/provider-utils (CVE-2026-8769)
vulnerability in @ai-sdk/provider-utils (CVE-2026-8769). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8768 |
|
SSRF (Server-Side Request Forgery) in vercel (CVE-2026-8768)
SSRF in vercel (CVE-2026-8768). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8765 |
|
Path Traversal in path-traversal (CVE-2026-8765)
path traversal in path-traversal (CVE-2026-8765). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8766 |
|
Information Disclosure in @kilocode/cli (CVE-2026-8766)
vulnerability in @kilocode/cli (CVE-2026-8766). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8767 |
|
Command Injection in vercel (CVE-2026-8767)
command injection in vercel (CVE-2026-8767). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8764 |
|
Buffer Overflow in CVE-2026-8764 (CVE-2026-8764)
vulnerability in CVE-2026-8764 (CVE-2026-8764). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8507 |
|
Out-of-Bounds Write in CVE-2026-8507 (CVE-2026-8507)
out-of-bounds write in CVE-2026-8507 (CVE-2026-8507). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46720 |
|
Vulnerability in CVE-2026-46720 (CVE-2026-46720)
vulnerability in CVE-2026-46720 (CVE-2026-46720). Data can be tampered with by attackers.
|
| CVE-2026-8759 |
|
Vulnerability in com.ibeetl:beetl-spring-classic (CVE-2026-8759)
vulnerability in com.ibeetl:beetl-spring-classic (CVE-2026-8759). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8758 |
|
Vulnerability in CVE-2026-8758 (CVE-2026-8758)
vulnerability in CVE-2026-8758 (CVE-2026-8758). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8757 |
|
Path Traversal in path-traversal (CVE-2026-8757)
path traversal in path-traversal (CVE-2026-8757). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8754 |
|
Path Traversal in AstrBot (CVE-2026-8754)
path traversal in AstrBot (CVE-2026-8754). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.23.6` or later.
|