Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-41588 |
|
Vulnerability in timing-attack (CVE-2026-41588)
vulnerability in timing-attack (CVE-2026-41588). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41524 |
|
Cross-Site Scripting (XSS) in laravel (CVE-2026-41524)
cross-site scripting in laravel (CVE-2026-41524). Confidential information can be exposed externally.
|
| CVE-2026-41575 |
|
Cross-Site Scripting (XSS) in th30d4y (CVE-2026-41575)
cross-site scripting in th30d4y (CVE-2026-41575). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41576 |
|
Cross-Site Scripting (XSS) in CVE-2026-41576 (CVE-2026-41576)
cross-site scripting in CVE-2026-41576 (CVE-2026-41576). Confidential information can be exposed externally.
|
| CVE-2026-41570 |
|
Vulnerability in phpunit/phpunit (CVE-2026-41570)
vulnerability in phpunit/phpunit (CVE-2026-41570). Successful exploitation can lead to full system takeover. Exploitable via ``auto_prepend_file``. Mitigation: upgrade to `13.1.6` or later.
|
| CVE-2026-41574 |
|
Authentication Bypass in github.com/nhost/nhost (CVE-2026-41574)
authentication bypass in github.com/nhost/nhost (CVE-2026-41574). Successful exploitation can lead to full system takeover. Exploitable via `GET /users/`. Mitigation: upgrade to `0.0.0-20260417112436-ec8dab3f2cf4` or later.
|
| CVE-2026-41487 |
|
Vulnerability in langfuse (CVE-2026-41487)
vulnerability in langfuse (CVE-2026-41487). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41308 |
|
Vulnerability in pwpush (CVE-2026-41308)
vulnerability in pwpush (CVE-2026-41308). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-37431 |
|
SQL Injection in sqli (CVE-2026-37431)
SQL injection in sqli (CVE-2026-37431). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38361 |
|
Vulnerability in dash-uploader (CVE-2026-38361)
vulnerability in dash-uploader (CVE-2026-38361). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.7.0a1` or later.
|
| CVE-2025-67486 |
|
Vulnerability in dolibarr (CVE-2025-67486)
vulnerability in dolibarr (CVE-2025-67486). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7864 |
|
Vulnerability in CVE-2026-7864 (CVE-2026-7864)
vulnerability in CVE-2026-7864 (CVE-2026-7864). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44340 |
|
Path Traversal in PraisonAI (CVE-2026-44340)
path traversal in PraisonAI (CVE-2026-44340). Data can be tampered with by attackers. Exploitable via ``_safe_extractall``. Mitigation: upgrade to `4.6.37` or later.
|
| CVE-2026-44334 |
|
Code Injection in praisonai (CVE-2026-44334)
code injection in praisonai (CVE-2026-44334). Successful exploitation can lead to full system takeover. Exploitable via `POST /v1/recipes/run`. Mitigation: upgrade to `4.5.139` or later.
|
| CVE-2026-44335 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-44335)
SSRF in ssrf (CVE-2026-44335). Successful exploitation can lead to full system takeover. Exploitable via ``requests``. Mitigation: upgrade to `>= 1.6.32` or later.
|
| CVE-2026-44338 |
|
Vulnerability in PraisonAI (CVE-2026-44338)
vulnerability in PraisonAI (CVE-2026-44338). Risk of unauthorized operations or information disclosure. Exploitable via `POST /chat`. Mitigation: upgrade to `4.6.34` or later.
|
| CVE-2026-44129 |
|
Vulnerability in CVE-2026-44129 (CVE-2026-44129)
vulnerability in CVE-2026-44129 (CVE-2026-44129). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44339 |
|
Vulnerability in praisonaiagents (CVE-2026-44339)
vulnerability in praisonaiagents (CVE-2026-44339). Data can be tampered with by attackers. Exploitable via ``praisonaiagents``. Mitigation: upgrade to `1.6.37` or later.
|
| CVE-2026-44337 |
|
Vulnerability in PraisonAI (CVE-2026-44337)
vulnerability in PraisonAI (CVE-2026-44337). Risk of unauthorized operations or information disclosure. Exploitable via ``name``. Mitigation: upgrade to `4.6.34` or later.
|
| CVE-2026-44336 |
|
Vulnerability in praison (CVE-2026-44336)
vulnerability in praison (CVE-2026-44336). Successful exploitation can lead to full system takeover. Exploitable via ``praisonai.rules.create``.
|
| CVE-2026-44125 |
|
Vulnerability in CVE-2026-44125 (CVE-2026-44125)
vulnerability in CVE-2026-44125 (CVE-2026-44125). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44126 |
|
Unsafe Deserialization in CVE-2026-44126 (CVE-2026-44126)
vulnerability in CVE-2026-44126 (CVE-2026-44126). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44127 |
|
Vulnerability in path-traversal (CVE-2026-44127)
vulnerability in path-traversal (CVE-2026-44127). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44128 |
|
Vulnerability in CVE-2026-44128 (CVE-2026-44128)
vulnerability in CVE-2026-44128 (CVE-2026-44128). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43342 |
|
Vulnerability in linux (CVE-2026-43342)
vulnerability in linux (CVE-2026-43342). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43349 |
|
Vulnerability in c (CVE-2026-43349)
vulnerability in c (CVE-2026-43349). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43333 |
|
Vulnerability in linux (CVE-2026-43333)
vulnerability in linux (CVE-2026-43333). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43335 |
|
Vulnerability in linux (CVE-2026-43335)
vulnerability in linux (CVE-2026-43335). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43337 |
|
Vulnerability in c (CVE-2026-43337)
vulnerability in c (CVE-2026-43337). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43339 |
|
Use-After-Free in linux (CVE-2026-43339)
vulnerability in linux (CVE-2026-43339). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43328 |
|
Vulnerability in linux (CVE-2026-43328)
vulnerability in linux (CVE-2026-43328). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43326 |
|
Vulnerability in linux (CVE-2026-43326)
vulnerability in linux (CVE-2026-43326). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43327 |
|
Vulnerability in c (CVE-2026-43327)
vulnerability in c (CVE-2026-43327). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43330 |
|
Out-of-Bounds Write in linux (CVE-2026-43330)
out-of-bounds write in linux (CVE-2026-43330). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43329 |
|
Vulnerability in linux (CVE-2026-43329)
vulnerability in linux (CVE-2026-43329). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43319 |
|
Vulnerability in linux (CVE-2026-43319)
vulnerability in linux (CVE-2026-43319). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43317 |
|
Vulnerability in linux (CVE-2026-43317)
vulnerability in linux (CVE-2026-43317). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43322 |
|
Use-After-Free in c (CVE-2026-43322)
vulnerability in c (CVE-2026-43322). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43313 |
|
Vulnerability in linux (CVE-2026-43313)
vulnerability in linux (CVE-2026-43313). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43314 |
|
Vulnerability in linux (CVE-2026-43314)
vulnerability in linux (CVE-2026-43314). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43301 |
|
Vulnerability in c (CVE-2026-43301)
vulnerability in c (CVE-2026-43301). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43302 |
|
Vulnerability in c (CVE-2026-43302)
vulnerability in c (CVE-2026-43302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43303 |
|
Use-After-Free in linux (CVE-2026-43303)
vulnerability in linux (CVE-2026-43303). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43300 |
|
Vulnerability in linux (CVE-2026-43300)
vulnerability in linux (CVE-2026-43300). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43305 |
|
Vulnerability in linux (CVE-2026-43305)
vulnerability in linux (CVE-2026-43305). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43297 |
|
Vulnerability in linux (CVE-2026-43297)
vulnerability in linux (CVE-2026-43297). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43296 |
|
Vulnerability in linux (CVE-2026-43296)
vulnerability in linux (CVE-2026-43296). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43291 |
|
Vulnerability in linux (CVE-2026-43291)
vulnerability in linux (CVE-2026-43291). Confidential information can be exposed externally.
|
| CVE-2026-43286 |
|
Vulnerability in linux (CVE-2026-43286)
vulnerability in linux (CVE-2026-43286). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43287 |
|
Vulnerability in linux (CVE-2026-43287)
vulnerability in linux (CVE-2026-43287). Risk of unauthorized operations or information disclosure.
|