Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-41640 |
|
SQL Injection in @nocobase/database (CVE-2026-41640)
SQL injection in @nocobase/database (CVE-2026-41640). Successful exploitation can lead to full system takeover. Exploitable via ``nodeIds``. Mitigation: upgrade to `2.0.39` or later.
|
| CVE-2026-41650 |
|
Vulnerability in fast-xml-parser (CVE-2026-41650)
vulnerability in fast-xml-parser (CVE-2026-41650). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.7.0` or later.
|
| CVE-2026-41644 |
|
Vulnerability in github.com/monetr/monetr (CVE-2026-41644)
vulnerability in github.com/monetr/monetr (CVE-2026-41644). Confidential information can be exposed externally. Exploitable via `POST /api/lunch_flow/link`. Mitigation: upgrade to `1.12.5` or later.
|
| CVE-2026-41459 |
|
Vulnerability in path-traversal (CVE-2026-41459)
vulnerability in path-traversal (CVE-2026-41459). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34415 |
|
Vulnerability in path-traversal (CVE-2026-34415)
vulnerability in path-traversal (CVE-2026-34415). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34414 |
|
Path Traversal in path-traversal (CVE-2026-34414)
path traversal in path-traversal (CVE-2026-34414). Data can be tampered with by attackers.
|
| CVE-2026-34413 |
|
Vulnerability in path-traversal (CVE-2026-34413)
vulnerability in path-traversal (CVE-2026-34413). Data can be tampered with by attackers.
|
| CVE-2026-32885 |
|
Path Traversal in ddev (CVE-2026-32885)
path traversal in ddev (CVE-2026-32885). Data can be tampered with by attackers.
|
| CVE-2018-25269 |
|
Cross-Site Scripting (XSS) in icewarp (CVE-2018-25269)
cross-site scripting in icewarp (CVE-2018-25269). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31499 |
|
Vulnerability in linux (CVE-2026-31499)
vulnerability in linux (CVE-2026-31499). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31474 |
|
Use-After-Free in linux (CVE-2026-31474)
vulnerability in linux (CVE-2026-31474). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31434 |
|
Vulnerability in linux (CVE-2026-31434)
vulnerability in linux (CVE-2026-31434). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6857 |
|
Unsafe Deserialization in org.apache.camel:camel-infinispan (CVE-2026-6857)
vulnerability in org.apache.camel:camel-infinispan (CVE-2026-6857). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.20.0` or later.
|
| CVE-2026-35548 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-35548)
SSRF in ssrf (CVE-2026-35548). Confidential information can be exposed externally.
|
| CVE-2026-41179 |
|
OS Command Injection in github.com/rclone/rclone (CVE-2026-41179)
OS command injection in github.com/rclone/rclone (CVE-2026-41179). Successful exploitation can lead to full system takeover. Exploitable via ``bearer_token_command``. Mitigation: upgrade to `1.73.5` or later.
|
| CVE-2026-6859 |
|
Vulnerability in redhat (CVE-2026-6859)
vulnerability in redhat (CVE-2026-6859). Successful exploitation can lead to full system takeover. Exploitable via ``linux_train.py``.
|
| CVE-2026-6356 |
|
Vulnerability in augmentt (CVE-2026-6356)
vulnerability in augmentt (CVE-2026-6356). Confidential information can be exposed externally.
|
| CVE-2026-5749 |
|
Vulnerability in CVE-2026-5749 (CVE-2026-5749)
vulnerability in CVE-2026-5749 (CVE-2026-5749). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41651 |
|
Vulnerability in c (CVE-2026-41651)
vulnerability in c (CVE-2026-41651). Successful exploitation can lead to full system takeover. Exploitable via ``RUNNING``.
|
| CVE-2026-33611 |
|
Vulnerability in powerdns (CVE-2026-33611)
vulnerability in powerdns (CVE-2026-33611). Data can be tampered with by attackers.
|
| CVE-2026-31527 |
|
Use-After-Free in linux (CVE-2026-31527)
vulnerability in linux (CVE-2026-31527). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31518 |
|
Vulnerability in linux (CVE-2026-31518)
vulnerability in linux (CVE-2026-31518). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31521 |
|
Out-of-Bounds Write in linux (CVE-2026-31521)
out-of-bounds write in linux (CVE-2026-31521). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31515 |
|
Vulnerability in c (CVE-2026-31515)
vulnerability in c (CVE-2026-31515). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31511 |
|
Use-After-Free in linux (CVE-2026-31511)
vulnerability in linux (CVE-2026-31511). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31507 |
|
Vulnerability in linux (CVE-2026-31507)
vulnerability in linux (CVE-2026-31507). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31504 |
|
Use-After-Free in linux (CVE-2026-31504)
vulnerability in linux (CVE-2026-31504). Successful exploitation can lead to full system takeover. Exploitable via ``NETDEV_UP``.
|
| CVE-2026-31500 |
|
Use-After-Free in c (CVE-2026-31500)
vulnerability in c (CVE-2026-31500). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31494 |
|
Out-of-Bounds Write in c (CVE-2026-31494)
out-of-bounds write in c (CVE-2026-31494). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31486 |
|
Vulnerability in linux (CVE-2026-31486)
vulnerability in linux (CVE-2026-31486). Data can be tampered with by attackers.
|
| CVE-2026-31489 |
|
Vulnerability in linux (CVE-2026-31489)
vulnerability in linux (CVE-2026-31489). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31488 |
|
Use-After-Free in linux (CVE-2026-31488)
vulnerability in linux (CVE-2026-31488). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31485 |
|
Use-After-Free in linux (CVE-2026-31485)
vulnerability in linux (CVE-2026-31485). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31469 |
|
Use-After-Free in c (CVE-2026-31469)
vulnerability in c (CVE-2026-31469). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31466 |
|
Vulnerability in linux (CVE-2026-31466)
vulnerability in linux (CVE-2026-31466). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31457 |
|
Vulnerability in linux (CVE-2026-31457)
vulnerability in linux (CVE-2026-31457). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31458 |
|
Vulnerability in linux (CVE-2026-31458)
vulnerability in linux (CVE-2026-31458). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31456 |
|
Vulnerability in linux (CVE-2026-31456)
vulnerability in linux (CVE-2026-31456). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31455 |
|
Use-After-Free in linux (CVE-2026-31455)
vulnerability in linux (CVE-2026-31455). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31450 |
|
Vulnerability in linux (CVE-2026-31450)
vulnerability in linux (CVE-2026-31450). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31452 |
|
Out-of-Bounds Write in linux (CVE-2026-31452)
out-of-bounds write in linux (CVE-2026-31452). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31446 |
|
Use-After-Free in linux (CVE-2026-31446)
vulnerability in linux (CVE-2026-31446). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31448 |
|
Vulnerability in c (CVE-2026-31448)
vulnerability in c (CVE-2026-31448). Data can be tampered with by attackers.
|
| CVE-2026-31449 |
|
Out-of-Bounds Read in linux (CVE-2026-31449)
vulnerability in linux (CVE-2026-31449). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31438 |
|
Vulnerability in linux (CVE-2026-31438)
vulnerability in linux (CVE-2026-31438). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31440 |
|
Vulnerability in linux (CVE-2026-31440)
vulnerability in linux (CVE-2026-31440). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31441 |
|
Vulnerability in linux (CVE-2026-31441)
vulnerability in linux (CVE-2026-31441). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31436 |
|
Vulnerability in linux (CVE-2026-31436)
vulnerability in linux (CVE-2026-31436). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31437 |
|
Vulnerability in c (CVE-2026-31437)
vulnerability in c (CVE-2026-31437). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31192 |
|
Vulnerability in raindrop (CVE-2026-31192)
vulnerability in raindrop (CVE-2026-31192). Risk of unauthorized operations or information disclosure.
|