Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-41640 SQL Injection in @nocobase/database (CVE-2026-41640)
SQL injection in @nocobase/database (CVE-2026-41640). Successful exploitation can lead to full system takeover. Exploitable via ``nodeIds``. Mitigation: upgrade to `2.0.39` or later.
CVE-2026-41650 Vulnerability in fast-xml-parser (CVE-2026-41650)
vulnerability in fast-xml-parser (CVE-2026-41650). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.7.0` or later.
CVE-2026-41644 Vulnerability in github.com/monetr/monetr (CVE-2026-41644)
vulnerability in github.com/monetr/monetr (CVE-2026-41644). Confidential information can be exposed externally. Exploitable via `POST /api/lunch_flow/link`. Mitigation: upgrade to `1.12.5` or later.
CVE-2026-41459 Vulnerability in path-traversal (CVE-2026-41459)
vulnerability in path-traversal (CVE-2026-41459). Risk of unauthorized operations or information disclosure.
CVE-2026-34415 Vulnerability in path-traversal (CVE-2026-34415)
vulnerability in path-traversal (CVE-2026-34415). Successful exploitation can lead to full system takeover.
CVE-2026-34414 Path Traversal in path-traversal (CVE-2026-34414)
path traversal in path-traversal (CVE-2026-34414). Data can be tampered with by attackers.
CVE-2026-34413 Vulnerability in path-traversal (CVE-2026-34413)
vulnerability in path-traversal (CVE-2026-34413). Data can be tampered with by attackers.
CVE-2026-32885 Path Traversal in ddev (CVE-2026-32885)
path traversal in ddev (CVE-2026-32885). Data can be tampered with by attackers.
CVE-2018-25269 Cross-Site Scripting (XSS) in icewarp (CVE-2018-25269)
cross-site scripting in icewarp (CVE-2018-25269). Risk of unauthorized operations or information disclosure.
CVE-2026-31499 Vulnerability in linux (CVE-2026-31499)
vulnerability in linux (CVE-2026-31499). Risk of unauthorized operations or information disclosure.
CVE-2026-31474 Use-After-Free in linux (CVE-2026-31474)
vulnerability in linux (CVE-2026-31474). Successful exploitation can lead to full system takeover.
CVE-2026-31434 Vulnerability in linux (CVE-2026-31434)
vulnerability in linux (CVE-2026-31434). Risk of unauthorized operations or information disclosure.
CVE-2026-6857 Unsafe Deserialization in org.apache.camel:camel-infinispan (CVE-2026-6857)
vulnerability in org.apache.camel:camel-infinispan (CVE-2026-6857). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.20.0` or later.
CVE-2026-35548 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-35548)
SSRF in ssrf (CVE-2026-35548). Confidential information can be exposed externally.
CVE-2026-41179 OS Command Injection in github.com/rclone/rclone (CVE-2026-41179)
OS command injection in github.com/rclone/rclone (CVE-2026-41179). Successful exploitation can lead to full system takeover. Exploitable via ``bearer_token_command``. Mitigation: upgrade to `1.73.5` or later.
CVE-2026-6859 Vulnerability in redhat (CVE-2026-6859)
vulnerability in redhat (CVE-2026-6859). Successful exploitation can lead to full system takeover. Exploitable via ``linux_train.py``.
CVE-2026-6356 Vulnerability in augmentt (CVE-2026-6356)
vulnerability in augmentt (CVE-2026-6356). Confidential information can be exposed externally.
CVE-2026-5749 Vulnerability in CVE-2026-5749 (CVE-2026-5749)
vulnerability in CVE-2026-5749 (CVE-2026-5749). Risk of unauthorized operations or information disclosure.
CVE-2026-41651 Vulnerability in c (CVE-2026-41651)
vulnerability in c (CVE-2026-41651). Successful exploitation can lead to full system takeover. Exploitable via ``RUNNING``.
CVE-2026-33611 Vulnerability in powerdns (CVE-2026-33611)
vulnerability in powerdns (CVE-2026-33611). Data can be tampered with by attackers.
CVE-2026-31527 Use-After-Free in linux (CVE-2026-31527)
vulnerability in linux (CVE-2026-31527). Successful exploitation can lead to full system takeover.
CVE-2026-31518 Vulnerability in linux (CVE-2026-31518)
vulnerability in linux (CVE-2026-31518). Risk of unauthorized operations or information disclosure.
CVE-2026-31521 Out-of-Bounds Write in linux (CVE-2026-31521)
out-of-bounds write in linux (CVE-2026-31521). Risk of unauthorized operations or information disclosure.
CVE-2026-31515 Vulnerability in c (CVE-2026-31515)
vulnerability in c (CVE-2026-31515). Risk of unauthorized operations or information disclosure.
CVE-2026-31511 Use-After-Free in linux (CVE-2026-31511)
vulnerability in linux (CVE-2026-31511). Successful exploitation can lead to full system takeover.
CVE-2026-31507 Vulnerability in linux (CVE-2026-31507)
vulnerability in linux (CVE-2026-31507). Successful exploitation can lead to full system takeover.
CVE-2026-31504 Use-After-Free in linux (CVE-2026-31504)
vulnerability in linux (CVE-2026-31504). Successful exploitation can lead to full system takeover. Exploitable via ``NETDEV_UP``.
CVE-2026-31500 Use-After-Free in c (CVE-2026-31500)
vulnerability in c (CVE-2026-31500). Successful exploitation can lead to full system takeover.
CVE-2026-31494 Out-of-Bounds Write in c (CVE-2026-31494)
out-of-bounds write in c (CVE-2026-31494). Successful exploitation can lead to full system takeover.
CVE-2026-31486 Vulnerability in linux (CVE-2026-31486)
vulnerability in linux (CVE-2026-31486). Data can be tampered with by attackers.
CVE-2026-31489 Vulnerability in linux (CVE-2026-31489)
vulnerability in linux (CVE-2026-31489). Successful exploitation can lead to full system takeover.
CVE-2026-31488 Use-After-Free in linux (CVE-2026-31488)
vulnerability in linux (CVE-2026-31488). Successful exploitation can lead to full system takeover.
CVE-2026-31485 Use-After-Free in linux (CVE-2026-31485)
vulnerability in linux (CVE-2026-31485). Successful exploitation can lead to full system takeover.
CVE-2026-31469 Use-After-Free in c (CVE-2026-31469)
vulnerability in c (CVE-2026-31469). Successful exploitation can lead to full system takeover.
CVE-2026-31466 Vulnerability in linux (CVE-2026-31466)
vulnerability in linux (CVE-2026-31466). Risk of unauthorized operations or information disclosure.
CVE-2026-31457 Vulnerability in linux (CVE-2026-31457)
vulnerability in linux (CVE-2026-31457). Risk of unauthorized operations or information disclosure.
CVE-2026-31458 Vulnerability in linux (CVE-2026-31458)
vulnerability in linux (CVE-2026-31458). Risk of unauthorized operations or information disclosure.
CVE-2026-31456 Vulnerability in linux (CVE-2026-31456)
vulnerability in linux (CVE-2026-31456). Risk of unauthorized operations or information disclosure.
CVE-2026-31455 Use-After-Free in linux (CVE-2026-31455)
vulnerability in linux (CVE-2026-31455). Successful exploitation can lead to full system takeover.
CVE-2026-31450 Vulnerability in linux (CVE-2026-31450)
vulnerability in linux (CVE-2026-31450). Successful exploitation can lead to full system takeover.
CVE-2026-31452 Out-of-Bounds Write in linux (CVE-2026-31452)
out-of-bounds write in linux (CVE-2026-31452). Successful exploitation can lead to full system takeover.
CVE-2026-31446 Use-After-Free in linux (CVE-2026-31446)
vulnerability in linux (CVE-2026-31446). Successful exploitation can lead to full system takeover.
CVE-2026-31448 Vulnerability in c (CVE-2026-31448)
vulnerability in c (CVE-2026-31448). Data can be tampered with by attackers.
CVE-2026-31449 Out-of-Bounds Read in linux (CVE-2026-31449)
vulnerability in linux (CVE-2026-31449). Successful exploitation can lead to full system takeover.
CVE-2026-31438 Vulnerability in linux (CVE-2026-31438)
vulnerability in linux (CVE-2026-31438). Risk of unauthorized operations or information disclosure.
CVE-2026-31440 Vulnerability in linux (CVE-2026-31440)
vulnerability in linux (CVE-2026-31440). Risk of unauthorized operations or information disclosure.
CVE-2026-31441 Vulnerability in linux (CVE-2026-31441)
vulnerability in linux (CVE-2026-31441). Risk of unauthorized operations or information disclosure.
CVE-2026-31436 Vulnerability in linux (CVE-2026-31436)
vulnerability in linux (CVE-2026-31436). Successful exploitation can lead to full system takeover.
CVE-2026-31437 Vulnerability in c (CVE-2026-31437)
vulnerability in c (CVE-2026-31437). Risk of unauthorized operations or information disclosure.
CVE-2026-31192 Vulnerability in raindrop (CVE-2026-31192)
vulnerability in raindrop (CVE-2026-31192). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →